Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/nUPXVKUm6gHRGCvU_QTn-Q7Pcyo.roa
File: nUPXVKUm6gHRGCvU_QTn-Q7Pcyo.roa (raw, json)
Hash identifier: s8rldlRcNFe2rT1W7mqHgiB3i1MyKVolX3DjW3OrD5w=
Subject key identifier: 9D:43:D7:54:A5:26:EA:01:D1:18:2B:D4:FD:04:E7:F9:0E:CF:73:2A
Certificate issuer: /CN=66feef09c450990af34779ce701be6cd54b3d924
Certificate serial: 019425223037A54C3E16D1193AE82F25213F
Authority key identifier: 66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/nUPXVKUm6gHRGCvU_QTn-Q7Pcyo.roa
Signing time: Thu 02 Jan 2025 03:49:44 +0000
ROA not before: Thu 02 Jan 2025 03:49:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201532
IP address blocks: 83.168.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:30:37:a5:4c:3e:16:d1:19:3a:e8:2f:25:21:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66feef09c450990af34779ce701be6cd54b3d924
Validity
Not Before: Jan 2 03:49:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d43d754a526ea01d1182bd4fd04e7f90ecf732a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b0:97:99:c2:20:50:6e:f3:1e:bd:d0:2d:6a:
7f:94:2b:ba:cf:e7:1f:3e:9e:21:e8:87:2c:dd:38:
76:6f:5e:eb:f6:89:0c:89:43:83:17:6f:48:ed:60:
26:69:06:07:d7:c6:c1:db:9c:d5:77:fd:0d:e1:8d:
72:cb:23:af:cd:9d:fb:7c:8b:8b:14:aa:94:ea:17:
dc:da:6b:97:4d:4b:c2:c9:63:ca:7a:4d:64:44:f8:
8a:c3:69:45:db:ba:cf:96:6c:5d:43:e9:64:e4:3b:
27:20:dc:9f:46:2d:5c:e9:e8:ef:89:c5:16:05:ea:
0d:e6:75:bd:e2:c0:01:72:06:57:2d:72:c7:96:f1:
cf:9e:32:24:52:5b:05:e6:b2:93:8d:b4:f0:ea:00:
58:1b:19:16:cf:00:d3:bc:3c:e5:4f:53:25:83:6e:
9d:d3:a6:cc:bf:8c:b7:cd:94:8e:d0:6a:f5:6a:17:
e0:26:d5:d8:31:ee:90:ba:48:97:d2:be:82:30:78:
fc:5d:22:a3:80:35:db:cb:a6:97:b5:aa:52:f1:f5:
d7:00:4c:ab:54:85:87:b6:b0:b5:26:3c:1a:97:bd:
6d:42:0f:39:f7:08:59:f6:9b:90:0c:4a:e3:c7:3c:
76:2a:3c:37:ea:f6:fa:54:89:b3:5c:02:e0:ea:be:
b7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:43:D7:54:A5:26:EA:01:D1:18:2B:D4:FD:04:E7:F9:0E:CF:73:2A
X509v3 Authority Key Identifier:
keyid:66:FE:EF:09:C4:50:99:0A:F3:47:79:CE:70:1B:E6:CD:54:B3:D9:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/nUPXVKUm6gHRGCvU_QTn-Q7Pcyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a1597b-6ef2-4430-aa56-82451f33f4ca/1/Zv7vCcRQmQrzR3nOcBvmzVSz2SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.168.92.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:bc:c6:8d:b1:44:76:03:5d:be:52:e1:19:03:39:0e:9a:ee:
e8:6b:cb:ee:40:0b:b4:75:fd:c9:32:07:fd:9e:c0:ae:a4:1e:
5f:2a:e3:6b:60:29:78:73:84:9e:f2:1a:33:89:3f:75:22:9b:
38:74:56:db:a0:0d:7a:55:e5:c5:c6:be:74:e9:aa:f7:d5:f3:
b5:20:41:54:cb:f7:d4:8c:f1:f5:0c:e3:dc:bb:e2:1e:30:77:
03:79:60:06:a0:5c:34:e4:25:7f:1f:8e:25:69:7b:cb:90:19:
f8:46:ad:5c:0f:94:ba:83:f4:c0:9c:63:41:47:a0:de:c3:b1:
12:b9:ff:9c:19:36:b1:3f:ec:5e:b5:b7:cb:17:90:5f:d6:1d:
01:23:93:35:51:83:42:c7:08:28:30:ac:70:40:35:b3:c3:fc:
9b:60:42:fe:1e:78:10:5b:c4:45:1b:e3:d8:a0:68:34:ac:81:
05:5b:0e:c5:84:3c:ca:3e:1c:d5:56:f6:7d:19:12:43:17:44:
09:8f:25:a4:12:07:ed:96:42:13:55:37:24:43:99:de:7a:04:
67:fd:a1:64:73:d2:da:65:e1:08:ba:c1:59:1b:d4:1b:20:90:
36:d1:b0:d6:6a:a3:dc:d6:60:a5:ac:30:03:b2:36:c6:f8:72:
e8:85:4b:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIjA3pUw+FtEZOugvJSE/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZmVlZjA5YzQ1MDk5MGFmMzQ3NzljZTcwMWJlNmNkNTRi
M2Q5MjQwHhcNMjUwMTAyMDM0OTQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDQzZDc1NGE1MjZlYTAxZDExODJiZDRmZDA0ZTdmOTBlY2Y3MzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurCXmcIgUG7zHr3QLWp/lCu6z+cf
Pp4h6Ics3Th2b17r9okMiUODF29I7WAmaQYH18bB25zVd/0N4Y1yyyOvzZ37fIuL
FKqU6hfc2muXTUvCyWPKek1kRPiKw2lF27rPlmxdQ+lk5DsnINyfRi1c6ejvicUW
BeoN5nW94sABcgZXLXLHlvHPnjIkUlsF5rKTjbTw6gBYGxkWzwDTvDzlT1Mlg26d
06bMv4y3zZSO0Gr1ahfgJtXYMe6QukiX0r6CMHj8XSKjgDXby6aXtapS8fXXAEyr
VIWHtrC1Jjwal71tQg859whZ9puQDErjxzx2Kjw36vb6VImzXALg6r63hwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ1D11SlJuoB0Rgr1P0E5/kOz3MqMB8GA1UdIwQY
MBaAFGb+7wnEUJkK80d5znAb5s1Us9kkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnY3dkNjUlFtUXJ6UjNuT2NCdm16VlN6MlNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9hMTU5N2ItNmVmMi00NDMwLWFhNTYt
ODI0NTFmMzNmNGNhLzEvblVQWFZLVW02Z0hSR0N2VV9RVG4tUTdQY3lvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9hMTU5N2ItNmVmMi00NDMwLWFhNTYtODI0NTFmMzNmNGNh
LzEvWnY3dkNjUlFtUXJ6UjNuT2NCdm16VlN6MlNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU6hcMA0G
CSqGSIb3DQEBCwUAA4IBAQAKvMaNsUR2A12+UuEZAzkOmu7oa8vuQAu0df3JMgf9
nsCupB5fKuNrYCl4c4Se8hoziT91Ips4dFbboA16VeXFxr506ar31fO1IEFUy/fU
jPH1DOPcu+IeMHcDeWAGoFw05CV/H44laXvLkBn4Rq1cD5S6g/TAnGNBR6Dew7ES
uf+cGTaxP+xetbfLF5Bf1h0BI5M1UYNCxwgoMKxwQDWzw/ybYEL+HngQW8RFG+PY
oGg0rIEFWw7FhDzKPhzVVvZ9GRJDF0QJjyWkEgftlkITVTckQ5neegRn/aFkc9La
ZeEIusFZG9QbIJA20bDWaqPc1mClrDADsjbG+HLohUvy
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:13:58 2025 by rpki-client on console.sobornost.net