Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/f55b57-ecba-4d3d-9a81-bd802fc4aa94/1/1-eNX-zOFtjFclCSH0mTJdCSae98.roa
File: 1-eNX-zOFtjFclCSH0mTJdCSae98.roa (raw, json)
Hash identifier: M30Jnhsr3n3FbZbY3hov7cmuQb2xUsoReMhqFsTONps=
Subject key identifier: F9:E3:57:FB:33:85:B6:31:5C:94:24:87:D2:64:C9:74:24:9A:7B:DF
Certificate issuer: /CN=5c5d86974a7b624192ec8d834cf2906e1302e431
Certificate serial: 0194266C3C31E74A931A2A5269346EED900E
Authority key identifier: 5C:5D:86:97:4A:7B:62:41:92:EC:8D:83:4C:F2:90:6E:13:02:E4:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XF2Gl0p7YkGS7I2DTPKQbhMC5DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/f55b57-ecba-4d3d-9a81-bd802fc4aa94/1/1-eNX-zOFtjFclCSH0mTJdCSae98.roa
Signing time: Thu 02 Jan 2025 09:50:14 +0000
ROA not before: Thu 02 Jan 2025 09:50:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 24971
IP address blocks: 176.227.168.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:3c:31:e7:4a:93:1a:2a:52:69:34:6e:ed:90:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c5d86974a7b624192ec8d834cf2906e1302e431
Validity
Not Before: Jan 2 09:50:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f9e357fb3385b6315c942487d264c974249a7bdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7f:01:0e:1f:5f:75:4d:a7:10:87:c4:93:c0:
ee:2b:41:bb:72:05:aa:c0:94:8a:3d:84:9a:ca:75:
71:a8:b8:1f:12:1b:d0:65:2b:c4:fc:a8:c7:71:ee:
27:66:0b:0d:67:20:44:ec:a7:09:05:8e:f2:87:c6:
85:5d:be:2c:1b:ea:eb:cd:1f:65:4e:af:83:49:7d:
64:75:31:94:55:30:fc:3f:6c:8a:47:68:be:3b:80:
0c:8b:da:fa:f1:87:5a:94:e3:14:71:06:0e:7c:f4:
a0:36:eb:22:c2:f1:e7:d5:7d:57:d9:a9:e9:84:10:
79:68:42:84:7d:75:1b:36:fd:09:a3:5b:1f:16:48:
ee:97:d4:98:76:27:f9:1e:4b:d6:5e:23:c6:90:62:
bb:47:c9:11:fb:29:d4:26:fe:6d:4d:2f:0f:9e:93:
15:46:4d:dc:5e:7a:53:be:f7:54:30:3c:8a:c9:16:
f7:dd:2c:61:4d:94:49:cc:49:b1:6e:b6:90:3d:df:
cc:15:99:93:96:19:f3:a2:6e:cb:79:a8:ea:d7:23:
b5:a4:bc:6f:b9:8f:77:3c:5c:a9:b4:f2:30:35:9d:
90:75:0f:80:74:0a:a5:f1:ff:d4:ca:72:87:6f:49:
b2:95:c0:77:07:2c:ed:d3:d3:d3:0c:8d:e2:2e:cf:
c6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E3:57:FB:33:85:B6:31:5C:94:24:87:D2:64:C9:74:24:9A:7B:DF
X509v3 Authority Key Identifier:
keyid:5C:5D:86:97:4A:7B:62:41:92:EC:8D:83:4C:F2:90:6E:13:02:E4:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XF2Gl0p7YkGS7I2DTPKQbhMC5DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f55b57-ecba-4d3d-9a81-bd802fc4aa94/1/1-eNX-zOFtjFclCSH0mTJdCSae98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/f55b57-ecba-4d3d-9a81-bd802fc4aa94/1/XF2Gl0p7YkGS7I2DTPKQbhMC5DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.227.168.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:2f:4f:17:94:ef:a0:95:f8:be:37:c0:4d:96:e5:d2:65:2d:
