Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/6e909d-d325-48a1-9443-cc9a758c9916/1/lR6zP5U5RH-kGUiT4tee76n_n7U.roa
File: lR6zP5U5RH-kGUiT4tee76n_n7U.roa (raw, json)
Hash identifier: d+2joVrqEnxO1Au13OpUY3xGwfVao9EUryyrW7jhHKE=
Subject key identifier: 95:1E:B3:3F:95:39:44:7F:A4:19:48:93:E2:D7:9E:EF:A9:FF:9F:B5
Certificate issuer: /CN=ae7a9b1745a5a70c3bf7bcc2c2ee166460aff7a8
Certificate serial: 0194274862E55426701B81A345CDEA72FCC2
Authority key identifier: AE:7A:9B:17:45:A5:A7:0C:3B:F7:BC:C2:C2:EE:16:64:60:AF:F7:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rnqbF0Wlpww797zCwu4WZGCv96g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/6e909d-d325-48a1-9443-cc9a758c9916/1/lR6zP5U5RH-kGUiT4tee76n_n7U.roa
Signing time: Thu 02 Jan 2025 13:50:42 +0000
ROA not before: Thu 02 Jan 2025 13:50:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204385
IP address blocks: 31.202.15.0/24 maxlen: 24
2a00:1210:fffe::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:62:e5:54:26:70:1b:81:a3:45:cd:ea:72:fc:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7a9b1745a5a70c3bf7bcc2c2ee166460aff7a8
Validity
Not Before: Jan 2 13:50:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=951eb33f9539447fa4194893e2d79eefa9ff9fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:12:6a:59:80:10:5f:63:0c:b3:8f:80:0e:1b:
be:4c:7c:81:10:99:b6:52:97:51:1c:c2:ae:59:81:
43:70:ba:75:7e:c5:91:16:dd:5b:4d:3b:4d:45:45:
66:8e:7f:e6:d0:64:ff:9f:4f:ad:5f:d6:fe:94:6c:
69:bd:59:83:b4:73:36:b6:7f:7b:45:1c:13:5a:a8:
0d:43:6f:01:13:ff:16:5e:25:a3:73:38:bb:76:21:
49:9e:e0:54:b7:b5:82:9c:f4:65:d3:e6:fc:8f:37:
3a:cd:72:16:68:e7:5e:28:84:80:f2:04:4f:53:75:
1d:39:a2:65:a0:2b:c4:32:e8:b3:a8:ef:78:cc:50:
28:67:cc:67:f3:fe:4e:71:41:7f:c8:77:56:5d:e6:
c0:a3:93:d7:d0:4e:eb:3b:5b:14:dc:69:28:51:e6:
96:24:9c:2d:7b:3a:03:58:82:a8:67:01:84:16:d7:
8a:bd:e1:d7:be:29:36:30:60:75:1f:c9:ed:01:97:
7c:0c:67:90:16:26:a9:b0:97:27:c0:37:a6:7c:cc:
60:33:3a:8f:26:bf:77:52:65:ce:e5:31:6a:6b:e2:
ee:29:1f:f6:c0:83:e4:6b:85:c2:55:fd:cf:6c:90:
3f:85:c2:9e:95:ce:fc:37:54:33:e7:84:0e:f3:f5:
fc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1E:B3:3F:95:39:44:7F:A4:19:48:93:E2:D7:9E:EF:A9:FF:9F:B5
X509v3 Authority Key Identifier:
keyid:AE:7A:9B:17:45:A5:A7:0C:3B:F7:BC:C2:C2:EE:16:64:60:AF:F7:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rnqbF0Wlpww797zCwu4WZGCv96g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/6e909d-d325-48a1-9443-cc9a758c9916/1/lR6zP5U5RH-kGUiT4tee76n_n7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/6e909d-d325-48a1-9443-cc9a758c9916/1/rnqbF0Wlpww797zCwu4WZGCv96g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.202.15.0/24
