Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/iCblpOgD3IV9j9bUoYEQWgb6ny8.roa
File: iCblpOgD3IV9j9bUoYEQWgb6ny8.roa (raw, json)
Hash identifier: FFl8D4vMQU72Uk3cONTv1DINCNaTBAVn/cX4Nw8MG2c=
Subject key identifier: 88:26:E5:A4:E8:03:DC:85:7D:8F:D6:D4:A1:81:10:5A:06:FA:9F:2F
Certificate issuer: /CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Certificate serial: 0195424CC6D55F797996A5A7B297A31C31AC
Authority key identifier: 31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/iCblpOgD3IV9j9bUoYEQWgb6ny8.roa
Signing time: Wed 26 Feb 2025 12:48:02 +0000
ROA not before: Wed 26 Feb 2025 12:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211020
IP address blocks: 212.23.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:42:4c:c6:d5:5f:79:79:96:a5:a7:b2:97:a3:1c:31:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31e6591d1a04d6afe1ed5f4ed01d394ae5148589
Validity
Not Before: Feb 26 12:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8826e5a4e803dc857d8fd6d4a181105a06fa9f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:50:04:ab:ef:da:dc:c6:9c:a8:37:bd:3a:eb:
79:32:3d:bd:16:9f:3d:4a:02:b0:a4:a0:fc:31:ce:
f8:6e:6f:80:54:c9:17:07:1e:22:1b:5f:95:1a:34:
12:fe:d6:cd:cc:95:b1:bf:cc:48:34:84:55:e5:34:
06:b9:e2:e6:90:dd:21:2c:61:da:0c:dd:6c:1a:9a:
b0:e4:0a:b0:70:3f:29:58:cf:6d:b9:1b:a6:04:35:
af:e8:4f:af:36:25:f4:2e:27:79:f1:59:b3:ad:01:
1e:99:f7:26:ea:06:95:c4:ad:e8:4e:b1:c2:58:49:
a7:8e:4b:90:bf:c3:00:0a:76:d7:6b:b4:2f:bd:9c:
c0:b5:7e:a6:4f:3a:29:2d:18:51:20:d7:ea:71:65:
1c:ef:a2:b0:eb:93:44:7b:6e:45:ab:a0:1f:7c:f5:
6c:d6:f8:d3:b6:bd:4d:3a:97:cc:43:00:99:5a:74:
78:56:c0:5c:77:fc:f4:56:8b:a9:8c:ac:5a:58:58:
62:df:5f:84:31:57:16:17:e2:aa:b3:da:79:db:9a:
6b:de:90:14:39:06:cb:8d:fd:30:25:75:f0:09:ef:
99:15:de:59:8c:3e:f4:25:a7:7d:ce:a8:13:81:f0:
86:b6:47:dc:d6:19:a2:48:9d:e3:21:42:e5:4e:ba:
9b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:26:E5:A4:E8:03:DC:85:7D:8F:D6:D4:A1:81:10:5A:06:FA:9F:2F
X509v3 Authority Key Identifier:
keyid:31:E6:59:1D:1A:04:D6:AF:E1:ED:5F:4E:D0:1D:39:4A:E5:14:85:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MeZZHRoE1q_h7V9O0B05SuUUhYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/iCblpOgD3IV9j9bUoYEQWgb6ny8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/84a85e-ad49-4c63-ab59-ab7b0aa1c3d4/1/MeZZHRoE1q_h7V9O0B05SuUUhYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.207.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:d2:d6:8f:cb:be:d1:48:11:c4:85:ab:4c:c0:d2:45:3e:bf:
