Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d78d1-3e0c-4c1a-a141-74e218d4b613/1/G33qrlRtzc0aMcrBrdJycu6bm0Q.roa
File: G33qrlRtzc0aMcrBrdJycu6bm0Q.roa (raw, json)
Hash identifier: +um2Xgq+hU8pHVaKAJDNWlpMQPujZRtpnOGetXmc7B0=
Subject key identifier: 1B:7D:EA:AE:54:6D:CD:CD:1A:31:CA:C1:AD:D2:72:72:EE:9B:9B:44
Certificate issuer: /CN=81062dce1a791e7341d5f4259811ab4d65f6b075
Certificate serial: 018CC42529F92BE9F437A6D8AB7A826112AC
Authority key identifier: 81:06:2D:CE:1A:79:1E:73:41:D5:F4:25:98:11:AB:4D:65:F6:B0:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQYtzhp5HnNB1fQlmBGrTWX2sHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d78d1-3e0c-4c1a-a141-74e218d4b613/1/G33qrlRtzc0aMcrBrdJycu6bm0Q.roa
Signing time: Mon 01 Jan 2024 08:30:19 +0000
ROA not before: Mon 01 Jan 2024 08:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199189
IP address blocks: 89.22.49.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:29:f9:2b:e9:f4:37:a6:d8:ab:7a:82:61:12:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81062dce1a791e7341d5f4259811ab4d65f6b075
Validity
Not Before: Jan 1 08:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b7deaae546dcdcd1a31cac1add27272ee9b9b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b9:9f:39:90:68:f7:b7:50:3b:2d:f3:ad:11:
30:89:53:41:c5:2c:a7:23:60:c6:d6:26:6e:36:81:
75:34:b5:ab:d1:3b:55:62:7b:07:4b:91:85:e4:0b:
28:0b:55:2d:90:69:34:ff:e3:e4:95:90:a6:51:7b:
44:fe:4c:f2:74:6f:e7:99:ad:61:a3:fa:ac:a3:4d:
07:6f:83:6d:b5:b3:b9:4c:0a:31:02:3d:0c:86:3e:
de:e2:01:95:10:5b:de:58:a2:03:58:38:ea:fd:08:
b5:b6:3e:9b:b5:96:08:86:7a:63:37:83:7b:54:3b:
ca:c4:b1:00:2d:4c:7f:03:3b:b0:85:00:7f:55:0e:
48:ba:44:b4:c1:8b:45:8e:ba:40:4d:41:29:f1:37:
98:90:1d:89:d5:bd:9a:17:14:f8:f4:9a:c0:fd:ca:
aa:1e:86:4f:0b:75:27:38:bb:80:b7:87:94:6e:f8:
57:22:d5:69:52:99:24:b6:8f:86:34:1a:73:af:9f:
d6:2d:a0:ce:d5:f3:8b:5a:73:05:31:fd:2c:9d:7c:
d5:8d:86:ba:aa:71:a3:03:c3:08:14:a3:88:6d:ff:
28:02:14:a5:ae:18:c1:4e:4b:27:63:cc:51:22:69:
3d:17:0a:ed:e5:12:3f:6d:be:a9:8d:f7:0e:e1:89:
95:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:7D:EA:AE:54:6D:CD:CD:1A:31:CA:C1:AD:D2:72:72:EE:9B:9B:44
X509v3 Authority Key Identifier:
keyid:81:06:2D:CE:1A:79:1E:73:41:D5:F4:25:98:11:AB:4D:65:F6:B0:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQYtzhp5HnNB1fQlmBGrTWX2sHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d78d1-3e0c-4c1a-a141-74e218d4b613/1/G33qrlRtzc0aMcrBrdJycu6bm0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d78d1-3e0c-4c1a-a141-74e218d4b613/1/gQYtzhp5HnNB1fQlmBGrTWX2sHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.22.49.0/24
