Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/HjgAjQeDaXZKdKIg65rJrSZ01bk.roa
File: HjgAjQeDaXZKdKIg65rJrSZ01bk.roa (raw, json)
Hash identifier: SKWIIQpiA+MIRyPfkYnv+UHlvY+ONfNHoHSQy81/bbk=
Subject key identifier: 1E:38:00:8D:07:83:69:76:4A:74:A2:20:EB:9A:C9:AD:26:74:D5:B9
Certificate issuer: /CN=3f56231e7ef53181b630260f5739a939980bce0f
Certificate serial: 0195D1FD8EE04347573331DBCF3B0D294227
Authority key identifier: 3F:56:23:1E:7E:F5:31:81:B6:30:26:0F:57:39:A9:39:98:0B:CE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P1YjHn71MYG2MCYPVzmpOZgLzg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/HjgAjQeDaXZKdKIg65rJrSZ01bk.roa
Signing time: Wed 26 Mar 2025 10:26:49 +0000
ROA not before: Wed 26 Mar 2025 10:26:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201150
IP address blocks: 193.106.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d1:fd:8e:e0:43:47:57:33:31:db:cf:3b:0d:29:42:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f56231e7ef53181b630260f5739a939980bce0f
Validity
Not Before: Mar 26 10:26:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e38008d078369764a74a220eb9ac9ad2674d5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a3:a4:bb:87:9b:4e:b1:15:b8:01:9a:55:01:
75:be:d6:1f:6a:70:8b:07:32:6f:b8:77:25:a6:b0:
ae:b8:a5:7d:ba:a1:e9:1a:93:bd:0d:e4:06:cc:ba:
87:1e:24:fc:66:fd:b6:ff:7e:38:69:d3:3a:0a:31:
16:95:24:86:3c:a3:6c:9a:aa:47:ff:2d:0d:3f:5e:
a1:d3:4a:ea:d2:a2:a0:af:a0:0d:47:9f:48:1c:90:
7f:29:a8:0c:2b:97:32:df:bf:4f:bc:c9:17:18:1b:
13:9c:ed:e6:e3:f7:fc:78:62:81:a0:c6:7c:b3:c9:
fa:32:8b:d9:30:41:79:52:d0:3b:17:0a:37:c6:ac:
cb:37:53:19:fa:bf:b1:14:95:16:52:da:64:6b:ba:
a3:c5:1a:af:30:c1:f1:40:18:b8:75:d4:2b:80:86:
f2:d9:9f:33:91:ee:7d:59:69:5b:26:08:c9:68:bb:
d3:82:98:93:e8:df:ac:47:06:67:b1:86:e4:af:0d:
41:d3:09:b9:9a:12:2c:4b:c0:b8:67:d5:c0:bf:b1:
f3:1e:6d:02:bb:0b:95:00:ea:44:e9:4f:59:d0:c8:
c3:ef:c1:da:94:e3:03:70:77:d2:64:6d:86:89:db:
cc:31:64:2e:56:f3:0c:84:b4:93:22:b3:4a:14:53:
4d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:38:00:8D:07:83:69:76:4A:74:A2:20:EB:9A:C9:AD:26:74:D5:B9
X509v3 Authority Key Identifier:
keyid:3F:56:23:1E:7E:F5:31:81:B6:30:26:0F:57:39:A9:39:98:0B:CE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P1YjHn71MYG2MCYPVzmpOZgLzg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/HjgAjQeDaXZKdKIg65rJrSZ01bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/P1YjHn71MYG2MCYPVzmpOZgLzg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.191.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:28:a8:7c:b1:72:7f:4c:7c:b4:5b:ee:58:7e:42:3a:bb:02:
7c:7b:4b:50:81:0f:7c:a5:3b:ba:3f:fb:57:7e:14:0e:d4:1a:
93:b9:0b:13:2a:05:32:38:d6:88:50:90:ac:86:97:8e:cd:0d:
2c:72:8a:85:dd:9a:3f:80:11:9b:3a:5a:72:69:18:5e:4e:e6:
39:b1:cc:3b:d0:7e:51:41:ff:0e:3b:74:f2:57:25:61:58:4f:
96:fa:0b:80:fe:28:de:ac:12:95:c4:c4:72:f6:cf:d4:e7:ab:
31:97:ad:03:3b:4d:5c:11:52:52:96:7a:a4:51:6b:0a:a2:3d:
62:64:49:5d:20:5e:94:9a:fe:54:88:5b:19:39:97:e0:a3:38:
5c:80:e7:9e:f1:a5:29:e6:af:fa:d1:29:43:a7:f1:0d:50:d3:
25:a9:bd:7a:f4:5a:6e:14:5f:f1:d1:b0:26:0e:14:a5:26:9c:
e5:6f:fe:ae:78:13:9f:c4:d2:c2:36:41:07:db:08:31:b0:6b:
41:69:31:50:28:ec:1e:ab:ff:df:07:37:9a:07:72:0c:2a:91:
94:d3:97:34:f7:c8:41:76:9a:92:e3:4b:c0:c4:4d:c7:a9:7b:
15:12:ac:b4:15:84:f9:6a:2e:13:59:61:76:7a:e5:b2:6c:9f:
9a:40:bd:ee
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZXR/Y7gQ0dXMzHbzzsNKUInMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNmNTYyMzFlN2VmNTMxODFiNjMwMjYwZjU3MzlhOTM5OTgw
YmNlMGYwHhcNMjUwMzI2MTAyNjQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTM4MDA4ZDA3ODM2OTc2NGE3NGEyMjBlYjlhYzlhZDI2NzRkNWI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKOku4ebTrEVuAGaVQF1vtYfanCL
BzJvuHclprCuuKV9uqHpGpO9DeQGzLqHHiT8Zv22/344adM6CjEWlSSGPKNsmqpH
/y0NP16h00rq0qKgr6ANR59IHJB/KagMK5cy379PvMkXGBsTnO3m4/f8eGKBoMZ8
s8n6MovZMEF5UtA7Fwo3xqzLN1MZ+r+xFJUWUtpka7qjxRqvMMHxQBi4ddQrgIby
2Z8zke59WWlbJgjJaLvTgpiT6N+sRwZnsYbkrw1B0wm5mhIsS8C4Z9XAv7HzHm0C
uwuVAOpE6U9Z0MjD78HalOMDcHfSZG2GidvMMWQuVvMMhLSTIrNKFFNNWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB44AI0Hg2l2SnSiIOuaya0mdNW5MB8GA1UdIwQY
MBaAFD9WIx5+9TGBtjAmD1c5qTmYC84PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUDFZakhuNzFNWUcyTUNZUFZ6bXBPWmdMemc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi81YzJlMzYtYTlkYi00NTIyLWE2M2Ut
NDU1ZGRjN2Q5ZTM4LzEvSGpnQWpRZURhWFpLZEtJZzY1ckpyU1owMWJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi81YzJlMzYtYTlkYi00NTIyLWE2M2UtNDU1ZGRjN2Q5ZTM4
LzEvUDFZakhuNzFNWUcyTUNZUFZ6bXBPWmdMemc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWq/MA0G
CSqGSIb3DQEBCwUAA4IBAQA7KKh8sXJ/THy0W+5YfkI6uwJ8e0tQgQ98pTu6P/tX
fhQO1BqTuQsTKgUyONaIUJCshpeOzQ0scoqF3Zo/gBGbOlpyaRheTuY5scw70H5R
Qf8OO3TyVyVhWE+W+guA/ijerBKVxMRy9s/U56sxl60DO01cEVJSlnqkUWsKoj1i
ZEldIF6Umv5UiFsZOZfgozhcgOee8aUp5q/60SlDp/ENUNMlqb169FpuFF/x0bAm
DhSlJpzlb/6ueBOfxNLCNkEH2wgxsGtBaTFQKOweq//fBzeaB3IMKpGU05c098hB
dpqS40vAxE3HqXsVEqy0FYT5ai4TWWF2euWybJ+aQL3u
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:47 2025 by rpki-client on console.sobornost.net