IPv6:
2a00:1210:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
88:2c:82:45:26:cd:a2:05:f4:4a:b0:08:fc:f0:aa:54:7b:fe:
44:f4:24:95:09:f1:72:1a:22:66:9e:16:fe:03:70:ad:06:93:
99:f9:55:09:b3:5b:4e:eb:56:5a:25:d8:3b:2d:97:af:9f:cf:
6c:b0:9c:28:17:b0:4a:80:51:88:c6:36:0c:cc:ba:c8:24:f3:
f7:16:0c:77:62:1a:11:54:59:6c:d9:70:a5:3f:22:c2:00:16:
01:4b:96:2c:d2:9e:bb:25:9b:da:1b:1d:43:87:19:37:c9:17:
2a:6d:7d:c1:99:87:9c:e7:8b:db:a0:ed:25:cf:0d:d8:c7:77:
30:fd:cc:00:a0:39:15:a0:f8:9c:25:24:c8:9b:8e:a6:58:10:
61:3a:a3:a3:50:0a:23:ad:be:5e:cf:08:06:7d:9a:65:4c:02:
40:1b:ac:8d:d8:c3:65:c5:e9:c9:ce:52:28:d9:0a:ca:ac:03:
ff:e9:20:da:b7:69:41:82:4d:c5:98:83:3a:08:7a:c1:53:c2:
ee:12:20:ac:c5:cf:2a:b0:12:5c:16:08:38:b7:c4:f5:71:35:
f9:ec:3c:cd:07:c7:ff:7d:45:0e:98:87:d8:c0:6b:7d:5d:92:
64:59:86:4a:5a:37:54:3b:38:1f:5f:02:36:03:5e:9f:54:84:
de:02:f8:04
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQnSGLlVCZwG4GjRc3qcvzCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlN2E5YjE3NDVhNWE3MGMzYmY3YmNjMmMyZWUxNjY0NjBh
ZmY3YTgwHhcNMjUwMTAyMTM1MDQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTFlYjMzZjk1Mzk0NDdmYTQxOTQ4OTNlMmQ3OWVlZmE5ZmY5ZmI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4hJqWYAQX2MMs4+ADhu+THyBEJm2
UpdRHMKuWYFDcLp1fsWRFt1bTTtNRUVmjn/m0GT/n0+tX9b+lGxpvVmDtHM2tn97
RRwTWqgNQ28BE/8WXiWjczi7diFJnuBUt7WCnPRl0+b8jzc6zXIWaOdeKISA8gRP
U3UdOaJloCvEMuizqO94zFAoZ8xn8/5OcUF/yHdWXebAo5PX0E7rO1sU3GkoUeaW
JJwtezoDWIKoZwGEFteKveHXvik2MGB1H8ntAZd8DGeQFiapsJcnwDemfMxgMzqP
Jr93UmXO5TFqa+LuKR/2wIPka4XCVf3PbJA/hcKelc78N1Qz54QO8/X8uwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFJUesz+VOUR/pBlIk+LXnu+p/5+1MB8GA1UdIwQY
MBaAFK56mxdFpacMO/e8wsLuFmRgr/eoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm5xYkYwV2xwd3c3OTd6Q3d1NFdaR0N2OTZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy82ZTkwOWQtZDMyNS00OGExLTk0NDMt
Y2M5YTc1OGM5OTE2LzEvbFI2elA1VTVSSC1rR1VpVDR0ZWU3Nm5fbjdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy82ZTkwOWQtZDMyNS00OGExLTk0NDMtY2M5YTc1OGM5OTE2
LzEvcm5xYkYwV2xwd3c3OTd6Q3d1NFdaR0N2OTZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAH8oPMA8E
AgACMAkDBwAqABIQ//4wDQYJKoZIhvcNAQELBQADggEBAIgsgkUmzaIF9EqwCPzw
qlR7/kT0JJUJ8XIaImaeFv4DcK0Gk5n5VQmzW07rVlol2Dstl6+fz2ywnCgXsEqA
UYjGNgzMusgk8/cWDHdiGhFUWWzZcKU/IsIAFgFLlizSnrslm9obHUOHGTfJFypt
fcGZh5zni9ug7SXPDdjHdzD9zACgORWg+JwlJMibjqZYEGE6o6NQCiOtvl7PCAZ9
mmVMAkAbrI3Yw2XF6cnOUijZCsqsA//pINq3aUGCTcWYgzoIesFTwu4SIKzFzyqw
ElwWCDi3xPVxNfnsPM0Hx/99RQ6Yh9jAa31dkmRZhkpaN1Q7OB9fAjYDXp9UhN4C
+AQ=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:31 2025 by rpki-client on console.sobornost.net