Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/095985-d0dc-4d41-98eb-41aa475d15b8/1/1sSI6pbK966Ru5qcNlumzkFgHXo.roa
File: 1sSI6pbK966Ru5qcNlumzkFgHXo.roa (raw, json)
Hash identifier: Y/ByRYsvClyIBJkfIerTKqNABccGlH+dIKU39tN+dB8=
Subject key identifier: D6:C4:88:EA:96:CA:F7:AE:91:BB:9A:9C:36:5B:A6:CE:41:60:1D:7A
Certificate issuer: /CN=093ad08ad73c2ac438ac69816381e7aa3e86579a
Certificate serial: 019427B60FCAC2FD02B05E32CD0B224E0E57
Authority key identifier: 09:3A:D0:8A:D7:3C:2A:C4:38:AC:69:81:63:81:E7:AA:3E:86:57:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTrQitc8KsQ4rGmBY4Hnqj6GV5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/095985-d0dc-4d41-98eb-41aa475d15b8/1/1sSI6pbK966Ru5qcNlumzkFgHXo.roa
Signing time: Thu 02 Jan 2025 15:50:30 +0000
ROA not before: Thu 02 Jan 2025 15:50:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214042
IP address blocks: 193.37.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:0f:ca:c2:fd:02:b0:5e:32:cd:0b:22:4e:0e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093ad08ad73c2ac438ac69816381e7aa3e86579a
Validity
Not Before: Jan 2 15:50:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d6c488ea96caf7ae91bb9a9c365ba6ce41601d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:d0:99:00:9d:38:ed:07:1e:fe:0e:88:be:
b6:fd:8c:0d:ed:29:51:43:b4:b9:de:08:2c:04:f8:
cf:c3:da:0c:0c:9d:25:4a:be:4d:a7:14:c5:e3:de:
26:99:f6:9a:dd:20:2b:bf:66:b0:0a:09:ef:c6:42:
da:d1:4a:bb:4e:35:ac:da:02:6e:40:4b:a9:20:04:
c2:5c:a7:b1:39:2b:e5:d2:63:97:8b:98:ce:96:54:
18:01:ee:6a:89:17:2b:5e:c7:5d:a2:aa:35:62:22:
37:33:b3:d1:78:0c:84:25:07:ce:2d:b1:5b:68:16:
84:ad:90:d6:82:7f:b6:8c:e8:49:9d:ea:4a:86:d6:
d4:da:00:15:af:3a:fb:c9:58:b2:7d:d4:51:a0:dc:
d5:ae:05:f5:c8:99:8b:e6:ce:63:30:f4:1d:c5:0c:
05:f6:65:10:66:a2:4e:be:2e:cc:f4:e7:c9:64:b6:
0b:4a:ab:da:68:66:cf:77:04:d1:d0:1d:86:9e:87:
ef:0e:2b:ce:e9:32:44:dc:70:f1:f6:c2:fd:23:b2:
e7:39:dd:d1:85:87:42:36:2a:5d:69:e9:52:94:b3:
d5:c2:0a:21:99:b2:41:62:20:ee:cb:93:77:7d:53:
80:1e:56:41:ac:51:81:a0:a0:c4:af:83:d5:6a:49:
4a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:C4:88:EA:96:CA:F7:AE:91:BB:9A:9C:36:5B:A6:CE:41:60:1D:7A
X509v3 Authority Key Identifier:
keyid:09:3A:D0:8A:D7:3C:2A:C4:38:AC:69:81:63:81:E7:AA:3E:86:57:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTrQitc8KsQ4rGmBY4Hnqj6GV5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/095985-d0dc-4d41-98eb-41aa475d15b8/1/1sSI6pbK966Ru5qcNlumzkFgHXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/095985-d0dc-4d41-98eb-41aa475d15b8/1/CTrQitc8KsQ4rGmBY4Hnqj6GV5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.38.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:a2:d4:e5:ed:e1:18:57:83:f3:7a:79:73:44:65:dd:bb:ff:
