Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/IGa7QfhbXaDsGCT9xJOI5gdu6yw.roa
File: IGa7QfhbXaDsGCT9xJOI5gdu6yw.roa (raw, json)
Hash identifier: X0y8/lBS1BHPwzQ2lfqfjmgEWEXvXO2MftnVLJbE6FY=
Subject key identifier: 20:66:BB:41:F8:5B:5D:A0:EC:18:24:FD:C4:93:88:E6:07:6E:EB:2C
Certificate issuer: /CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Certificate serial: 019422FC446C52DC79A793AE45FB947E2F50
Authority key identifier: 1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/IGa7QfhbXaDsGCT9xJOI5gdu6yw.roa
Signing time: Wed 01 Jan 2025 17:49:05 +0000
ROA not before: Wed 01 Jan 2025 17:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24631
IP address blocks: 91.208.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:44:6c:52:dc:79:a7:93:ae:45:fb:94:7e:2f:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Validity
Not Before: Jan 1 17:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2066bb41f85b5da0ec1824fdc49388e6076eeb2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ce:27:8b:26:ea:c4:ae:58:bf:61:74:d5:6e:
e2:68:b6:4a:ff:8b:e0:37:67:f0:d9:31:51:1c:b4:
27:a3:eb:fb:78:92:84:19:53:ac:2b:8b:20:06:19:
38:9e:a1:49:db:80:e0:5b:a1:61:94:ce:46:33:4c:
99:99:69:9d:d1:18:86:37:a6:ad:39:c0:85:f4:0e:
fe:09:ac:e3:f0:64:65:6c:8b:be:52:8c:0b:b3:da:
7c:b2:73:16:6f:26:5c:e9:2b:7b:00:e7:79:f7:5b:
48:2f:d3:3f:48:44:16:7d:b8:ee:d6:20:5e:8c:ca:
2e:62:93:0a:40:6d:35:f4:2f:17:7e:de:b9:7d:5a:
be:a2:1a:02:70:07:d3:c6:13:c8:6c:a5:cd:a3:2f:
4e:7a:d6:92:6f:86:17:ee:a8:2f:4e:19:a3:f9:34:
9b:46:db:4d:2f:f2:4b:67:96:44:27:cd:1f:e5:b9:
b2:f6:c5:5f:e5:b6:26:49:50:ac:4f:bf:8a:a8:44:
3a:71:14:cf:4c:d3:9a:3a:0a:4b:ae:b4:9e:5e:f9:
58:82:b7:85:be:35:00:a8:cd:e2:30:ae:08:c9:85:
55:07:81:04:35:b9:b7:02:74:df:4d:8b:74:13:9a:
97:87:b9:25:b6:ee:18:be:6d:b5:4a:31:1c:16:08:
50:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:66:BB:41:F8:5B:5D:A0:EC:18:24:FD:C4:93:88:E6:07:6E:EB:2C
X509v3 Authority Key Identifier:
keyid:1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/IGa7QfhbXaDsGCT9xJOI5gdu6yw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.165.0/24
Signature Algorithm: sha256WithRSAEncryption
80:40:03:17:66:69:60:9f:a6:9a:02:c7:76:d4:f2:f5:2c:50:
37:e5:be:fe:11:93:dd:9d:1b:9f:00:c5:20:3d:01:1f:ff:88:
20:4b:60:60:71:15:16:24:22:1e:89:1e:2b:2c:82:e7:ba:3b:
84:95:59:03:f5:62:8e:3d:61:f0:67:42:c7:0b:c6:5b:4e:e9:
39:62:bd:2e:cf:5a:a0:96:ab:d4:78:3f:32:df:94:a0:fd:db:
36:a9:2f:68:67:54:37:87:b0:a4:1b:d9:84:80:33:d9:16:b7:
45:8d:61:3b:2d:1c:cc:e7:91:54:21:7a:f6:f7:fc:03:bd:58:
93:57:d8:dc:b6:21:38:10:6a:9e:46:83:1c:73:39:59:31:57:
3e:09:5a:b4:d3:80:cc:34:80:78:28:8a:1d:2a:ee:44:63:e6:
6d:9d:cd:16:14:99:d3:a3:88:2a:f3:e9:f1:cf:6c:54:6b:1a:
e2:ef:0d:06:85:85:dd:f2:65:5b:bf:c1:b7:5f:75:6f:0f:53:
5c:f6:a5:df:f6:93:60:04:fb:3f:d9:a1:ff:03:1e:6f:98:2f:
11:a7:31:65:a8:f7:7b:18:a9:2f:be:26:b2:e5:ef:6a:c9:52:
d1:dd:89:f4:41:ad:00:62:e8:22:71:ce:ab:6f:48:e4:2c:1a:
38:f6:a1:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi/ERsUtx5p5OuRfuUfi9QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlN2IyZTI0M2Y4YWE5NTQ1OTc5MzJiY2RjZDlhZjY1NjBk
Y2U1MTYwHhcNMjUwMTAxMTc0OTA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDY2YmI0MWY4NWI1ZGEwZWMxODI0ZmRjNDkzODhlNjA3NmVlYjJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2s4niybqxK5Yv2F01W7iaLZK/4vg
N2fw2TFRHLQno+v7eJKEGVOsK4sgBhk4nqFJ24DgW6FhlM5GM0yZmWmd0RiGN6at
OcCF9A7+Cazj8GRlbIu+UowLs9p8snMWbyZc6St7AOd591tIL9M/SEQWfbju1iBe
jMouYpMKQG019C8Xft65fVq+ohoCcAfTxhPIbKXNoy9OetaSb4YX7qgvThmj+TSb
RttNL/JLZ5ZEJ80f5bmy9sVf5bYmSVCsT7+KqEQ6cRTPTNOaOgpLrrSeXvlYgreF
vjUAqM3iMK4IyYVVB4EENbm3AnTfTYt0E5qXh7kltu4Yvm21SjEcFghQDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCBmu0H4W12g7Bgk/cSTiOYHbussMB8GA1UdIwQY
MBaAFB57LiQ/iqlUWXkyvNzZr2Vg3OUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG5zdUpELUtxVlJaZVRLODNObXZaV0RjNVJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC80ZGFlZTAtODRlMi00MWU5LTk2NDMt
ZDU0OTU1NjQzY2Q5LzEvSUdhN1FmaGJYYURzR0NUOXhKT0k1Z2R1Nnl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC80ZGFlZTAtODRlMi00MWU5LTk2NDMtZDU0OTU1NjQzY2Q5
LzEvSG5zdUpELUtxVlJaZVRLODNObXZaV0RjNVJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9ClMA0G
CSqGSIb3DQEBCwUAA4IBAQCAQAMXZmlgn6aaAsd21PL1LFA35b7+EZPdnRufAMUg
PQEf/4ggS2BgcRUWJCIeiR4rLILnujuElVkD9WKOPWHwZ0LHC8ZbTuk5Yr0uz1qg
lqvUeD8y35Sg/ds2qS9oZ1Q3h7CkG9mEgDPZFrdFjWE7LRzM55FUIXr29/wDvViT
V9jctiE4EGqeRoMcczlZMVc+CVq004DMNIB4KIodKu5EY+Ztnc0WFJnTo4gq8+nx
z2xUaxri7w0GhYXd8mVbv8G3X3VvD1Nc9qXf9pNgBPs/2aH/Ax5vmC8RpzFlqPd7
GKkvviay5e9qyVLR3Yn0Qa0AYugicc6rb0jkLBo49qGB
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:43 2025 by rpki-client on console.sobornost.net