Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/3a0368-570c-4847-8d4a-ff4ad1e3daf5/1/nV3wzH_1I5VE4qLJ5nCrt9MPHjQ.roa
File: nV3wzH_1I5VE4qLJ5nCrt9MPHjQ.roa (raw, json)
Hash identifier: db3hfBEW1jL4gbyVu0D2s50T0rgPqR4B0mvJEYFg7lA=
Subject key identifier: 9D:5D:F0:CC:7F:F5:23:95:44:E2:A2:C9:E6:70:AB:B7:D3:0F:1E:34
Certificate issuer: /CN=3ebeaeaa0f07dc3d54bc115cce202ada9820b1d5
Certificate serial: 019422FBAD9764B6524CCC168DF6F2CBE798
Authority key identifier: 3E:BE:AE:AA:0F:07:DC:3D:54:BC:11:5C:CE:20:2A:DA:98:20:B1:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pr6uqg8H3D1UvBFcziAq2pggsdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/3a0368-570c-4847-8d4a-ff4ad1e3daf5/1/nV3wzH_1I5VE4qLJ5nCrt9MPHjQ.roa
Signing time: Wed 01 Jan 2025 17:48:26 +0000
ROA not before: Wed 01 Jan 2025 17:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209663
IP address blocks: 91.192.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:ad:97:64:b6:52:4c:cc:16:8d:f6:f2:cb:e7:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebeaeaa0f07dc3d54bc115cce202ada9820b1d5
Validity
Not Before: Jan 1 17:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d5df0cc7ff5239544e2a2c9e670abb7d30f1e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d9:e5:43:14:f8:09:a3:26:15:6e:33:a4:d5:
85:ce:77:47:be:02:e7:c5:7a:05:06:b6:b3:4c:1e:
cd:45:6b:c0:cc:60:a3:71:f5:c1:2e:d5:22:36:be:
a1:70:43:21:db:d6:87:c2:5a:38:e1:0b:16:c1:84:
6c:e8:84:d8:67:d8:a0:32:6d:42:db:2a:b8:65:a1:
d1:d0:04:76:5b:cd:27:0c:02:89:61:f4:7f:25:4a:
1f:9b:50:32:ba:2e:c7:b1:70:82:49:df:37:a2:65:
64:bb:ad:9e:9b:8d:e6:6f:7c:0a:76:df:27:76:38:
b7:7e:5b:72:ed:06:35:81:d5:fc:bc:ef:b5:ba:ed:
31:4f:cf:db:55:ae:eb:14:18:f5:dc:9d:81:5b:89:
ae:30:3d:6f:06:f2:65:e6:93:bf:82:bb:35:f4:5c:
84:60:36:ab:9a:c5:ae:2a:8a:95:d9:d8:8e:92:44:
00:cb:ab:10:d3:6c:97:f8:9d:3e:a3:aa:95:99:81:
25:36:e3:eb:2d:46:be:b3:c5:e4:22:99:af:e2:67:
32:3f:fa:04:22:be:0a:40:52:b8:ed:6b:1e:29:b3:
08:b3:93:47:45:80:05:b7:a7:81:45:3b:d3:28:6e:
59:74:19:64:7a:d4:90:9f:ae:78:95:6d:78:ab:5b:
dd:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:5D:F0:CC:7F:F5:23:95:44:E2:A2:C9:E6:70:AB:B7:D3:0F:1E:34
X509v3 Authority Key Identifier:
keyid:3E:BE:AE:AA:0F:07:DC:3D:54:BC:11:5C:CE:20:2A:DA:98:20:B1:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pr6uqg8H3D1UvBFcziAq2pggsdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3a0368-570c-4847-8d4a-ff4ad1e3daf5/1/nV3wzH_1I5VE4qLJ5nCrt9MPHjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3a0368-570c-4847-8d4a-ff4ad1e3daf5/1/Pr6uqg8H3D1UvBFcziAq2pggsdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.8.0/24
