Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/7bac71-994e-4d47-bcfe-f8f3f0401cc3/1/mThuVq__AdJ8m0fUEig5mExB-MI.roa
File: mThuVq__AdJ8m0fUEig5mExB-MI.roa (raw, json)
Hash identifier: uwNlHWqFKBBy+qRVS5eJabxoyu+NHhSLJrsP7OWfbIo=
Subject key identifier: 99:38:6E:56:AF:FF:01:D2:7C:9B:47:D4:12:28:39:98:4C:41:F8:C2
Certificate issuer: /CN=3183efc52dd5d2d4f7e0c45d22c9c29f1dce8e59
Certificate serial: 019422FB4C59C89A946FE2E6A6C5669A1C59
Authority key identifier: 31:83:EF:C5:2D:D5:D2:D4:F7:E0:C4:5D:22:C9:C2:9F:1D:CE:8E:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYPvxS3V0tT34MRdIsnCnx3Ojlk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/7bac71-994e-4d47-bcfe-f8f3f0401cc3/1/mThuVq__AdJ8m0fUEig5mExB-MI.roa
Signing time: Wed 01 Jan 2025 17:48:01 +0000
ROA not before: Wed 01 Jan 2025 17:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197134
IP address blocks: 91.217.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:4c:59:c8:9a:94:6f:e2:e6:a6:c5:66:9a:1c:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183efc52dd5d2d4f7e0c45d22c9c29f1dce8e59
Validity
Not Before: Jan 1 17:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=99386e56afff01d27c9b47d4122839984c41f8c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:7a:4a:6e:8b:ce:22:f0:c9:04:d0:7c:d5:bf:
88:f5:28:2e:b3:ce:39:08:c5:6d:62:f1:73:0b:17:
61:3c:4c:0d:53:83:f6:d8:41:d6:3f:d8:1d:49:b0:
43:a4:fe:62:f8:90:a0:c2:d6:64:80:83:f1:f9:01:
a1:84:ed:61:c9:ef:6b:75:9c:92:68:b6:ae:d7:d6:
3a:b3:57:95:c8:8e:af:56:31:a9:39:48:95:c7:c5:
2f:c2:4c:dd:14:63:db:f5:a9:bc:66:b8:82:a4:45:
c5:33:33:83:e1:a5:ee:84:75:a1:c7:db:4a:99:d3:
87:0e:36:63:b0:24:e5:f2:dd:a8:d5:0c:44:75:32:
b6:d9:cf:21:99:63:b3:83:65:4c:77:32:e7:1b:a6:
51:b4:b7:12:d8:8c:44:c2:9e:12:8d:fc:98:5f:8e:
cf:c9:14:34:80:d5:4a:97:34:21:38:78:5e:36:d2:
91:45:9a:45:be:02:41:8c:fb:60:85:0d:3b:bd:bb:
73:bc:e0:61:34:6c:b7:60:c9:b8:0f:04:bf:74:27:
48:46:a8:04:b6:73:8e:e9:55:85:09:b9:47:c9:88:
f9:50:a7:48:d5:51:6f:64:ce:05:75:cd:d2:99:d4:
79:fd:a7:44:e0:24:ad:0d:67:58:2e:7d:6a:a3:bf:
09:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:38:6E:56:AF:FF:01:D2:7C:9B:47:D4:12:28:39:98:4C:41:F8:C2
X509v3 Authority Key Identifier:
keyid:31:83:EF:C5:2D:D5:D2:D4:F7:E0:C4:5D:22:C9:C2:9F:1D:CE:8E:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYPvxS3V0tT34MRdIsnCnx3Ojlk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7bac71-994e-4d47-bcfe-f8f3f0401cc3/1/mThuVq__AdJ8m0fUEig5mExB-MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7bac71-994e-4d47-bcfe-f8f3f0401cc3/1/MYPvxS3V0tT34MRdIsnCnx3Ojlk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.28.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:7e:60:8d:b1:48:e5:c7:f7:49:3f:bb:cc:63:95:12:5c:83:
e3:bc:69:a7:56:f8:7e:48:ce:a8:bf:ea:8c:13:66:ab:32:97:
90:5a:bc:68:cf:14:8d:d5:63:19:8a:8e:fa:49:5a:87:58:30:
a7:6c:66:4d:2c:5e:79:11:0b:6b:19:eb:b7:d6:67:a1:a9:11:
9e:82:99:03:84:50:2a:b5:c5:42:52:6c:d0:d7:5f:e9:b9:5e:
4f:a9:9d:35:da:fd:8a:4d:2a:bb:31:1b:aa:94:39:ba:81:13:
ce:ff:cc:cd:29:07:f9:e7:8c:6c:91:49:b6:78:6f:29:fc:68:
7b:f8:b9:d2:e7:20:25:7c:95:63:66:2f:f6:0c:74:23:57:34:
c3:6e:ac:18:23:30:30:04:f8:33:f6:03:dc:4b:08:d8:28:fa:
11:0a:a0:50:51:30:7f:4d:09:54:7e:65:b7:3c:0f:d4:2c:f9:
02:02:a3:e5:e5:29:96:27:6e:ca:66:c4:e6:df:ff:5f:59:0a:
22:d1:42:d4:ae:cb:79:ea:aa:89:50:5a:ab:11:36:02:fc:3b:
9a:01:c9:e9:f2:d9:80:9b:77:d7:3b:aa:52:ca:4a:58:7f:19:
24:c4:76:4d:06:7e:0b:b6:51:71:e6:50:07:d8:1d:58:c7:b0:
8f:0a:21:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi+0xZyJqUb+LmpsVmmhxZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxODNlZmM1MmRkNWQyZDRmN2UwYzQ1ZDIyYzljMjlmMWRj
ZThlNTkwHhcNMjUwMTAxMTc0ODAxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTM4NmU1NmFmZmYwMWQyN2M5YjQ3ZDQxMjI4Mzk5ODRjNDFmOGMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXpKbovOIvDJBNB81b+I9Sgus845
CMVtYvFzCxdhPEwNU4P22EHWP9gdSbBDpP5i+JCgwtZkgIPx+QGhhO1hye9rdZyS
aLau19Y6s1eVyI6vVjGpOUiVx8UvwkzdFGPb9am8ZriCpEXFMzOD4aXuhHWhx9tK
mdOHDjZjsCTl8t2o1QxEdTK22c8hmWOzg2VMdzLnG6ZRtLcS2IxEwp4SjfyYX47P
yRQ0gNVKlzQhOHheNtKRRZpFvgJBjPtghQ07vbtzvOBhNGy3YMm4DwS/dCdIRqgE
tnOO6VWFCblHyYj5UKdI1VFvZM4Fdc3SmdR5/adE4CStDWdYLn1qo78J2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJk4blav/wHSfJtH1BIoOZhMQfjCMB8GA1UdIwQY
MBaAFDGD78Ut1dLU9+DEXSLJwp8dzo5ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVlQdnhTM1YwdFQzNE1SZElzbkNueDNPamxrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC83YmFjNzEtOTk0ZS00ZDQ3LWJjZmUt
ZjhmM2YwNDAxY2MzLzEvbVRodVZxX19BZEo4bTBmVUVpZzVtRXhCLU1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC83YmFjNzEtOTk0ZS00ZDQ3LWJjZmUtZjhmM2YwNDAxY2Mz
LzEvTVlQdnhTM1YwdFQzNE1SZElzbkNueDNPamxrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9kcMA0G
CSqGSIb3DQEBCwUAA4IBAQCgfmCNsUjlx/dJP7vMY5USXIPjvGmnVvh+SM6ov+qM
E2arMpeQWrxozxSN1WMZio76SVqHWDCnbGZNLF55EQtrGeu31mehqRGegpkDhFAq
tcVCUmzQ11/puV5PqZ012v2KTSq7MRuqlDm6gRPO/8zNKQf554xskUm2eG8p/Gh7
+LnS5yAlfJVjZi/2DHQjVzTDbqwYIzAwBPgz9gPcSwjYKPoRCqBQUTB/TQlUfmW3
PA/ULPkCAqPl5SmWJ27KZsTm3/9fWQoi0ULUrst56qqJUFqrETYC/DuaAcnp8tmA
m3fXO6pSykpYfxkkxHZNBn4LtlFx5lAH2B1Yx7CPCiG9
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net