Signature Algorithm: sha256WithRSAEncryption
ec:1d:23:d6:5d:56:fa:5f:2c:7c:27:01:b6:1a:8c:b7:4f:ae:
29:57:75:7c:21:2d:52:13:7d:a6:74:9c:80:34:8a:b2:05:c4:
7d:f8:e6:59:c3:70:70:3a:07:f1:b1:f3:75:f6:55:52:b8:bf:
0a:9c:c3:30:09:07:e7:82:a3:fa:21:71:71:88:fb:c2:28:0e:
b5:4e:16:39:92:71:61:4d:0c:b8:c5:da:32:a5:7b:77:92:8e:
2a:7f:68:19:cb:f5:34:db:93:93:40:28:7b:3d:d3:c3:44:5d:
17:78:58:1b:6d:75:9a:5c:6f:d9:de:9a:82:6a:fb:b7:70:d9:
0f:85:c9:fd:57:c1:29:d2:ba:1b:a3:63:d8:2c:8f:cd:9e:27:
0a:47:06:ed:38:5b:fa:2c:b6:b2:da:51:8e:aa:d5:58:f2:4a:
42:49:84:43:53:f7:75:de:15:8e:11:53:24:49:55:42:36:b0:
34:ab:0c:da:ad:17:f5:1e:4b:b3:a4:cf:69:08:61:6a:35:06:
fa:61:0b:05:82:f5:f1:f5:79:c4:16:fd:ba:a7:f9:51:6e:4e:
18:83:22:aa:7c:fc:11:15:f2:40:3c:5e:53:fa:23:51:e6:8d:
31:85:99:e7:e1:82:a6:fb:8e:4f:6e:82:3e:43:22:b3:88:87:
8f:c0:95:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJSn5K+n0N6bYq3qCYRKsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxMDYyZGNlMWE3OTFlNzM0MWQ1ZjQyNTk4MTFhYjRkNjVm
NmIwNzUwHhcNMjQwMTAxMDgzMDE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjdkZWFhZTU0NmRjZGNkMWEzMWNhYzFhZGQyNzI3MmVlOWI5YjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAibmfOZBo97dQOy3zrREwiVNBxSyn
I2DG1iZuNoF1NLWr0TtVYnsHS5GF5AsoC1UtkGk0/+PklZCmUXtE/kzydG/nma1h
o/qso00Hb4NttbO5TAoxAj0Mhj7e4gGVEFveWKIDWDjq/Qi1tj6btZYIhnpjN4N7
VDvKxLEALUx/AzuwhQB/VQ5IukS0wYtFjrpATUEp8TeYkB2J1b2aFxT49JrA/cqq
HoZPC3UnOLuAt4eUbvhXItVpUpkkto+GNBpzr5/WLaDO1fOLWnMFMf0snXzVjYa6
qnGjA8MIFKOIbf8oAhSlrhjBTksnY8xRImk9Fwrt5RI/bb6pjfcO4YmV1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBt96q5Ubc3NGjHKwa3ScnLum5tEMB8GA1UdIwQY
MBaAFIEGLc4aeR5zQdX0JZgRq01l9rB1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1FZdHpocDVIbk5CMWZRbG1CR3JUV1gyc0hVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi8zZDc4ZDEtM2UwYy00YzFhLWExNDEt
NzRlMjE4ZDRiNjEzLzEvRzMzcXJsUnR6YzBhTWNyQnJkSnljdTZibTBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi8zZDc4ZDEtM2UwYy00YzFhLWExNDEtNzRlMjE4ZDRiNjEz
LzEvZ1FZdHpocDVIbk5CMWZRbG1CR3JUV1gyc0hVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRYxMA0G
CSqGSIb3DQEBCwUAA4IBAQDsHSPWXVb6Xyx8JwG2Goy3T64pV3V8IS1SE32mdJyA
NIqyBcR9+OZZw3BwOgfxsfN19lVSuL8KnMMwCQfngqP6IXFxiPvCKA61ThY5knFh
TQy4xdoypXt3ko4qf2gZy/U025OTQCh7PdPDRF0XeFgbbXWaXG/Z3pqCavu3cNkP
hcn9V8Ep0robo2PYLI/NnicKRwbtOFv6LLay2lGOqtVY8kpCSYRDU/d13hWOEVMk
SVVCNrA0qwzarRf1HkuzpM9pCGFqNQb6YQsFgvXx9XnEFv26p/lRbk4YgyKqfPwR
FfJAPF5T+iNR5o0xhZnn4YKm+45PboI+QyKziIePwJUG
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:25 2024 by rpki-client on console.sobornost.net