Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/0PF2Op7lanUcUc4dVCdRpdsHc84.roa
File: 0PF2Op7lanUcUc4dVCdRpdsHc84.roa (raw, json)
Hash identifier: aSXvgQxfT8WK8M8rTK72F51UgR5bwPkfCFYHP3aKG1Y=
Subject key identifier: D0:F1:76:3A:9E:E5:6A:75:1C:51:CE:1D:54:27:51:A5:DB:07:73:CE
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 019427B620E6333B1C45BEBCA57F034951AF
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/0PF2Op7lanUcUc4dVCdRpdsHc84.roa
Signing time: Thu 02 Jan 2025 15:50:34 +0000
ROA not before: Thu 02 Jan 2025 15:50:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216130
IP address blocks: 147.234.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:20:e6:33:3b:1c:45:be:bc:a5:7f:03:49:51:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Jan 2 15:50:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d0f1763a9ee56a751c51ce1d542751a5db0773ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:27:e1:bd:be:01:64:8f:d5:f4:62:79:28:81:
b4:3d:20:0b:f6:5e:0f:e7:f0:2d:aa:73:0a:be:71:
b9:a8:6b:f0:57:08:75:48:b1:a3:1b:5f:3a:60:26:
c7:d5:06:92:15:a7:82:47:c6:b5:6f:30:53:c1:ab:
e4:90:10:8c:95:8e:ac:5c:70:a8:47:23:66:a9:e2:
6d:4c:48:69:54:48:2c:39:d1:3b:d7:83:1f:0e:48:
58:d4:27:40:71:77:0f:50:74:49:ea:8b:42:88:8c:
4d:9d:c4:9f:a7:cf:83:c0:3e:ac:93:66:ed:ff:fc:
f6:85:5d:1a:e7:65:fa:10:3b:50:36:f0:47:ee:5a:
2b:a9:ad:33:3b:12:ab:19:52:9a:c3:c7:e0:93:63:
88:7d:a9:3f:e3:ba:e0:ff:0b:bc:01:2d:d2:bd:5b:
cf:d9:34:95:bb:39:43:1c:21:0c:89:f6:22:63:ec:
c5:84:40:b4:07:ed:02:a6:9a:08:e0:e8:ae:1d:90:
79:4d:9e:19:1b:7c:34:3b:0f:f7:94:ba:7b:07:d3:
83:37:58:3b:60:30:1b:8e:5f:84:49:9d:6a:3d:04:
40:77:43:2b:f1:f5:60:73:74:d0:91:05:b7:62:69:
a6:1d:0f:c7:f2:05:16:63:1d:64:64:4b:7e:fb:8b:
de:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F1:76:3A:9E:E5:6A:75:1C:51:CE:1D:54:27:51:A5:DB:07:73:CE
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/0PF2Op7lanUcUc4dVCdRpdsHc84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.27.0/24
Signature Algorithm: sha256WithRSAEncryption
71:19:e6:19:e5:91:9a:c6:2f:1c:78:55:ef:06:8c:17:3c:be:
37:6c:14:77:16:b4:29:cf:11:b4:17:fe:ae:55:26:7a:03:f5:
ae:d7:7d:da:c8:a5:a0:da:28:2e:bf:4b:d0:d6:84:1b:39:0b:
9d:da:23:ea:8c:ef:93:bd:df:ec:19:5a:f1:14:cd:0c:65:48:
d8:80:cc:81:ce:63:99:e1:ef:e9:61:1e:83:ee:90:4d:95:7e:
17:48:70:a2:39:e3:a3:85:db:af:88:87:2f:4b:84:b4:9a:ff:
c6:62:35:ca:ad:e1:8f:b8:cd:83:f0:1c:0f:0b:e4:d6:b9:5a:
44:76:ef:60:ac:cb:f7:ab:72:66:aa:d0:aa:7e:c2:fb:e1:06:
1e:79:95:0e:81:86:0b:fd:4e:c2:55:cc:f0:ff:95:3d:22:1d:
23:9d:8f:45:1a:cc:3f:c5:af:48:1a:b8:79:2f:c8:69:92:d5:
e4:13:c5:88:71:ec:be:2c:50:8b:e2:4c:a0:36:1c:87:ad:36:
77:0d:1b:58:7a:da:60:21:07:e7:12:3c:b3:2d:a9:76:b8:1b:
2e:4f:45:d6:aa:36:e1:1e:2b:fc:f1:01:a7:8f:03:d5:1b:22:
01:cb:97:f3:2c:28:59:9f:ad:65:05:92:ab:4c:c0:a5:e5:5a:
c2:0d:5c:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQntiDmMzscRb68pX8DSVGvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYmFkNzRlN2Y2YzA5NDlhMjczNmE1NzQ3ODQ5NmQ3ZDhi
NDUwZTYwHhcNMjUwMTAyMTU1MDM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGYxNzYzYTllZTU2YTc1MWM1MWNlMWQ1NDI3NTFhNWRiMDc3M2NlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ifhvb4BZI/V9GJ5KIG0PSAL9l4P
5/AtqnMKvnG5qGvwVwh1SLGjG186YCbH1QaSFaeCR8a1bzBTwavkkBCMlY6sXHCo
RyNmqeJtTEhpVEgsOdE714MfDkhY1CdAcXcPUHRJ6otCiIxNncSfp8+DwD6sk2bt
//z2hV0a52X6EDtQNvBH7lorqa0zOxKrGVKaw8fgk2OIfak/47rg/wu8AS3SvVvP
2TSVuzlDHCEMifYiY+zFhEC0B+0CppoI4OiuHZB5TZ4ZG3w0Ow/3lLp7B9ODN1g7
YDAbjl+ESZ1qPQRAd0Mr8fVgc3TQkQW3YmmmHQ/H8gUWYx1kZEt++4veNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNDxdjqe5Wp1HFHOHVQnUaXbB3POMB8GA1UdIwQY
MBaAFCG6105/bAlJonNqV0eEltfYtFDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQt
NDQzMzIyOWE4NDczLzEvMFBGMk9wN2xhblVjVWM0ZFZDZFJwZHNIYzg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84ZGRjMzgtN2ExYS00OTA2LWE4ZWQtNDQzMzIyOWE4NDcz
LzEvSWJyWFRuOXNDVW1pYzJwWFI0U1cxOWkwVU9ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk+obMA0G
CSqGSIb3DQEBCwUAA4IBAQBxGeYZ5ZGaxi8ceFXvBowXPL43bBR3FrQpzxG0F/6u
VSZ6A/Wu133ayKWg2iguv0vQ1oQbOQud2iPqjO+Tvd/sGVrxFM0MZUjYgMyBzmOZ
4e/pYR6D7pBNlX4XSHCiOeOjhduviIcvS4S0mv/GYjXKreGPuM2D8BwPC+TWuVpE
du9grMv3q3JmqtCqfsL74QYeeZUOgYYL/U7CVczw/5U9Ih0jnY9FGsw/xa9IGrh5
L8hpktXkE8WIcey+LFCL4kygNhyHrTZ3DRtYetpgIQfnEjyzLal2uBsuT0XWqjbh
Hiv88QGnjwPVGyIBy5fzLChZn61lBZKrTMCl5VrCDVxl
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:33 2025 by rpki-client on console.sobornost.net