20:7f:39:c1:9f:7e:bf:c2:f4:53:0b:b9:6d:16:ad:c1:98:73:
03:22:e0:eb:66:e8:ba:9b:15:12:f9:1c:dc:15:d1:62:1b:c6:
a2:1f:0a:db:d3:d7:17:f2:e6:01:40:ac:cd:85:7a:8b:e3:25:
44:53:6a:f0:03:a7:c3:33:c7:43:7a:89:09:ba:76:8f:33:15:
f4:8c:1b:8c:1b:3d:59:2c:e2:a9:62:0e:5b:e7:3e:00:42:a3:
ad:5d:5e:38:0d:59:a0:56:b2:b6:bb:f0:bf:c0:88:2d:00:40:
cd:03:53:9f:57:55:77:80:c3:eb:f1:5c:a6:2d:11:b7:be:32:
7f:8d:86:6d:39:3b:e5:b3:1a:d5:b8:e7:5d:cb:b5:f0:fa:77:
2f:71:14:c3:32:65:65:f3:13:2a:69:d2:50:f8:23:6a:3a:45:
2f:c3:df:82:9f:d5:e1:d8:07:38:c6:cf:fd:44:57:91:a7:a1:
c3:6d:6c:e1:ce:ec:48:82:22:e9:47:90:db:e6:11:00:0c:e8:
28:d7:ef:1f:0d:63:34:ac:66:2f:4a:de:33:ef:b2:27:99:7a:
d2:e5:01:e1:a1:e2:08:cd:fd:47:d8:9e:4a:dd:3e:48:9e:89:
9b:0f:90:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZVCTMbVX3l5lqWnspejHDGsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxZTY1OTFkMWEwNGQ2YWZlMWVkNWY0ZWQwMWQzOTRhZTUx
NDg1ODkwHhcNMjUwMjI2MTI0ODAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODI2ZTVhNGU4MDNkYzg1N2Q4ZmQ2ZDRhMTgxMTA1YTA2ZmE5ZjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1AEq+/a3MacqDe9Out5Mj29Fp89
SgKwpKD8Mc74bm+AVMkXBx4iG1+VGjQS/tbNzJWxv8xINIRV5TQGueLmkN0hLGHa
DN1sGpqw5AqwcD8pWM9tuRumBDWv6E+vNiX0Lid58VmzrQEemfcm6gaVxK3oTrHC
WEmnjkuQv8MACnbXa7QvvZzAtX6mTzopLRhRINfqcWUc76Kw65NEe25Fq6AffPVs
1vjTtr1NOpfMQwCZWnR4VsBcd/z0VoupjKxaWFhi31+EMVcWF+Kqs9p525pr3pAU
OQbLjf0wJXXwCe+ZFd5ZjD70Jad9zqgTgfCGtkfc1hmiSJ3jIULlTrqbtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIgm5aToA9yFfY/W1KGBEFoG+p8vMB8GA1UdIwQY
MBaAFDHmWR0aBNav4e1fTtAdOUrlFIWJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWVaWkhSb0UxcV9oN1Y5TzBCMDVTdVVVaFlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NGE4NWUtYWQ0OS00YzYzLWFiNTkt
YWI3YjBhYTFjM2Q0LzEvaUNibHBPZ0QzSVY5ajliVW9ZRVFXZ2I2bnk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84NGE4NWUtYWQ0OS00YzYzLWFiNTktYWI3YjBhYTFjM2Q0
LzEvTWVaWkhSb0UxcV9oN1Y5TzBCMDVTdVVVaFlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BfPMA0G
CSqGSIb3DQEBCwUAA4IBAQBb0taPy77RSBHEhatMwNJFPr8gfznBn36/wvRTC7lt
Fq3BmHMDIuDrZui6mxUS+RzcFdFiG8aiHwrb09cX8uYBQKzNhXqL4yVEU2rwA6fD
M8dDeokJunaPMxX0jBuMGz1ZLOKpYg5b5z4AQqOtXV44DVmgVrK2u/C/wIgtAEDN
A1OfV1V3gMPr8VymLRG3vjJ/jYZtOTvlsxrVuOddy7Xw+ncvcRTDMmVl8xMqadJQ
+CNqOkUvw9+Cn9Xh2Ac4xs/9RFeRp6HDbWzhzuxIgiLpR5Db5hEADOgo1+8fDWM0
rGYvSt4z77InmXrS5QHhoeIIzf1H2J5K3T5InombD5CC
-----END CERTIFICATE-----
Generated at Sat Mar 8 04:51:18 2025 by rpki-client on console.sobornost.net