Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/qmufYg21c7b0gdjuY1ziryDKce0.roa
File: qmufYg21c7b0gdjuY1ziryDKce0.roa (raw, json)
Hash identifier: cPNs19EWQmBAO/qKhHL4tQL9v8RMF/40vmmVOD5n7Ds=
Subject key identifier: AA:6B:9F:62:0D:B5:73:B6:F4:81:D8:EE:63:5C:E2:AF:20:CA:71:ED
Certificate issuer: /CN=f02e3224e3e32928192628d26487d500f2707765
Certificate serial: 0194228DFE46DBEFED8BE604AE23E55D6A5E
Authority key identifier: F0:2E:32:24:E3:E3:29:28:19:26:28:D2:64:87:D5:00:F2:70:77:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C4yJOPjKSgZJijSZIfVAPJwd2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/qmufYg21c7b0gdjuY1ziryDKce0.roa
Signing time: Wed 01 Jan 2025 15:48:38 +0000
ROA not before: Wed 01 Jan 2025 15:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47599
IP address blocks: 193.203.96.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:fe:46:db:ef:ed:8b:e6:04:ae:23:e5:5d:6a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02e3224e3e32928192628d26487d500f2707765
Validity
Not Before: Jan 1 15:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aa6b9f620db573b6f481d8ee635ce2af20ca71ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7a:14:9a:f9:2d:34:39:c8:fb:3d:2c:bd:01:
58:fa:db:3b:a2:ec:8c:d0:4b:5a:8b:6c:86:b6:61:
1c:4d:4b:75:79:53:d3:61:65:b0:8c:2e:92:17:55:
be:d0:b6:bd:7c:72:6f:eb:d1:ac:02:87:66:17:6b:
89:a3:2a:28:1c:c7:83:bf:68:74:c0:3d:26:6c:f7:
6f:4b:38:8e:fc:f2:fe:57:7e:9f:39:ff:a7:9a:f1:
1b:1f:ea:d9:a5:3a:33:a8:0b:74:41:b2:dd:a6:29:
5c:63:64:2c:66:63:be:63:71:63:38:28:a7:e6:4e:
a5:7b:ca:99:7b:18:f2:f8:32:a9:40:c4:b3:64:cd:
64:34:f6:8f:f9:45:4f:bb:f1:66:fc:2a:7b:4e:bc:
e7:71:f2:c3:ce:dd:f5:ac:38:3f:f6:d0:77:88:f8:
19:bc:24:69:61:95:e1:2b:c8:1c:2f:56:77:31:79:
a6:d4:6c:4e:e0:cf:4f:42:bd:b9:9a:46:10:89:9c:
22:e9:97:c0:d2:b1:c8:73:d4:92:3a:41:38:f4:13:
e5:b4:90:49:85:4d:4e:0e:a9:8d:ec:65:cf:93:98:
66:eb:f0:f1:0b:8b:65:85:c3:ad:86:13:fd:e2:82:
1b:69:6a:50:8b:50:7a:b1:d9:0d:90:50:10:d7:c7:
a6:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6B:9F:62:0D:B5:73:B6:F4:81:D8:EE:63:5C:E2:AF:20:CA:71:ED
X509v3 Authority Key Identifier:
keyid:F0:2E:32:24:E3:E3:29:28:19:26:28:D2:64:87:D5:00:F2:70:77:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C4yJOPjKSgZJijSZIfVAPJwd2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/qmufYg21c7b0gdjuY1ziryDKce0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/8C4yJOPjKSgZJijSZIfVAPJwd2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.96.0/23
Signature Algorithm: sha256WithRSAEncryption