78:63:60:41:98:6f:4a:af:fa:e1:34:d6:57:79:62:92:35:5c:
b4:f0:f3:ce:da:38:db:fd:94:e7:f9:78:cc:e8:86:53:bc:21:
6e:a6:6d:55:bb:c5:99:83:5c:39:74:65:db:23:2f:82:22:7c:
49:1b:11:d4:4f:9b:75:48:70:8d:ad:92:f8:33:41:de:af:67:
1d:14:43:92:ef:72:be:5d:d1:f5:93:13:6c:02:9d:1f:b9:c8:
0b:96:87:8e:b5:9f:f5:e7:bc:cc:9f:e7:86:e1:8a:e4:f7:4b:
9a:f2:60:66:5b:c7:48:f4:2f:ea:45:f7:22:68:97:65:2e:5a:
1e:97:be:d8:12:9f:31:55:9f:65:0b:ef:5b:ef:6c:c6:9b:4b:
49:74:17:aa:fb:31:e9:da:b1:2c:ec:15:e7:68:76:92:68:32:
16:0b:e9:58:ba:44:b4:2e:ed:49:17:68:f4:db:c9:a9:28:be:
a1:c0:5a:a3:c6:e4:88:87:16:84:d3:8a:5b:2f:e5:1b:95:86:
47:38:e1:38:54:c3:b3:42:1f:91:40:e3:64:18:86:a4:6b:e2:
f0:a2:d0:6f:99:a1:40:28:c1:5b:c4:e6:5f:b4:ce:cc:a6:b6:
db:1d:9c:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQntg/Kwv0CsF4yzQsiTg5XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5M2FkMDhhZDczYzJhYzQzOGFjNjk4MTYzODFlN2FhM2U4
NjU3OWEwHhcNMjUwMTAyMTU1MDMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNmM0ODhlYTk2Y2FmN2FlOTFiYjlhOWMzNjViYTZjZTQxNjAxZDdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytfQmQCdOO0HHv4OiL62/YwN7SlR
Q7S53ggsBPjPw9oMDJ0lSr5NpxTF494mmfaa3SArv2awCgnvxkLa0Uq7TjWs2gJu
QEupIATCXKexOSvl0mOXi5jOllQYAe5qiRcrXsddoqo1YiI3M7PReAyEJQfOLbFb
aBaErZDWgn+2jOhJnepKhtbU2gAVrzr7yViyfdRRoNzVrgX1yJmL5s5jMPQdxQwF
9mUQZqJOvi7M9OfJZLYLSqvaaGbPdwTR0B2GnofvDivO6TJE3HDx9sL9I7LnOd3R
hYdCNipdaelSlLPVwgohmbJBYiDuy5N3fVOAHlZBrFGBoKDEr4PVaklKEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNbEiOqWyveukbuanDZbps5BYB16MB8GA1UdIwQY
MBaAFAk60IrXPCrEOKxpgWOB56o+hleaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1RyUWl0YzhLc1E0ckdtQlk0SG5xajZHVjVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8wOTU5ODUtZDBkYy00ZDQxLTk4ZWIt
NDFhYTQ3NWQxNWI4LzEvMXNTSTZwYks5NjZSdTVxY05sdW16a0ZnSFhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS8wOTU5ODUtZDBkYy00ZDQxLTk4ZWItNDFhYTQ3NWQxNWI4
LzEvQ1RyUWl0YzhLc1E0ckdtQlk0SG5xajZHVjVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSUmMA0G
CSqGSIb3DQEBCwUAA4IBAQAbotTl7eEYV4PzenlzRGXdu/94Y2BBmG9Kr/rhNNZX
eWKSNVy08PPO2jjb/ZTn+XjM6IZTvCFupm1Vu8WZg1w5dGXbIy+CInxJGxHUT5t1
SHCNrZL4M0Her2cdFEOS73K+XdH1kxNsAp0fucgLloeOtZ/157zMn+eG4Yrk90ua
8mBmW8dI9C/qRfciaJdlLloel77YEp8xVZ9lC+9b72zGm0tJdBeq+zHp2rEs7BXn
aHaSaDIWC+lYukS0Lu1JF2j028mpKL6hwFqjxuSIhxaE04pbL+UblYZHOOE4VMOz
Qh+RQONkGIaka+LwotBvmaFAKMFbxOZftM7MprbbHZxQ
-----END CERTIFICATE-----
Generated at Thu Jan 23 16:09:35 2025 by rpki-client on console.sobornost.net