Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/Vzz9bAfXoV_CbBlQ5On5u4sMVy4.roa
File: Vzz9bAfXoV_CbBlQ5On5u4sMVy4.roa (raw, json)
Hash identifier: 9L5UOAnznGuqnwBvCvaXb3wcpMtqdknz4TA8q7GIbmw=
Subject key identifier: 57:3C:FD:6C:07:D7:A1:5F:C2:6C:19:50:E4:E9:F9:BB:8B:0C:57:2E
Certificate issuer: /CN=87a594e304b682183aa2359e40e1dcef93fe0570
Certificate serial: 01950E37F3566D1D7AAA87FA2A800A27F84B
Authority key identifier: 87:A5:94:E3:04:B6:82:18:3A:A2:35:9E:40:E1:DC:EF:93:FE:05:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h6WU4wS2ghg6ojWeQOHc75P-BXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/Vzz9bAfXoV_CbBlQ5On5u4sMVy4.roa
Signing time: Sun 16 Feb 2025 10:05:02 +0000
ROA not before: Sun 16 Feb 2025 10:05:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5531
IP address blocks: 91.224.2.0/24 maxlen: 24
91.224.3.0/24 maxlen: 24
194.165.24.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:0e:37:f3:56:6d:1d:7a:aa:87:fa:2a:80:0a:27:f8:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87a594e304b682183aa2359e40e1dcef93fe0570
Validity
Not Before: Feb 16 10:05:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=573cfd6c07d7a15fc26c1950e4e9f9bb8b0c572e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d4:bd:c8:35:68:24:5f:3e:a4:c1:d2:c7:62:
79:83:96:64:f5:6a:dc:ec:ce:da:5a:d4:8b:aa:97:
d0:ae:6a:e3:26:a5:03:55:ad:a2:ee:22:d7:88:72:
3e:77:9c:17:20:72:e6:fb:3d:21:42:f5:69:34:22:
4f:74:40:02:35:7d:2a:49:1d:ce:39:47:a2:65:a7:
a2:86:41:28:94:ac:57:fe:43:5e:d6:5e:97:4c:5d:
17:dd:02:6d:3b:fc:d5:74:4b:fb:82:ac:11:8e:cf:
59:19:6e:b4:a3:ac:9a:87:eb:1c:d9:6a:86:a2:23:
2b:ff:9b:56:20:f5:ba:98:2f:ac:be:ed:32:d9:c6:
38:e5:16:b5:86:4f:91:ce:68:44:4e:83:bc:b5:da:
38:85:82:74:ea:7f:28:31:04:90:a6:e7:23:db:c8:
c8:00:54:8a:71:15:60:cd:62:09:0c:76:47:97:86:
f8:c3:6c:dd:ad:f3:b2:06:eb:8c:43:ca:1e:f7:4e:
e5:00:a3:7d:09:5d:01:a6:17:ed:fb:bf:dc:e7:f8:
d0:08:f8:2f:ba:a9:d9:86:e4:11:4e:5a:c7:d4:f6:
27:40:63:4c:8d:53:77:ce:88:4d:58:1b:2d:26:6d:
77:c2:cd:4b:f2:a3:47:7d:cf:ea:7b:25:74:91:f3:
e4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:3C:FD:6C:07:D7:A1:5F:C2:6C:19:50:E4:E9:F9:BB:8B:0C:57:2E
X509v3 Authority Key Identifier:
keyid:87:A5:94:E3:04:B6:82:18:3A:A2:35:9E:40:E1:DC:EF:93:FE:05:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h6WU4wS2ghg6ojWeQOHc75P-BXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/Vzz9bAfXoV_CbBlQ5On5u4sMVy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f8699-7b52-406e-82c0-b9e34a38f3a9/1/h6WU4wS2ghg6ojWeQOHc75P-BXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.2.0/23
