Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/a20963-fad7-4e34-bf1e-658b800a5d61/1/b88Rl7W3m-ZgN433QwmekbZFP6o.roa
File: b88Rl7W3m-ZgN433QwmekbZFP6o.roa (raw, json)
Hash identifier: NoA21W8ly2WxwAuP2zZWwmclSVAV10KXOOvNxpP+/rg=
Subject key identifier: 6F:CF:11:97:B5:B7:9B:E6:60:37:8D:F7:43:09:9E:91:B6:45:3F:AA
Certificate issuer: /CN=7186e64b5823c4c61287858d9770c70df706b0cc
Certificate serial: 01942445744358194D78D5C2C9B241886217
Authority key identifier: 71:86:E6:4B:58:23:C4:C6:12:87:85:8D:97:70:C7:0D:F7:06:B0:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYbmS1gjxMYSh4WNl3DHDfcGsMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/a20963-fad7-4e34-bf1e-658b800a5d61/1/b88Rl7W3m-ZgN433QwmekbZFP6o.roa
Signing time: Wed 01 Jan 2025 23:48:39 +0000
ROA not before: Wed 01 Jan 2025 23:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30839
IP address blocks: 91.213.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:74:43:58:19:4d:78:d5:c2:c9:b2:41:88:62:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7186e64b5823c4c61287858d9770c70df706b0cc
Validity
Not Before: Jan 1 23:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6fcf1197b5b79be660378df743099e91b6453faa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:74:b2:cf:5b:11:7d:fd:80:4e:a9:1a:98:b8:
7b:0a:2a:2f:a9:98:79:fd:d9:1c:80:5c:2f:20:73:
9e:3f:1e:8d:22:13:3a:f5:bb:29:7e:61:33:8a:e6:
a9:3d:22:4b:29:e2:88:2d:13:d2:1b:27:39:15:ea:
2b:14:2b:dd:11:2f:ff:34:d8:46:33:68:bf:9e:bc:
38:74:f6:94:32:fc:a0:5f:fe:23:9f:0f:93:c4:c1:
07:fa:c9:fe:37:2c:38:4e:18:0f:42:0e:4b:e9:2f:
91:6b:d2:c8:34:2d:87:32:e1:fe:59:6d:bc:a6:68:
cc:f0:1b:9b:ed:0b:df:7e:f8:2f:31:48:dd:93:56:
db:de:d9:43:b2:ea:9d:85:d5:09:b1:f2:53:a7:77:
26:e0:e7:93:fe:0d:f0:4b:0d:86:71:d9:2f:a0:e7:
fc:97:e6:7e:16:89:2b:da:8a:3b:8e:ad:a5:f4:9d:
5c:bd:6d:73:f6:ac:4f:d0:1e:ed:b8:36:ec:7b:3e:
53:3c:9a:ee:61:d8:c1:ef:02:b8:d8:bd:d8:7e:eb:
e6:df:0c:ae:5c:48:07:23:0c:d0:d9:d3:2e:c2:db:
df:5f:11:49:7d:bf:cd:89:fd:e2:f8:f4:a9:3b:eb:
37:91:fa:78:ba:cf:31:4a:2b:bf:0d:9d:23:b9:81:
2d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CF:11:97:B5:B7:9B:E6:60:37:8D:F7:43:09:9E:91:B6:45:3F:AA
X509v3 Authority Key Identifier:
keyid:71:86:E6:4B:58:23:C4:C6:12:87:85:8D:97:70:C7:0D:F7:06:B0:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYbmS1gjxMYSh4WNl3DHDfcGsMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/a20963-fad7-4e34-bf1e-658b800a5d61/1/b88Rl7W3m-ZgN433QwmekbZFP6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/a20963-fad7-4e34-bf1e-658b800a5d61/1/cYbmS1gjxMYSh4WNl3DHDfcGsMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.90.0/24