83:ef:31:10:2f:f9:b5:c8:b9:aa:48:4d:69:d5:06:4a:c1:7e:
66:08:11:bf:09:39:a6:dc:64:e9:17:26:09:ce:54:76:59:9e:
2f:38:8d:7d:be:34:75:74:c9:6f:40:dc:0e:0b:7a:43:35:96:
b0:44:d5:d0:e1:64:d6:74:d9:f4:ea:66:25:6b:88:9f:58:65:
37:74:9c:fc:0c:d0:f2:70:db:2b:a1:d5:76:e6:5f:12:3f:5a:
d6:d8:92:67:30:b0:08:7f:eb:03:8b:42:dc:db:ea:a7:64:55:
19:3e:6d:92:5a:a7:1a:2b:d1:f1:cb:d8:66:4f:c6:7c:9a:fa:
bb:d1:ce:0b:f9:8e:8c:43:fe:73:56:2b:2b:4d:46:27:3e:74:
51:ab:e8:5f:bc:ae:05:93:81:7a:04:30:3f:0f:02:52:ca:c6:
e9:c0:62:5c:43:08:ed:96:25:65:a8:0b:4d:3b:91:f0:07:6f:
37:8d:8e:12:91:22:fc:f1:47:4b:ef:2e:80:f0:03:50:0b:c5:
17:bd:34:d3:ed:26:d8:e2:e5:48:d8:fa:9b:6e:fd:80:37:64:
b5:1b:85:8c:66:58:cd:64:53:b2:17:e4:28:bd:3d:18:1d:f7:
29:02:f0:49:9e:1c:a0:75:d8:aa:84:e2:c9:eb:18:b8:ed:87:
b7:a6:59:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijf5G2+/ti+YEriPlXWpeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMmUzMjI0ZTNlMzI5MjgxOTI2MjhkMjY0ODdkNTAwZjI3
MDc3NjUwHhcNMjUwMTAxMTU0ODM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYTZiOWY2MjBkYjU3M2I2ZjQ4MWQ4ZWU2MzVjZTJhZjIwY2E3MWVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi3oUmvktNDnI+z0svQFY+ts7ouyM
0Etai2yGtmEcTUt1eVPTYWWwjC6SF1W+0La9fHJv69GsAodmF2uJoyooHMeDv2h0
wD0mbPdvSziO/PL+V36fOf+nmvEbH+rZpTozqAt0QbLdpilcY2QsZmO+Y3FjOCin
5k6le8qZexjy+DKpQMSzZM1kNPaP+UVPu/Fm/Cp7TrzncfLDzt31rDg/9tB3iPgZ
vCRpYZXhK8gcL1Z3MXmm1GxO4M9PQr25mkYQiZwi6ZfA0rHIc9SSOkE49BPltJBJ
hU1ODqmN7GXPk5hm6/DxC4tlhcOthhP94oIbaWpQi1B6sdkNkFAQ18emzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKprn2INtXO29IHY7mNc4q8gynHtMB8GA1UdIwQY
MBaAFPAuMiTj4ykoGSYo0mSH1QDycHdlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEM0eUpPUGpLU2daSmlqU1pJZlZBUEp3ZDJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8yNjg4OTAtZDUwOS00NTFlLWI5ZWUt
ZmI5OTUzYzA3ZjE1LzEvcW11ZllnMjFjN2IwZ2RqdVkxemlyeURLY2UwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8yNjg4OTAtZDUwOS00NTFlLWI5ZWUtZmI5OTUzYzA3ZjE1
LzEvOEM0eUpPUGpLU2daSmlqU1pJZlZBUEp3ZDJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwctgMA0G
CSqGSIb3DQEBCwUAA4IBAQCD7zEQL/m1yLmqSE1p1QZKwX5mCBG/CTmm3GTpFyYJ
zlR2WZ4vOI19vjR1dMlvQNwOC3pDNZawRNXQ4WTWdNn06mYla4ifWGU3dJz8DNDy
cNsrodV25l8SP1rW2JJnMLAIf+sDi0Lc2+qnZFUZPm2SWqcaK9Hxy9hmT8Z8mvq7
0c4L+Y6MQ/5zVisrTUYnPnRRq+hfvK4Fk4F6BDA/DwJSysbpwGJcQwjtliVlqAtN
O5HwB283jY4SkSL88UdL7y6A8ANQC8UXvTTT7SbY4uVI2Pqbbv2AN2S1G4WMZljN
ZFOyF+QovT0YHfcpAvBJnhygddiqhOLJ6xi47Ye3pllh
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:56 2025 by rpki-client on console.sobornost.net