b0:41:7a:57:a4:0a:fc:5d:81:60:17:69:3c:4c:52:28:e6:89:
6b:67:b3:11:57:f2:a4:59:9b:65:77:3e:4e:15:f4:e1:9d:db:
ee:bf:3c:de:5b:93:ea:10:19:d3:92:d3:a8:26:e5:c9:2f:74:
72:87:62:05:c1:2e:c8:49:fe:d5:59:40:c4:36:25:c8:83:7f:
b5:04:e4:d7:83:5a:f5:82:ec:f9:3a:db:92:a3:93:8a:25:b5:
60:49:e8:88:0f:9c:a7:9b:b0:12:a3:51:7d:9a:ae:3e:aa:6c:
84:87:d5:cc:bd:c6:a9:c3:96:cb:96:ba:ea:cc:39:2a:ec:7a:
4c:56:3c:09:f6:d5:3f:9a:9e:f8:30:c3:00:05:99:21:9d:fc:
87:c4:3d:d6:03:41:7f:a9:31:cc:73:8a:04:55:18:a0:d8:6d:
b8:1c:98:90:94:76:38:c0:86:9e:5f:ca:88:7c:9b:81:7b:9d:
4d:44:ba:0b:be:8b:2b:79:da:9f:38:03:41:6c:83:04:c3:81:
41:98:ba:0d:db:74:32:67:9f:52:f3:25:58:07:78:1b:29:93:
e9:05:17:72:11:6b:45:cb:10:f9:06:23:cb:29:6e:7b:ee:cc:
3b:bd:46:b3
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZQmbDwx50qTGipSaTRu7ZAOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNWQ4Njk3NGE3YjYyNDE5MmVjOGQ4MzRjZjI5MDZlMTMw
MmU0MzEwHhcNMjUwMTAyMDk1MDE0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOWUzNTdmYjMzODViNjMxNWM5NDI0ODdkMjY0Yzk3NDI0OWE3YmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsH8BDh9fdU2nEIfEk8DuK0G7cgWq
wJSKPYSaynVxqLgfEhvQZSvE/KjHce4nZgsNZyBE7KcJBY7yh8aFXb4sG+rrzR9l
Tq+DSX1kdTGUVTD8P2yKR2i+O4AMi9r68YdalOMUcQYOfPSgNusiwvHn1X1X2anp
hBB5aEKEfXUbNv0Jo1sfFkjul9SYdif5HkvWXiPGkGK7R8kR+ynUJv5tTS8PnpMV
Rk3cXnpTvvdUMDyKyRb33SxhTZRJzEmxbraQPd/MFZmTlhnzom7Leajq1yO1pLxv
uY93PFyptPIwNZ2QdQ+AdAql8f/UynKHb0mylcB3Byzt09PTDI3iLs/GjQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPnjV/szhbYxXJQkh9JkyXQkmnvfMB8GA1UdIwQY
MBaAFFxdhpdKe2JBkuyNg0zykG4TAuQxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEYyR2wwcDdZa0dTN0kyRFRQS1FiaE1DNURFLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9mNTViNTctZWNiYS00ZDNkLTlhODEt
YmQ4MDJmYzRhYTk0LzEvMS1lTlgtek9GdGpGY2xDU0gwbVRKZENTYWU5OC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvOWIvZjU1YjU3LWVjYmEtNGQzZC05YTgxLWJkODAyZmM0YWE5
NC8xL1hGMkdsMHA3WWtHUzdJMkRUUEtRYmhNQzVERS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbDjqDAN
BgkqhkiG9w0BAQsFAAOCAQEACi9PF5TvoJX4vjfATZbl0mUtsEF6V6QK/F2BYBdp
PExSKOaJa2ezEVfypFmbZXc+ThX04Z3b7r883luT6hAZ05LTqCblyS90codiBcEu
yEn+1VlAxDYlyIN/tQTk14Na9YLs+TrbkqOTiiW1YEnoiA+cp5uwEqNRfZquPqps
hIfVzL3GqcOWy5a66sw5Kux6TFY8CfbVP5qe+DDDAAWZIZ38h8Q91gNBf6kxzHOK
BFUYoNhtuByYkJR2OMCGnl/KiHybgXudTUS6C76LK3nanzgDQWyDBMOBQZi6Ddt0
MmefUvMlWAd4GymT6QUXchFrRcsQ+QYjyylue+7MO71Gsw==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:31 2025 by rpki-client on console.sobornost.net