Signature Algorithm: sha256WithRSAEncryption
84:c4:30:a7:51:21:90:4b:65:e7:bb:52:1d:d9:69:7a:de:f9:
15:6f:d1:3e:c4:44:a7:6f:ab:d6:f1:38:58:2e:23:e1:69:fd:
bb:75:d3:4a:00:02:7b:98:49:b8:45:24:d1:1d:05:c8:63:f5:
69:a9:3e:1a:23:43:b8:c0:ba:2b:bd:87:98:00:20:0f:09:26:
40:3a:32:6f:56:9d:36:78:72:1f:34:10:13:f1:4b:78:cd:90:
14:17:cf:38:1c:44:6c:e6:9d:16:f8:c3:06:81:39:4e:65:dd:
69:2f:23:cd:16:8c:5a:6b:90:ee:8b:79:7f:02:9d:78:ca:e8:
4e:6f:e3:e6:86:12:1f:f6:45:c1:f8:46:e0:a6:b6:5f:1a:bb:
88:0f:eb:4f:bd:9c:48:ea:8a:f4:62:bc:8e:fc:db:58:4b:49:
e1:16:48:c9:e1:00:9e:48:d4:dd:b7:67:04:2c:b0:f0:64:d7:
2b:a4:fc:26:06:46:a7:af:b2:cf:bd:6a:7c:02:67:ef:38:d2:
98:d4:e1:43:89:04:3e:2b:70:69:a8:05:58:e5:71:fd:10:bd:
8c:cf:12:32:32:e7:93:f3:91:eb:44:c4:01:a1:60:54:4b:50:
8d:78:61:9f:2b:ed:d1:95:8e:82:f1:c4:88:65:cb:03:ef:e4:
83:a0:a3:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRXRDWBlNeNXCybJBiGIXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxODZlNjRiNTgyM2M0YzYxMjg3ODU4ZDk3NzBjNzBkZjcw
NmIwY2MwHhcNMjUwMTAxMjM0ODM5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmNmMTE5N2I1Yjc5YmU2NjAzNzhkZjc0MzA5OWU5MWI2NDUzZmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynSyz1sRff2ATqkamLh7CiovqZh5
/dkcgFwvIHOePx6NIhM69bspfmEziuapPSJLKeKILRPSGyc5FeorFCvdES//NNhG
M2i/nrw4dPaUMvygX/4jnw+TxMEH+sn+Nyw4ThgPQg5L6S+Ra9LINC2HMuH+WW28
pmjM8Bub7QvffvgvMUjdk1bb3tlDsuqdhdUJsfJTp3cm4OeT/g3wSw2GcdkvoOf8
l+Z+Fokr2oo7jq2l9J1cvW1z9qxP0B7tuDbsez5TPJruYdjB7wK42L3Yfuvm3wyu
XEgHIwzQ2dMuwtvfXxFJfb/Nif3i+PSpO+s3kfp4us8xSiu/DZ0juYEtcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG/PEZe1t5vmYDeN90MJnpG2RT+qMB8GA1UdIwQY
MBaAFHGG5ktYI8TGEoeFjZdwxw33BrDMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY1libVMxZ2p4TVlTaDRXTmwzREhEZmNHc013LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9hMjA5NjMtZmFkNy00ZTM0LWJmMWUt
NjU4YjgwMGE1ZDYxLzEvYjg4Umw3VzNtLVpnTjQzM1F3bWVrYlpGUDZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9hMjA5NjMtZmFkNy00ZTM0LWJmMWUtNjU4YjgwMGE1ZDYx
LzEvY1libVMxZ2p4TVlTaDRXTmwzREhEZmNHc013LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9VaMA0G
CSqGSIb3DQEBCwUAA4IBAQCExDCnUSGQS2Xnu1Id2Wl63vkVb9E+xESnb6vW8ThY
LiPhaf27ddNKAAJ7mEm4RSTRHQXIY/VpqT4aI0O4wLorvYeYACAPCSZAOjJvVp02
eHIfNBAT8Ut4zZAUF884HERs5p0W+MMGgTlOZd1pLyPNFoxaa5Dui3l/Ap14yuhO
b+PmhhIf9kXB+EbgprZfGruID+tPvZxI6or0YryO/NtYS0nhFkjJ4QCeSNTdt2cE
LLDwZNcrpPwmBkanr7LPvWp8AmfvONKY1OFDiQQ+K3BpqAVY5XH9EL2MzxIyMueT
85HrRMQBoWBUS1CNeGGfK+3RlY6C8cSIZcsD7+SDoKNR
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:25 2025 by rpki-client on console.sobornost.net