Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/qtSiJdqBkG0uo9WVYHWv-Gpf4SI.roa
File: qtSiJdqBkG0uo9WVYHWv-Gpf4SI.roa (raw, json)
Hash identifier: tDTpVD4J8FxzW7VK20T8qWOQjmWt3jizwnkYWluPqRY=
Subject key identifier: AA:D4:A2:25:DA:81:90:6D:2E:A3:D5:95:60:75:AF:F8:6A:5F:E1:22
Certificate issuer: /CN=99d35619ed210be0ac29d170a2bb5cd7455693bc
Certificate serial: 019421B243EF64DF52BFC99A64011826B3E2
Authority key identifier: 99:D3:56:19:ED:21:0B:E0:AC:29:D1:70:A2:BB:5C:D7:45:56:93:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdNWGe0hC-CsKdFwortc10VWk7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/qtSiJdqBkG0uo9WVYHWv-Gpf4SI.roa
Signing time: Wed 01 Jan 2025 11:48:38 +0000
ROA not before: Wed 01 Jan 2025 11:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60798
IP address blocks: 195.39.194.0/23 maxlen: 24
195.39.202.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:43:ef:64:df:52:bf:c9:9a:64:01:18:26:b3:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d35619ed210be0ac29d170a2bb5cd7455693bc
Validity
Not Before: Jan 1 11:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aad4a225da81906d2ea3d5956075aff86a5fe122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2d:a4:ee:91:75:4b:14:6d:24:e0:bd:7a:39:
d7:21:3e:ad:32:85:b7:1b:87:c3:bc:cf:14:7d:32:
14:51:b9:d7:eb:b9:14:fb:81:e0:dc:b8:2b:b5:81:
26:24:02:4b:95:da:0e:0a:39:80:55:9b:67:ca:e5:
18:b9:4d:30:a6:91:9e:b3:c9:f4:db:2a:9f:0e:60:
55:8e:a4:11:89:a0:11:21:97:b0:38:da:ff:61:76:
f5:d1:8d:b6:fc:7f:77:0a:77:39:99:e7:38:69:9b:
3a:28:99:d6:bf:6c:c8:7a:03:36:b4:f2:15:dc:9b:
6c:0e:bc:e6:a7:f6:92:60:d3:8f:6e:fe:c2:b8:f7:
a2:86:bb:c0:18:6d:c9:3b:a5:92:12:6e:40:50:da:
62:d3:92:45:a6:81:f9:ca:dd:34:82:46:ef:d3:10:
e6:8c:df:7e:31:52:60:4d:70:6b:9d:2c:7a:c2:37:
82:50:9d:ff:31:0c:28:71:6d:95:dd:76:a6:b5:ff:
41:c8:04:a0:98:e1:bf:01:23:f5:53:b5:86:44:34:
97:d9:0c:64:c5:3a:89:b1:c2:b3:2a:2b:d1:9a:40:
f4:1c:a8:df:72:5d:48:6c:6f:1e:f6:a6:20:2d:34:
28:dd:cb:f0:1d:9f:81:f4:ea:e4:55:ab:e9:7f:08:
25:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D4:A2:25:DA:81:90:6D:2E:A3:D5:95:60:75:AF:F8:6A:5F:E1:22
X509v3 Authority Key Identifier:
keyid:99:D3:56:19:ED:21:0B:E0:AC:29:D1:70:A2:BB:5C:D7:45:56:93:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdNWGe0hC-CsKdFwortc10VWk7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/qtSiJdqBkG0uo9WVYHWv-Gpf4SI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/mdNWGe0hC-CsKdFwortc10VWk7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.39.194.0/23