194.165.24.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:68:e3:e1:47:32:32:72:d5:43:98:ea:24:1c:14:6e:3b:f8:
25:9f:c6:bc:98:68:32:b6:c1:57:4b:69:55:af:b2:ad:90:5c:
19:54:45:ba:fe:ea:fe:ea:a0:f0:6b:14:1a:88:1a:3c:60:d7:
be:aa:fd:bd:59:ee:fb:83:8b:c9:ae:00:63:3b:5f:49:a1:00:
21:64:6a:7d:f4:03:76:70:8c:46:34:5e:a4:4e:26:a8:d9:28:
7c:12:95:3b:1e:ac:f4:71:38:1b:ed:2c:fb:b9:20:76:3e:68:
64:93:6b:c0:e1:8a:07:ed:13:1a:4a:fd:72:00:eb:37:86:c9:
e6:e5:3c:f2:93:86:10:ae:46:7b:c2:02:9c:e7:07:8f:7c:be:
09:4e:8a:1b:7a:a3:bc:eb:f8:1d:01:b9:4c:74:05:e0:7c:24:
0d:dc:97:d3:a5:ed:67:09:99:c4:11:ba:00:ca:59:43:c6:06:
87:bb:b2:ce:f9:8b:d5:8e:91:9f:94:6f:70:09:26:3b:22:0b:
8c:c7:e2:e8:6f:ca:32:df:4e:99:6f:2b:23:bf:45:95:11:ed:
de:0e:31:4e:b5:e1:ae:4d:2b:5f:5f:bd:bb:33:5d:0f:cb:be:
5a:b8:ef:dc:bb:5d:56:25:10:4f:c0:ca:5a:b3:c5:30:db:94:
a1:03:e7:f4
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZUON/NWbR16qof6KoAKJ/hLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3YTU5NGUzMDRiNjgyMTgzYWEyMzU5ZTQwZTFkY2VmOTNm
ZTA1NzAwHhcNMjUwMjE2MTAwNTAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzNjZmQ2YzA3ZDdhMTVmYzI2YzE5NTBlNGU5ZjliYjhiMGM1NzJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9S9yDVoJF8+pMHSx2J5g5Zk9Wrc
7M7aWtSLqpfQrmrjJqUDVa2i7iLXiHI+d5wXIHLm+z0hQvVpNCJPdEACNX0qSR3O
OUeiZaeihkEolKxX/kNe1l6XTF0X3QJtO/zVdEv7gqwRjs9ZGW60o6yah+sc2WqG
oiMr/5tWIPW6mC+svu0y2cY45Ra1hk+RzmhEToO8tdo4hYJ06n8oMQSQpucj28jI
AFSKcRVgzWIJDHZHl4b4w2zdrfOyBuuMQ8oe907lAKN9CV0Bphft+7/c5/jQCPgv
uqnZhuQRTlrH1PYnQGNMjVN3zohNWBstJm13ws1L8qNHfc/qeyV0kfPkPwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFc8/WwH16FfwmwZUOTp+buLDFcuMB8GA1UdIwQY
MBaAFIellOMEtoIYOqI1nkDh3O+T/gVwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDZXVTR3UzJnaGc2b2pXZVFPSGM3NVAtQlhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC80Zjg2OTktN2I1Mi00MDZlLTgyYzAt
YjllMzRhMzhmM2E5LzEvVnp6OWJBZlhvVl9DYkJsUTVPbjV1NHNNVnk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC80Zjg2OTktN2I1Mi00MDZlLTgyYzAtYjllMzRhMzhmM2E5
LzEvaDZXVTR3UzJnaGc2b2pXZVFPSGM3NVAtQlhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBW+ACAwQB
wqUYMA0GCSqGSIb3DQEBCwUAA4IBAQCOaOPhRzIyctVDmOokHBRuO/gln8a8mGgy
tsFXS2lVr7KtkFwZVEW6/ur+6qDwaxQaiBo8YNe+qv29We77g4vJrgBjO19JoQAh
ZGp99AN2cIxGNF6kTiao2Sh8EpU7Hqz0cTgb7Sz7uSB2Pmhkk2vA4YoH7RMaSv1y
AOs3hsnm5Tzyk4YQrkZ7wgKc5wePfL4JToobeqO86/gdAblMdAXgfCQN3JfTpe1n
CZnEEboAyllDxgaHu7LO+YvVjpGflG9wCSY7IguMx+Lob8oy306Zbysjv0WVEe3e
DjFOteGuTStfX727M10Py75auO/cu11WJRBPwMpas8Uw25ShA+f0
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:59 2025 by rpki-client on console.sobornost.net