Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/HtKtiVg-0zn3K5n3LScDDg1_p88.roa
File: HtKtiVg-0zn3K5n3LScDDg1_p88.roa (raw, json)
Hash identifier: to3WuOq+FMznKALAAApfBe9RQEcWrRQ420WrsW7wdUU=
Subject key identifier: 1E:D2:AD:89:58:3E:D3:39:F7:2B:99:F7:2D:27:03:0E:0D:7F:A7:CF
Certificate issuer: /CN=c38ca1d418c218e26f795181a9e3bb7b79d4443f
Certificate serial: 019421441F5C550EBA0A09DA3827D7A3C7D4
Authority key identifier: C3:8C:A1:D4:18:C2:18:E2:6F:79:51:81:A9:E3:BB:7B:79:D4:44:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4yh1BjCGOJveVGBqeO7e3nURD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/HtKtiVg-0zn3K5n3LScDDg1_p88.roa
Signing time: Wed 01 Jan 2025 09:48:20 +0000
ROA not before: Wed 01 Jan 2025 09:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41203
IP address blocks: 89.207.48.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:1f:5c:55:0e:ba:0a:09:da:38:27:d7:a3:c7:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38ca1d418c218e26f795181a9e3bb7b79d4443f
Validity
Not Before: Jan 1 09:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1ed2ad89583ed339f72b99f72d27030e0d7fa7cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:84:14:46:ce:a2:02:12:1a:cb:4b:06:61:e5:
03:42:ac:00:34:09:b0:f6:82:24:d8:c9:d6:c2:8b:
de:6c:ec:2b:14:7c:da:81:75:3b:4c:43:70:a1:ac:
ee:b1:67:0d:2a:0c:79:e9:c5:ef:24:6a:78:7c:90:
15:fb:56:e7:81:4f:04:d2:7f:e4:38:d3:01:45:24:
5f:ed:4b:97:41:62:d5:37:8b:d2:c3:cb:7f:39:e4:
11:fe:30:60:aa:5c:27:09:7e:55:b3:e7:47:bb:32:
9a:31:f0:f6:bd:04:0c:b9:ac:f2:6a:c2:b0:79:3e:
8d:f2:f2:6f:f9:bb:a0:bd:79:52:73:e3:77:8e:71:
7c:e5:c1:e5:ed:58:28:df:51:8b:20:82:db:3f:89:
8f:58:62:de:97:83:e7:5d:92:27:8a:4d:a9:7f:76:
94:c6:60:c7:d2:8f:97:7c:19:ec:6f:96:51:8f:ca:
80:cc:23:36:7b:80:a8:e0:90:40:47:76:1f:8e:89:
e9:85:71:7c:74:58:34:43:a9:91:65:47:de:c5:52:
53:3f:b5:0a:76:8b:97:86:7f:52:43:20:5c:9f:4b:
69:11:c7:3a:2c:be:47:7d:8f:9a:99:9c:a7:e6:eb:
d7:16:27:d2:bd:5d:df:ff:c9:0e:74:50:39:a6:7d:
22:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D2:AD:89:58:3E:D3:39:F7:2B:99:F7:2D:27:03:0E:0D:7F:A7:CF
X509v3 Authority Key Identifier:
keyid:C3:8C:A1:D4:18:C2:18:E2:6F:79:51:81:A9:E3:BB:7B:79:D4:44:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4yh1BjCGOJveVGBqeO7e3nURD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/HtKtiVg-0zn3K5n3LScDDg1_p88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/6fcba8-adb8-411f-9e46-2ef27a1916bd/1/w4yh1BjCGOJveVGBqeO7e3nURD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.207.48.0/21