195.39.202.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:87:f0:e4:ac:15:d7:4b:b8:9f:50:4f:85:ba:cb:16:d5:1b:
cc:36:90:d2:66:29:2c:9a:65:d8:27:0a:c4:6e:77:52:0c:82:
b6:79:e0:56:1e:ce:cb:1f:b7:5d:19:52:39:26:53:11:1f:65:
10:fa:97:82:74:a4:b5:77:56:76:21:3b:25:82:63:ea:03:d3:
67:34:f3:ea:1d:0c:cc:01:ec:26:3b:a6:2c:59:ee:6d:f0:b1:
9c:94:4b:fe:99:e5:9e:86:ce:18:2c:0f:fe:cd:b7:de:93:c0:
55:c4:95:62:9e:a7:d5:b3:cf:16:f3:c7:34:af:7f:41:05:37:
70:83:38:c2:c2:c9:0f:6c:9d:80:64:95:51:ca:6f:ac:42:97:
7c:89:0e:f2:72:dd:54:7d:15:18:3a:68:93:7e:c6:fc:3d:25:
2d:d4:da:04:a2:6b:83:f3:e8:27:23:4a:50:7f:64:9a:c3:68:
36:d3:78:8b:fc:c7:5b:f5:41:da:54:f9:61:2d:2d:cf:06:9c:
01:d0:fc:ea:6b:be:57:1d:c7:95:88:37:72:d6:5a:66:a7:e7:
06:de:2f:1c:58:89:ad:ce:06:c0:30:3c:fd:1c:1e:b6:af:18:
65:97:d4:2f:a9:d5:a6:ed:37:20:16:64:95:73:ef:b4:bb:a7:
fe:51:f5:0c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQhskPvZN9Sv8maZAEYJrPiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5ZDM1NjE5ZWQyMTBiZTBhYzI5ZDE3MGEyYmI1Y2Q3NDU1
NjkzYmMwHhcNMjUwMTAxMTE0ODM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWQ0YTIyNWRhODE5MDZkMmVhM2Q1OTU2MDc1YWZmODZhNWZlMTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAti2k7pF1SxRtJOC9ejnXIT6tMoW3
G4fDvM8UfTIUUbnX67kU+4Hg3LgrtYEmJAJLldoOCjmAVZtnyuUYuU0wppGes8n0
2yqfDmBVjqQRiaARIZewONr/YXb10Y22/H93Cnc5mec4aZs6KJnWv2zIegM2tPIV
3JtsDrzmp/aSYNOPbv7CuPeihrvAGG3JO6WSEm5AUNpi05JFpoH5yt00gkbv0xDm
jN9+MVJgTXBrnSx6wjeCUJ3/MQwocW2V3Xamtf9ByASgmOG/ASP1U7WGRDSX2Qxk
xTqJscKzKivRmkD0HKjfcl1IbG8e9qYgLTQo3cvwHZ+B9OrkVavpfwglpwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKrUoiXagZBtLqPVlWB1r/hqX+EiMB8GA1UdIwQY
MBaAFJnTVhntIQvgrCnRcKK7XNdFVpO8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWROV0dlMGhDLUNzS2RGd29ydGMxMFZXazd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zNGU5MWYtYThhOS00OTM3LTlmYjUt
N2EwMWJkZGQ2NTYwLzEvcXRTaUpkcUJrRzB1bzlXVllIV3YtR3BmNFNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny8zNGU5MWYtYThhOS00OTM3LTlmYjUtN2EwMWJkZGQ2NTYw
LzEvbWROV0dlMGhDLUNzS2RGd29ydGMxMFZXazd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBwyfCAwQB
wyfKMA0GCSqGSIb3DQEBCwUAA4IBAQB8h/DkrBXXS7ifUE+FussW1RvMNpDSZiks
mmXYJwrEbndSDIK2eeBWHs7LH7ddGVI5JlMRH2UQ+peCdKS1d1Z2ITslgmPqA9Nn
NPPqHQzMAewmO6YsWe5t8LGclEv+meWehs4YLA/+zbfek8BVxJVinqfVs88W88c0
r39BBTdwgzjCwskPbJ2AZJVRym+sQpd8iQ7yct1UfRUYOmiTfsb8PSUt1NoEomuD
8+gnI0pQf2Saw2g203iL/Mdb9UHaVPlhLS3PBpwB0Pzqa75XHceViDdy1lpmp+cG
3i8cWImtzgbAMDz9HB62rxhll9QvqdWm7TcgFmSVc++0u6f+UfUM
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:28 2025 by rpki-client on console.sobornost.net