Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1b814a-d388-4c64-8302-370d1fd4254b/1/GxaI4hXBc2RYVYOf0z16mvSsnyE.roa
File: GxaI4hXBc2RYVYOf0z16mvSsnyE.roa (raw, json)
Hash identifier: g97pf2epkDk5ZUzae5HXyC8jqAaA5Zg8rR+Lupka6qA=
Subject key identifier: 1B:16:88:E2:15:C1:73:64:58:55:83:9F:D3:3D:7A:9A:F4:AC:9F:21
Certificate issuer: /CN=a9c187bc7a9e885335a7eb9b0a438fe811c03847
Certificate serial: 019427B61E05CE6A8A60DB5371E189A1F148
Authority key identifier: A9:C1:87:BC:7A:9E:88:53:35:A7:EB:9B:0A:43:8F:E8:11:C0:38:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qcGHvHqeiFM1p-ubCkOP6BHAOEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1b814a-d388-4c64-8302-370d1fd4254b/1/GxaI4hXBc2RYVYOf0z16mvSsnyE.roa
Signing time: Thu 02 Jan 2025 15:50:34 +0000
ROA not before: Thu 02 Jan 2025 15:50:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51979
IP address blocks: 91.222.88.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:1e:05:ce:6a:8a:60:db:53:71:e1:89:a1:f1:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9c187bc7a9e885335a7eb9b0a438fe811c03847
Validity
Not Before: Jan 2 15:50:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1b1688e215c173645855839fd33d7a9af4ac9f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ee:d3:ca:8d:09:d4:dc:eb:99:7b:41:23:bc:
5b:aa:c7:c9:cc:b1:cf:86:ee:7e:45:96:a4:ee:47:
38:8c:8e:44:4d:25:5f:68:ff:34:46:20:85:50:e1:
ef:db:e5:cb:40:a5:de:fc:3b:55:ba:ac:91:82:c1:
9c:53:52:59:82:cd:d2:74:92:72:8a:5f:42:ad:05:
60:12:1b:f6:80:4c:c6:f6:1a:e4:b1:ed:e7:84:5f:
83:2b:c1:69:e4:b2:b5:3a:39:00:b6:c7:5d:05:4d:
7c:8f:d7:5e:22:43:70:3f:03:f4:e2:e7:1c:d6:74:
92:aa:19:77:96:14:63:00:24:66:48:19:d2:13:d1:
53:15:46:76:14:b7:5c:a0:37:2c:4e:a4:9f:50:3d:
e5:01:4b:e1:63:94:10:69:0a:95:91:e2:85:52:42:
b9:0e:9a:46:97:e2:56:5d:b3:35:ef:ae:f4:25:d9:
1e:7c:65:13:98:a2:2a:23:6e:7d:bf:72:35:29:90:
dc:19:0d:87:fd:ab:3b:0e:fe:f2:2d:d8:b7:a4:2d:
8b:8b:49:78:7d:d7:3e:ab:de:f3:81:41:10:32:be:
60:44:5a:ea:b6:a7:a5:53:06:2d:46:6b:4a:2a:d7:
5a:89:34:dc:8f:37:06:c6:9d:44:55:88:35:63:83:
99:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:16:88:E2:15:C1:73:64:58:55:83:9F:D3:3D:7A:9A:F4:AC:9F:21
X509v3 Authority Key Identifier:
keyid:A9:C1:87:BC:7A:9E:88:53:35:A7:EB:9B:0A:43:8F:E8:11:C0:38:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qcGHvHqeiFM1p-ubCkOP6BHAOEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1b814a-d388-4c64-8302-370d1fd4254b/1/GxaI4hXBc2RYVYOf0z16mvSsnyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1b814a-d388-4c64-8302-370d1fd4254b/1/qcGHvHqeiFM1p-ubCkOP6BHAOEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.88.0/22