Signature Algorithm: sha256WithRSAEncryption
73:00:08:6f:89:64:c3:08:71:3f:b2:71:fa:12:dc:29:7b:7e:
1e:0e:6b:6b:eb:0d:fe:6a:45:3a:48:f9:ed:75:60:e5:3f:21:
ea:cc:23:8c:f3:78:59:14:b8:c1:79:90:e7:64:99:84:ce:7e:
d0:d1:d0:90:70:0e:f0:a6:95:c2:4f:f2:e0:8c:c2:ee:ab:f0:
a2:55:2f:83:65:55:6f:54:89:d8:06:f1:3d:ef:5e:31:c9:5e:
61:fa:ea:5a:f6:72:e3:fe:5e:b9:cb:55:7a:ce:dd:9c:d5:74:
52:28:b5:09:d8:ab:22:1a:29:92:02:27:3c:1f:9f:97:b8:a4:
f7:4d:77:60:a0:ad:e5:83:3a:8b:b4:ce:4d:b4:bf:59:0a:83:
bc:e9:c6:91:82:a3:4d:1f:41:d7:cd:59:1b:ac:96:29:9d:bd:
b7:7d:a8:6b:f3:41:e9:06:06:83:61:75:4e:fd:35:36:43:a1:
20:f4:12:51:e7:2a:72:05:2d:91:fe:76:d3:1a:fc:e3:90:1c:
38:e6:a8:49:b1:51:ba:48:a0:50:c9:94:4e:a1:46:04:9d:27:
32:4c:66:90:10:f9:b6:a8:10:fd:52:a0:c6:e5:c0:3e:57:50:
e0:4d:7d:01:3d:5f:a7:66:51:d1:5f:e1:60:ef:5f:74:13:87:
49:fc:87:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhRB9cVQ66CgnaOCfXo8fUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzOGNhMWQ0MThjMjE4ZTI2Zjc5NTE4MWE5ZTNiYjdiNzlk
NDQ0M2YwHhcNMjUwMTAxMDk0ODIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWQyYWQ4OTU4M2VkMzM5ZjcyYjk5ZjcyZDI3MDMwZTBkN2ZhN2NmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4QURs6iAhIay0sGYeUDQqwANAmw
9oIk2MnWwovebOwrFHzagXU7TENwoazusWcNKgx56cXvJGp4fJAV+1bngU8E0n/k
ONMBRSRf7UuXQWLVN4vSw8t/OeQR/jBgqlwnCX5Vs+dHuzKaMfD2vQQMuazyasKw
eT6N8vJv+bugvXlSc+N3jnF85cHl7Vgo31GLIILbP4mPWGLel4PnXZInik2pf3aU
xmDH0o+XfBnsb5ZRj8qAzCM2e4Co4JBAR3YfjonphXF8dFg0Q6mRZUfexVJTP7UK
douXhn9SQyBcn0tpEcc6LL5HfY+amZyn5uvXFifSvV3f/8kOdFA5pn0iIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB7SrYlYPtM59yuZ9y0nAw4Nf6fPMB8GA1UdIwQY
MBaAFMOModQYwhjib3lRganju3t51EQ/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzR5aDFCakNHT0p2ZVZHQnFlTzdlM25VUkQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS82ZmNiYTgtYWRiOC00MTFmLTllNDYt
MmVmMjdhMTkxNmJkLzEvSHRLdGlWZy0wem4zSzVuM0xTY0REZzFfcDg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS82ZmNiYTgtYWRiOC00MTFmLTllNDYtMmVmMjdhMTkxNmJk
LzEvdzR5aDFCakNHT0p2ZVZHQnFlTzdlM25VUkQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDWc8wMA0G
CSqGSIb3DQEBCwUAA4IBAQBzAAhviWTDCHE/snH6Etwpe34eDmtr6w3+akU6SPnt
dWDlPyHqzCOM83hZFLjBeZDnZJmEzn7Q0dCQcA7wppXCT/LgjMLuq/CiVS+DZVVv
VInYBvE9714xyV5h+upa9nLj/l65y1V6zt2c1XRSKLUJ2KsiGimSAic8H5+XuKT3
TXdgoK3lgzqLtM5NtL9ZCoO86caRgqNNH0HXzVkbrJYpnb23fahr80HpBgaDYXVO
/TU2Q6Eg9BJR5ypyBS2R/nbTGvzjkBw45qhJsVG6SKBQyZROoUYEnScyTGaQEPm2
qBD9UqDG5cA+V1DgTX0BPV+nZlHRX+Fg7190E4dJ/If4
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:15 2025 by rpki-client on console.sobornost.net