Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/db41c9-e8a0-4f90-a0d5-887509c4602a/1/iv4w_q_Q0lB1UAUD7TgMR_xxyYA.roa
File: iv4w_q_Q0lB1UAUD7TgMR_xxyYA.roa (raw, json)
Hash identifier: fMZ0QGK6B5sX/J++IQoulADhQ3kbWhx95qL8TpCZZ84=
Subject key identifier: 8A:FE:30:FE:AF:D0:D2:50:75:50:05:03:ED:38:0C:47:FC:71:C9:80
Certificate issuer: /CN=cab8b8da9ccd4d261b72ada034a0875665a64487
Certificate serial: 0194221FD6C5D545C49BA6FA69BC01FCF2E4
Authority key identifier: CA:B8:B8:DA:9C:CD:4D:26:1B:72:AD:A0:34:A0:87:56:65:A6:44:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yri42pzNTSYbcq2gNKCHVmWmRIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/db41c9-e8a0-4f90-a0d5-887509c4602a/1/iv4w_q_Q0lB1UAUD7TgMR_xxyYA.roa
Signing time: Wed 01 Jan 2025 13:48:19 +0000
ROA not before: Wed 01 Jan 2025 13:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209492
IP address blocks: 171.22.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:d6:c5:d5:45:c4:9b:a6:fa:69:bc:01:fc:f2:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cab8b8da9ccd4d261b72ada034a0875665a64487
Validity
Not Before: Jan 1 13:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8afe30feafd0d25075500503ed380c47fc71c980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9b:32:f9:f2:4e:68:4c:c9:a2:0b:07:ca:f0:
e6:ea:b3:00:fb:0c:a6:7b:d1:05:ea:24:e9:b8:a6:
38:0c:70:ce:01:13:9e:05:98:cb:db:af:a3:6a:e8:
e9:03:0c:b8:db:f5:43:b2:e0:62:c7:5c:d5:58:94:
bc:cd:c7:dd:53:79:97:5f:8c:d8:94:9a:64:df:60:
fa:ba:08:3c:fe:48:d5:9c:77:d3:1c:90:44:00:08:
e2:28:44:1c:82:d2:50:65:2b:1b:c8:1f:d1:69:ff:
40:51:8c:8c:49:87:f5:3f:c0:4d:a2:60:32:23:8a:
1f:22:b8:23:8a:78:00:61:1a:1a:bf:b2:64:d7:4c:
22:f5:8c:69:cf:35:8b:b4:9a:04:69:d5:9c:57:5e:
69:8a:3c:3f:e7:09:de:fb:66:8d:47:73:c1:29:77:
d0:47:c6:b3:51:2a:01:d6:69:9f:ed:83:77:05:f8:
af:7e:53:a1:4e:f6:17:b5:b6:37:e6:67:ef:fe:b7:
08:15:b2:b4:36:86:02:a2:46:93:ff:35:29:47:34:
50:2e:ae:a9:04:5e:3a:d7:91:82:de:45:c9:71:c6:
d7:7f:d9:b4:70:7d:c6:db:73:cd:9e:4e:ac:35:0c:
e5:66:ec:e8:69:33:be:84:49:cb:03:58:76:90:47:
3d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:FE:30:FE:AF:D0:D2:50:75:50:05:03:ED:38:0C:47:FC:71:C9:80
X509v3 Authority Key Identifier:
keyid:CA:B8:B8:DA:9C:CD:4D:26:1B:72:AD:A0:34:A0:87:56:65:A6:44:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yri42pzNTSYbcq2gNKCHVmWmRIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/db41c9-e8a0-4f90-a0d5-887509c4602a/1/iv4w_q_Q0lB1UAUD7TgMR_xxyYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/db41c9-e8a0-4f90-a0d5-887509c4602a/1/yri42pzNTSYbcq2gNKCHVmWmRIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.84.0/22