Signature Algorithm: sha256WithRSAEncryption
70:79:51:22:e3:36:28:0f:56:f6:7b:91:94:a6:6f:1e:54:06:
74:4a:00:ef:9a:69:32:86:36:e2:a4:ac:c5:88:e5:89:9a:ed:
06:2b:07:8f:a2:ee:eb:87:93:7d:f6:3f:82:19:cb:f4:ce:2d:
29:a4:93:df:76:4b:e7:14:e0:d0:87:fe:e7:32:d5:73:ab:08:
c2:d4:6a:66:d2:68:50:01:26:79:60:0d:cf:20:7b:05:5f:99:
f1:4b:1b:97:6d:a3:1f:5b:08:71:f5:6a:2c:5d:43:13:c2:1a:
23:29:48:2f:9c:85:6a:80:fb:3b:54:db:db:59:39:5d:2a:5a:
eb:d7:bc:52:ab:d1:f4:fd:bb:77:63:7b:03:94:50:ed:19:ac:
74:06:6e:b5:f6:a3:f7:c0:77:05:9e:da:4b:85:84:29:8e:d7:
bf:75:3c:1b:6f:37:fb:3b:ab:92:a9:05:5f:65:90:f4:97:4e:
4a:34:60:aa:26:9e:b2:78:05:a0:4e:6d:8c:70:01:86:f8:d7:
df:6a:f7:ec:da:20:a3:03:f1:41:9a:39:93:37:96:dd:d2:d4:
e2:78:f1:af:38:44:02:c4:6c:aa:62:0e:86:13:79:b9:43:51:
f8:8e:95:81:d8:fe:56:99:00:98:7a:e1:e3:9d:af:91:ac:3c:
30:2c:91:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnth4FzmqKYNtTceGJofFIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5YzE4N2JjN2E5ZTg4NTMzNWE3ZWI5YjBhNDM4ZmU4MTFj
MDM4NDcwHhcNMjUwMTAyMTU1MDM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjE2ODhlMjE1YzE3MzY0NTg1NTgzOWZkMzNkN2E5YWY0YWM5ZjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqu7Tyo0J1NzrmXtBI7xbqsfJzLHP
hu5+RZak7kc4jI5ETSVfaP80RiCFUOHv2+XLQKXe/DtVuqyRgsGcU1JZgs3SdJJy
il9CrQVgEhv2gEzG9hrkse3nhF+DK8Fp5LK1OjkAtsddBU18j9deIkNwPwP04ucc
1nSSqhl3lhRjACRmSBnSE9FTFUZ2FLdcoDcsTqSfUD3lAUvhY5QQaQqVkeKFUkK5
DppGl+JWXbM17670JdkefGUTmKIqI259v3I1KZDcGQ2H/as7Dv7yLdi3pC2Li0l4
fdc+q97zgUEQMr5gRFrqtqelUwYtRmtKKtdaiTTcjzcGxp1EVYg1Y4OZiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBsWiOIVwXNkWFWDn9M9epr0rJ8hMB8GA1UdIwQY
MBaAFKnBh7x6nohTNafrmwpDj+gRwDhHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWNHSHZIcWVpRk0xcC11YkNrT1A2QkhBT0VjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8xYjgxNGEtZDM4OC00YzY0LTgzMDIt
MzcwZDFmZDQyNTRiLzEvR3hhSTRoWEJjMlJZVllPZjB6MTZtdlNzbnlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi8xYjgxNGEtZDM4OC00YzY0LTgzMDItMzcwZDFmZDQyNTRi
LzEvcWNHSHZIcWVpRk0xcC11YkNrT1A2QkhBT0VjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW95YMA0G
CSqGSIb3DQEBCwUAA4IBAQBweVEi4zYoD1b2e5GUpm8eVAZ0SgDvmmkyhjbipKzF
iOWJmu0GKwePou7rh5N99j+CGcv0zi0ppJPfdkvnFODQh/7nMtVzqwjC1Gpm0mhQ
ASZ5YA3PIHsFX5nxSxuXbaMfWwhx9WosXUMTwhojKUgvnIVqgPs7VNvbWTldKlrr
17xSq9H0/bt3Y3sDlFDtGax0Bm619qP3wHcFntpLhYQpjte/dTwbbzf7O6uSqQVf
ZZD0l05KNGCqJp6yeAWgTm2McAGG+Nffavfs2iCjA/FBmjmTN5bd0tTiePGvOEQC
xGyqYg6GE3m5Q1H4jpWB2P5WmQCYeuHjna+RrDwwLJEh
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:23 2025 by rpki-client on console.sobornost.net