Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/aGlvUdVJOWbqaat4vglrkQH1tNo.roa
File: aGlvUdVJOWbqaat4vglrkQH1tNo.roa (raw, json)
Hash identifier: svvIGknsbQhU6YBIsZkBO7bjTdjQ0GNK1yuIVKiea6E=
Subject key identifier: 68:69:6F:51:D5:49:39:66:EA:69:AB:78:BE:09:6B:91:01:F5:B4:DA
Certificate issuer: /CN=81bb78be41e48337997c8fe91d8e2f24f7b49eaf
Certificate serial: 0194228D745366BA7F26DB2C42DD7C9BF36B
Authority key identifier: 81:BB:78:BE:41:E4:83:37:99:7C:8F:E9:1D:8E:2F:24:F7:B4:9E:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gbt4vkHkgzeZfI_pHY4vJPe0nq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/aGlvUdVJOWbqaat4vglrkQH1tNo.roa
Signing time: Wed 01 Jan 2025 15:48:03 +0000
ROA not before: Wed 01 Jan 2025 15:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41678
IP address blocks: 92.43.224.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:74:53:66:ba:7f:26:db:2c:42:dd:7c:9b:f3:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81bb78be41e48337997c8fe91d8e2f24f7b49eaf
Validity
Not Before: Jan 1 15:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68696f51d5493966ea69ab78be096b9101f5b4da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6c:95:1c:c6:16:b0:d2:e1:df:ff:7e:e1:07:
c4:41:4f:13:f9:e4:59:03:bf:84:fb:ea:cc:e2:c9:
04:fc:ca:66:0e:e2:b7:05:84:c8:a4:44:40:9e:90:
29:4b:19:83:83:fe:f0:36:d9:36:fe:01:36:df:b5:
07:9c:33:e0:45:11:54:cf:fb:72:ba:a5:f2:ea:ff:
7d:d3:a4:e3:4a:a5:38:6f:03:6e:af:5b:fb:73:75:
4b:c9:d0:6b:f3:96:5d:53:b9:e6:d0:5c:a2:02:1c:
46:c4:b2:a5:46:43:b8:1a:bf:28:89:0d:bb:bb:85:
04:61:22:95:3d:45:fe:26:46:1f:4e:a5:97:53:28:
e6:90:13:d1:72:c7:ed:cd:d2:2f:a9:c6:4d:11:95:
37:d6:65:aa:b5:02:90:e2:8a:cc:65:97:9c:d8:53:
f5:39:73:84:51:29:6e:40:36:de:41:61:88:18:6d:
f2:f4:60:59:5b:f6:18:ff:dd:55:1f:0e:00:3a:63:
64:fc:01:98:b8:ce:7c:0a:5a:70:d0:49:c3:1b:89:
7c:84:14:8b:a4:65:b9:d6:7a:0d:c7:1a:af:c7:75:
c0:fd:e2:0c:c6:17:85:ed:62:b2:22:1d:c2:2d:f6:
2c:c7:e3:b1:d4:89:10:28:eb:85:1b:be:22:f9:57:
22:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:69:6F:51:D5:49:39:66:EA:69:AB:78:BE:09:6B:91:01:F5:B4:DA
X509v3 Authority Key Identifier:
keyid:81:BB:78:BE:41:E4:83:37:99:7C:8F:E9:1D:8E:2F:24:F7:B4:9E:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbt4vkHkgzeZfI_pHY4vJPe0nq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/aGlvUdVJOWbqaat4vglrkQH1tNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/9db4d3-f78d-4430-87c0-6cbd581d317c/1/gbt4vkHkgzeZfI_pHY4vJPe0nq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.224.0/21