Signature Algorithm: sha256WithRSAEncryption
08:fe:86:28:51:23:38:62:d1:d3:6d:4b:47:89:a1:fb:26:4b:
48:c0:77:0f:34:44:fb:ea:ec:04:8c:96:3c:a0:99:fe:e5:e7:
6b:ca:44:d1:41:f8:5a:86:fe:be:23:98:1e:f9:51:7a:5b:07:
74:97:6c:b8:eb:8d:19:e9:23:67:42:1d:89:5c:2e:fb:76:b4:
5e:a6:5d:2a:d5:28:74:e3:00:ee:55:36:6d:e0:4d:82:d7:9c:
3d:29:bf:86:7d:a7:fe:56:e6:03:c6:2d:d0:1b:48:1c:a9:dd:
8a:d7:ab:61:de:4b:7b:e4:b4:08:75:eb:ab:b0:45:16:a0:b1:
a9:64:8c:5e:4a:cd:70:51:a3:c7:e2:57:a4:e9:e6:c4:2d:38:
31:a8:9d:4d:0f:c6:60:09:aa:01:e0:63:d0:e6:b5:10:38:3c:
26:fa:bb:2e:f8:63:98:e6:26:3b:93:c8:03:a3:77:d2:70:0d:
7a:a2:35:18:ff:23:9d:4e:10:d1:d6:7d:94:80:5b:aa:d9:0e:
4f:18:7c:9a:f5:6e:36:83:c4:98:13:3a:c0:ed:af:97:c7:33:
72:50:9e:58:db:2d:8e:0d:8f:39:07:66:b6:b1:1c:a5:cb:6c:
69:65:9f:6d:b7:50:e7:93:68:0c:78:e0:da:93:33:17:eb:f9:
1d:4d:9e:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH9bF1UXEm6b6abwB/PLkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhYjhiOGRhOWNjZDRkMjYxYjcyYWRhMDM0YTA4NzU2NjVh
NjQ0ODcwHhcNMjUwMTAxMTM0ODE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWZlMzBmZWFmZDBkMjUwNzU1MDA1MDNlZDM4MGM0N2ZjNzFjOTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5sy+fJOaEzJogsHyvDm6rMA+wym
e9EF6iTpuKY4DHDOAROeBZjL26+jaujpAwy42/VDsuBix1zVWJS8zcfdU3mXX4zY
lJpk32D6ugg8/kjVnHfTHJBEAAjiKEQcgtJQZSsbyB/Raf9AUYyMSYf1P8BNomAy
I4ofIrgjingAYRoav7Jk10wi9YxpzzWLtJoEadWcV15pijw/5wne+2aNR3PBKXfQ
R8azUSoB1mmf7YN3BfivflOhTvYXtbY35mfv/rcIFbK0NoYCokaT/zUpRzRQLq6p
BF4615GC3kXJccbXf9m0cH3G23PNnk6sNQzlZuzoaTO+hEnLA1h2kEc9gwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIr+MP6v0NJQdVAFA+04DEf8ccmAMB8GA1UdIwQY
MBaAFMq4uNqczU0mG3KtoDSgh1ZlpkSHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXJpNDJwek5UU1liY3EyZ05LQ0hWbVdtUkljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9kYjQxYzktZThhMC00ZjkwLWEwZDUt
ODg3NTA5YzQ2MDJhLzEvaXY0d19xX1EwbEIxVUFVRDdUZ01SX3h4eVlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy9kYjQxYzktZThhMC00ZjkwLWEwZDUtODg3NTA5YzQ2MDJh
LzEveXJpNDJwek5UU1liY3EyZ05LQ0hWbVdtUkljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqxZUMA0G
CSqGSIb3DQEBCwUAA4IBAQAI/oYoUSM4YtHTbUtHiaH7JktIwHcPNET76uwEjJY8
oJn+5edrykTRQfhahv6+I5ge+VF6Wwd0l2y4640Z6SNnQh2JXC77drRepl0q1Sh0
4wDuVTZt4E2C15w9Kb+Gfaf+VuYDxi3QG0gcqd2K16th3kt75LQIdeursEUWoLGp
ZIxeSs1wUaPH4lek6ebELTgxqJ1ND8ZgCaoB4GPQ5rUQODwm+rsu+GOY5iY7k8gD
o3fScA16ojUY/yOdThDR1n2UgFuq2Q5PGHya9W42g8SYEzrA7a+XxzNyUJ5Y2y2O
DY85B2a2sRyly2xpZZ9tt1Dnk2gMeODakzMX6/kdTZ6I
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:32 2025 by rpki-client on console.sobornost.net