Signature Algorithm: sha256WithRSAEncryption
81:ac:dd:32:56:94:ad:36:fd:8d:b9:69:8d:ea:c2:4e:b6:24:
6e:35:e3:a7:24:19:a5:68:61:d5:a0:36:db:b4:b9:7d:e8:2e:
2a:63:82:4a:2c:71:33:4a:06:0a:3c:35:17:03:f3:bb:ea:af:
41:c1:cf:19:dd:1a:18:65:4a:6d:3b:88:75:e3:d0:37:5a:ff:
c8:e9:fa:6d:b1:c0:01:1d:e6:f1:8d:cd:62:a7:d3:03:ee:81:
8c:d8:95:34:38:0b:0b:28:de:b7:1a:78:32:bb:7b:45:eb:66:
f0:c2:fd:2b:c3:16:85:e4:16:65:ca:36:5e:b8:5e:06:f1:33:
8f:90:e6:4c:5e:2c:0f:0f:29:33:dc:7c:cb:5b:4e:a9:61:a5:
0c:b7:bf:e0:70:f1:4d:c7:bf:93:83:24:c9:1b:4a:f7:22:e9:
61:c5:e6:d3:40:18:c9:b2:a9:a3:68:35:1b:0c:ae:0f:0e:d7:
47:2c:b3:b7:81:5f:7c:fc:01:8f:02:45:81:86:ce:b7:c0:d6:
ef:12:6f:7f:41:b1:66:ec:31:ca:ec:f3:b5:bc:e5:59:61:f2:
48:ee:8b:b7:c8:db:ab:80:c7:2e:27:79:57:79:81:a8:68:a1:
ce:5f:2b:52:40:f0:3f:1b:99:ee:c5:7a:dc:d6:cf:f7:c7:9a:
9b:38:a0:a7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi+62XZLZSTMwWjfbyy+eYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlYmVhZWFhMGYwN2RjM2Q1NGJjMTE1Y2NlMjAyYWRhOTgy
MGIxZDUwHhcNMjUwMTAxMTc0ODI2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDVkZjBjYzdmZjUyMzk1NDRlMmEyYzllNjcwYWJiN2QzMGYxZTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9nlQxT4CaMmFW4zpNWFzndHvgLn
xXoFBrazTB7NRWvAzGCjcfXBLtUiNr6hcEMh29aHwlo44QsWwYRs6ITYZ9igMm1C
2yq4ZaHR0AR2W80nDAKJYfR/JUofm1Ayui7HsXCCSd83omVku62em43mb3wKdt8n
dji3flty7QY1gdX8vO+1uu0xT8/bVa7rFBj13J2BW4muMD1vBvJl5pO/grs19FyE
YDarmsWuKoqV2diOkkQAy6sQ02yX+J0+o6qVmYElNuPrLUa+s8XkIpmv4mcyP/oE
Ir4KQFK47WseKbMIs5NHRYAFt6eBRTvTKG5ZdBlketSQn654lW14q1vdnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ1d8Mx/9SOVROKiyeZwq7fTDx40MB8GA1UdIwQY
MBaAFD6+rqoPB9w9VLwRXM4gKtqYILHVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUHI2dXFnOEgzRDFVdkJGY3ppQXEycGdnc2RVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8zYTAzNjgtNTcwYy00ODQ3LThkNGEt
ZmY0YWQxZTNkYWY1LzEvblYzd3pIXzFJNVZFNHFMSjVuQ3J0OU1QSGpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS8zYTAzNjgtNTcwYy00ODQ3LThkNGEtZmY0YWQxZTNkYWY1
LzEvUHI2dXFnOEgzRDFVdkJGY3ppQXEycGdnc2RVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8AIMA0G
CSqGSIb3DQEBCwUAA4IBAQCBrN0yVpStNv2NuWmN6sJOtiRuNeOnJBmlaGHVoDbb
tLl96C4qY4JKLHEzSgYKPDUXA/O76q9Bwc8Z3RoYZUptO4h149A3Wv/I6fptscAB
Hebxjc1ip9MD7oGM2JU0OAsLKN63Gngyu3tF62bwwv0rwxaF5BZlyjZeuF4G8TOP
kOZMXiwPDykz3HzLW06pYaUMt7/gcPFNx7+TgyTJG0r3IulhxebTQBjJsqmjaDUb
DK4PDtdHLLO3gV98/AGPAkWBhs63wNbvEm9/QbFm7DHK7PO1vOVZYfJI7ou3yNur
gMcuJ3lXeYGoaKHOXytSQPA/G5nuxXrc1s/3x5qbOKCn
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:03 2025 by rpki-client on console.sobornost.net