Signature Algorithm: sha256WithRSAEncryption
95:7a:a9:9a:af:42:47:ed:be:1b:61:3d:1b:e9:63:d0:1e:d2:
31:47:a5:7d:89:ad:ed:6e:4e:9f:a0:e2:84:33:eb:98:0d:ef:
e3:c8:cf:f7:4e:73:b8:c7:a3:74:7c:4d:21:35:a7:0a:dc:cf:
c3:33:65:81:44:50:02:d0:05:94:6c:37:dd:c1:8d:cc:d8:49:
eb:65:61:49:47:4a:5d:18:c5:6b:09:87:cd:62:3d:2f:a8:4e:
9d:8d:04:58:58:a5:95:33:53:da:44:15:2a:ec:80:58:ba:f9:
5a:55:87:9b:67:be:7a:79:1d:f7:5b:81:59:7b:32:5f:0a:96:
f0:0f:b7:33:01:d4:aa:26:7c:0b:2e:7b:b6:9b:a2:e3:71:8f:
5a:80:a7:21:35:50:08:30:31:6f:86:0c:d6:6c:02:64:5d:48:
f5:66:7a:d2:e2:da:82:02:77:f2:43:ee:7a:4a:3c:1f:36:5b:
2f:ea:85:fe:0c:52:70:15:19:1c:63:ae:43:4f:1a:e7:6e:e6:
17:99:20:67:69:a7:ea:a8:17:47:44:f0:e1:6d:35:40:cf:7b:
3d:92:7a:a5:3d:6b:b5:12:28:93:73:5f:64:44:70:27:0c:d4:
60:f7:90:bd:f2:47:41:4a:98:c3:23:75:2d:10:eb:89:08:7e:
43:f3:3c:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijXRTZrp/JtssQt18m/NrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYmI3OGJlNDFlNDgzMzc5OTdjOGZlOTFkOGUyZjI0Zjdi
NDllYWYwHhcNMjUwMTAxMTU0ODAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODY5NmY1MWQ1NDkzOTY2ZWE2OWFiNzhiZTA5NmI5MTAxZjViNGRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGyVHMYWsNLh3/9+4QfEQU8T+eRZ
A7+E++rM4skE/MpmDuK3BYTIpERAnpApSxmDg/7wNtk2/gE237UHnDPgRRFUz/ty
uqXy6v9906TjSqU4bwNur1v7c3VLydBr85ZdU7nm0FyiAhxGxLKlRkO4Gr8oiQ27
u4UEYSKVPUX+JkYfTqWXUyjmkBPRcsftzdIvqcZNEZU31mWqtQKQ4orMZZec2FP1
OXOEUSluQDbeQWGIGG3y9GBZW/YY/91VHw4AOmNk/AGYuM58Clpw0EnDG4l8hBSL
pGW51noNxxqvx3XA/eIMxheF7WKyIh3CLfYsx+Ox1IkQKOuFG74i+VcipwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGhpb1HVSTlm6mmreL4Ja5EB9bTaMB8GA1UdIwQY
MBaAFIG7eL5B5IM3mXyP6R2OLyT3tJ6vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2J0NHZrSGtnemVaZklfcEhZNHZKUGUwbnE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC85ZGI0ZDMtZjc4ZC00NDMwLTg3YzAt
NmNiZDU4MWQzMTdjLzEvYUdsdlVkVkpPV2JxYWF0NHZnbHJrUUgxdE5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC85ZGI0ZDMtZjc4ZC00NDMwLTg3YzAtNmNiZDU4MWQzMTdj
LzEvZ2J0NHZrSGtnemVaZklfcEhZNHZKUGUwbnE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXCvgMA0G
CSqGSIb3DQEBCwUAA4IBAQCVeqmar0JH7b4bYT0b6WPQHtIxR6V9ia3tbk6foOKE
M+uYDe/jyM/3TnO4x6N0fE0hNacK3M/DM2WBRFAC0AWUbDfdwY3M2EnrZWFJR0pd
GMVrCYfNYj0vqE6djQRYWKWVM1PaRBUq7IBYuvlaVYebZ756eR33W4FZezJfCpbw
D7czAdSqJnwLLnu2m6LjcY9agKchNVAIMDFvhgzWbAJkXUj1ZnrS4tqCAnfyQ+56
SjwfNlsv6oX+DFJwFRkcY65DTxrnbuYXmSBnaafqqBdHRPDhbTVAz3s9knqlPWu1
EiiTc19kRHAnDNRg95C98kdBSpjDI3UtEOuJCH5D8zwY
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:06 2025 by rpki-client on console.sobornost.net