Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/48c28a-0848-4b0b-914a-0ea1e123417a/1/sibHr2FGPjo5CfPD_x82IFZOyjI.roa
File: sibHr2FGPjo5CfPD_x82IFZOyjI.roa (raw, json)
Hash identifier: 5o3OHC/8KmGr6JnUosFKoE0TLY9c878SbcJe1V+5e/c=
Subject key identifier: B2:26:C7:AF:61:46:3E:3A:39:09:F3:C3:FF:1F:36:20:56:4E:CA:32
Certificate issuer: /CN=c8f2345a3fea4b3dbf25cb120f1b7842536268cd
Certificate serial: 01952226679ABC9CDD514890A1BA6C9CF9B9
Authority key identifier: C8:F2:34:5A:3F:EA:4B:3D:BF:25:CB:12:0F:1B:78:42:53:62:68:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPI0Wj_qSz2_JcsSDxt4QlNiaM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/48c28a-0848-4b0b-914a-0ea1e123417a/1/sibHr2FGPjo5CfPD_x82IFZOyjI.roa
Signing time: Thu 20 Feb 2025 06:58:16 +0000
ROA not before: Thu 20 Feb 2025 06:58:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47809
IP address blocks: 91.241.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:22:26:67:9a:bc:9c:dd:51:48:90:a1:ba:6c:9c:f9:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f2345a3fea4b3dbf25cb120f1b7842536268cd
Validity
Not Before: Feb 20 06:58:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b226c7af61463e3a3909f3c3ff1f3620564eca32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f6:9c:ae:38:fd:f6:db:29:3f:6c:56:31:6f:
5c:61:2c:c3:a4:6e:5c:97:94:4f:1d:e1:93:d1:b5:
fc:5e:87:cc:74:b5:3a:3a:20:20:78:b4:24:51:77:
40:09:37:65:cc:4e:7c:ef:d9:98:8b:bd:43:ca:85:
9c:f5:94:ae:b2:09:e5:c1:49:da:dc:fa:14:a1:ee:
5d:fc:50:7d:27:13:7d:4d:d8:33:31:aa:eb:5a:80:
f1:1a:58:58:a9:6a:1d:e5:3b:b9:7f:3f:4e:a7:81:
2f:73:09:02:cd:1f:29:81:be:2c:12:ed:be:68:b1:
1a:4d:ce:06:64:39:65:1e:c3:b6:f1:3d:57:5f:69:
25:84:a8:2f:15:29:85:27:de:ec:62:68:5b:78:dc:
d9:8b:fa:75:82:52:84:f9:5e:c1:bb:03:f7:db:f9:
40:6a:92:df:da:77:6d:4d:49:dd:50:45:b0:91:a6:
72:66:64:38:d3:8f:ae:13:d5:d9:12:b9:2b:53:4e:
77:b6:f8:f7:db:2c:1e:f7:6c:1b:7f:da:84:b7:d7:
38:75:15:62:5d:e4:4d:45:88:c9:69:64:00:ed:3b:
98:dc:d4:26:6f:bb:6e:fb:e6:fe:81:be:ed:42:8e:
2d:a2:c7:a0:2b:92:b0:8a:a5:22:e6:99:68:18:4c:
90:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:26:C7:AF:61:46:3E:3A:39:09:F3:C3:FF:1F:36:20:56:4E:CA:32
X509v3 Authority Key Identifier:
keyid:C8:F2:34:5A:3F:EA:4B:3D:BF:25:CB:12:0F:1B:78:42:53:62:68:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPI0Wj_qSz2_JcsSDxt4QlNiaM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/48c28a-0848-4b0b-914a-0ea1e123417a/1/sibHr2FGPjo5CfPD_x82IFZOyjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/48c28a-0848-4b0b-914a-0ea1e123417a/1/yPI0Wj_qSz2_JcsSDxt4QlNiaM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.198.0/24
Signature Algorithm: sha256WithRSAEncryption
57:97:46:06:6a:96:36:f5:2f:46:ad:00:6d:5e:42:18:c8:0f:
cd:10:41:fc:ef:d5:b4:d6:bb:de:44:b5:87:34:a9:ad:5a:a9:
73:02:7c:e2:58:a2:cd:4b:da:e4:96:da:06:ca:25:9d:0a:f2:
e6:26:ca:24:6d:55:e9:fa:ac:39:c1:9f:25:31:12:18:68:c5:
71:d2:55:91:00:c4:50:44:9a:95:39:87:92:9d:ca:3a:52:d0:
8d:32:97:6f:c5:7f:7e:d0:78:7f:ee:2b:15:77:9c:0d:0f:62:
2f:b5:cb:90:64:94:15:83:5b:da:a1:78:6b:11:2d:d2:6a:c9:
87:98:df:b3:97:bf:c5:74:ef:da:77:d7:56:1a:d6:12:58:53:
ec:09:48:a6:5e:aa:de:19:e6:02:e9:82:67:20:54:d3:b1:fb:
1a:53:a2:4e:32:9e:58:d7:a0:f4:89:76:98:e0:53:61:37:f4:
98:65:a7:55:d0:30:44:42:27:f5:0a:57:8d:cf:94:4f:1f:cb:
2b:52:f0:2e:5d:4f:72:c1:51:02:52:8c:0b:ec:54:5f:ba:78:
6d:93:d8:93:8f:1f:42:50:13:b3:80:38:41:8d:75:5e:25:ca:
8d:73:2f:94:33:c9:5d:43:db:c6:cf:22:b5:b1:88:1e:fd:cf:
e0:5c:1c:d9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUiJmeavJzdUUiQobpsnPm5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4ZjIzNDVhM2ZlYTRiM2RiZjI1Y2IxMjBmMWI3ODQyNTM2
MjY4Y2QwHhcNMjUwMjIwMDY1ODE2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjI2YzdhZjYxNDYzZTNhMzkwOWYzYzNmZjFmMzYyMDU2NGVjYTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfacrjj99tspP2xWMW9cYSzDpG5c
l5RPHeGT0bX8XofMdLU6OiAgeLQkUXdACTdlzE5879mYi71DyoWc9ZSusgnlwUna
3PoUoe5d/FB9JxN9TdgzMarrWoDxGlhYqWod5Tu5fz9Op4EvcwkCzR8pgb4sEu2+
aLEaTc4GZDllHsO28T1XX2klhKgvFSmFJ97sYmhbeNzZi/p1glKE+V7BuwP32/lA
apLf2ndtTUndUEWwkaZyZmQ404+uE9XZErkrU053tvj32ywe92wbf9qEt9c4dRVi
XeRNRYjJaWQA7TuY3NQmb7tu++b+gb7tQo4tosegK5KwiqUi5ploGEyQ6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLImx69hRj46OQnzw/8fNiBWTsoyMB8GA1UdIwQY
MBaAFMjyNFo/6ks9vyXLEg8beEJTYmjNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVBJMFdqX3FTejJfSmNzU0R4dDRRbE5pYU0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC80OGMyOGEtMDg0OC00YjBiLTkxNGEt
MGVhMWUxMjM0MTdhLzEvc2liSHIyRkdQam81Q2ZQRF94ODJJRlpPeWpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC80OGMyOGEtMDg0OC00YjBiLTkxNGEtMGVhMWUxMjM0MTdh
LzEveVBJMFdqX3FTejJfSmNzU0R4dDRRbE5pYU0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/HGMA0G
CSqGSIb3DQEBCwUAA4IBAQBXl0YGapY29S9GrQBtXkIYyA/NEEH879W01rveRLWH
NKmtWqlzAnziWKLNS9rkltoGyiWdCvLmJsokbVXp+qw5wZ8lMRIYaMVx0lWRAMRQ
RJqVOYeSnco6UtCNMpdvxX9+0Hh/7isVd5wND2IvtcuQZJQVg1vaoXhrES3SasmH
mN+zl7/FdO/ad9dWGtYSWFPsCUimXqreGeYC6YJnIFTTsfsaU6JOMp5Y16D0iXaY
4FNhN/SYZadV0DBEQif1CleNz5RPH8srUvAuXU9ywVECUowL7FRfunhtk9iTjx9C
UBOzgDhBjXVeJcqNcy+UM8ldQ9vGzyK1sYge/c/gXBzZ
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net