Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/m-RL63I77tnbUHaZReiKcRHtR58.roa
File: m-RL63I77tnbUHaZReiKcRHtR58.roa (raw, json)
Hash identifier: VHqfyzr+g1S2KroF/o4QYcY/QOnFZTun+jLqscdqvBI=
Subject key identifier: 9B:E4:4B:EB:72:3B:EE:D9:DB:50:76:99:45:E8:8A:71:11:ED:47:9F
Certificate issuer: /CN=1b54437c92c1e08b06e0776187c7884dd51c0e38
Certificate serial: 019425FDCA5672504B8F860D317817186E88
Authority key identifier: 1B:54:43:7C:92:C1:E0:8B:06:E0:77:61:87:C7:88:4D:D5:1C:0E:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G1RDfJLB4IsG4Hdhh8eITdUcDjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/m-RL63I77tnbUHaZReiKcRHtR58.roa
Signing time: Thu 02 Jan 2025 07:49:36 +0000
ROA not before: Thu 02 Jan 2025 07:49:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205291
IP address blocks: 91.235.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:ca:56:72:50:4b:8f:86:0d:31:78:17:18:6e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b54437c92c1e08b06e0776187c7884dd51c0e38
Validity
Not Before: Jan 2 07:49:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9be44beb723beed9db50769945e88a7111ed479f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:42:ce:da:62:0c:ac:f3:4d:4e:16:17:7a:bb:
6b:0b:92:5a:f8:47:ea:05:16:99:4f:15:ae:8f:ef:
96:1c:36:c7:72:b4:0c:b2:a9:dd:cf:35:ab:27:ff:
20:80:29:b1:c4:52:64:42:c7:83:1b:d7:d4:91:3a:
00:4b:28:e8:f1:0b:96:ee:a3:ab:83:2f:df:bd:e3:
31:c0:0c:62:2b:64:f3:70:e8:fd:81:0c:89:64:36:
c9:62:ff:e2:fd:fc:a6:50:ce:a7:b7:9c:84:1c:5f:
42:7d:e1:7b:6d:f5:80:8e:f9:3f:f9:bd:68:7a:44:
af:af:25:81:e6:00:d2:8e:53:63:e6:fa:73:34:7a:
69:9f:e3:78:6e:c4:ff:a9:06:c9:e5:0a:32:31:55:
44:88:b3:a5:23:f4:0b:f0:d3:ba:67:1a:8d:33:73:
de:9e:58:cb:2a:24:ee:73:18:03:c1:b5:c6:54:f1:
7a:68:80:36:77:26:b3:b3:3a:41:75:77:e7:fd:c6:
13:c1:d4:74:62:b1:41:ca:50:ad:0e:19:89:b4:5c:
e4:01:d9:0c:e0:d4:6e:98:77:c3:1a:34:03:81:af:
30:76:de:b8:2f:30:87:ff:56:a9:6c:d2:c4:6b:36:
63:c5:25:1b:9e:95:fe:3c:b0:a1:bf:54:93:97:4d:
5d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E4:4B:EB:72:3B:EE:D9:DB:50:76:99:45:E8:8A:71:11:ED:47:9F
X509v3 Authority Key Identifier:
keyid:1B:54:43:7C:92:C1:E0:8B:06:E0:77:61:87:C7:88:4D:D5:1C:0E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G1RDfJLB4IsG4Hdhh8eITdUcDjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/m-RL63I77tnbUHaZReiKcRHtR58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/G1RDfJLB4IsG4Hdhh8eITdUcDjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.206.0/24
Signature Algorithm: sha256WithRSAEncryption
64:95:10:20:2b:c2:95:ac:fa:47:57:ce:29:59:76:c3:70:da:
ee:a9:60:ca:70:bc:a4:92:24:8c:ae:27:aa:5c:94:7d:7a:9b:
3b:79:a0:c4:b3:78:12:a9:22:77:8d:a3:14:87:3c:e2:ab:38:
a2:4c:42:e4:ef:30:3f:18:a8:be:0e:96:36:97:ee:c7:93:11:
60:aa:eb:a5:3f:db:37:c4:fe:98:1b:71:79:61:81:2c:ab:91:
2b:1f:f0:39:6f:f9:46:d7:72:86:03:a1:03:42:8d:6c:84:d9:
28:65:f0:e5:de:ae:21:3f:47:81:0b:ef:5c:95:49:52:b3:41:
a4:e6:43:28:91:d2:1e:25:a1:7b:ad:b0:24:dc:14:d7:d4:7b:
25:a0:d3:32:1b:8d:0d:e4:e7:84:ac:47:35:e4:53:3e:5e:a3:
64:72:15:7c:4c:de:2c:dc:e3:e9:f0:66:c8:64:5f:9f:7f:6c:
44:e8:15:77:3a:10:5b:14:88:55:a9:d8:77:d1:f7:15:20:8b:
04:e3:14:e7:0e:36:7c:99:66:16:28:f2:be:76:e4:a4:c9:42:
0c:ba:7d:7a:81:ea:56:0b:af:fc:40:ab:1a:d3:e7:6b:75:97:
a0:35:ee:2c:14:91:e7:00:e7:c7:a0:ce:77:d7:ab:85:c2:78:
5e:54:43:01
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/cpWclBLj4YNMXgXGG6IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiNTQ0MzdjOTJjMWUwOGIwNmUwNzc2MTg3Yzc4ODRkZDUx
YzBlMzgwHhcNMjUwMTAyMDc0OTM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmU0NGJlYjcyM2JlZWQ5ZGI1MDc2OTk0NWU4OGE3MTExZWQ0NzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ELO2mIMrPNNThYXertrC5Ja+Efq
BRaZTxWuj++WHDbHcrQMsqndzzWrJ/8ggCmxxFJkQseDG9fUkToASyjo8QuW7qOr
gy/fveMxwAxiK2TzcOj9gQyJZDbJYv/i/fymUM6nt5yEHF9CfeF7bfWAjvk/+b1o
ekSvryWB5gDSjlNj5vpzNHppn+N4bsT/qQbJ5QoyMVVEiLOlI/QL8NO6ZxqNM3Pe
nljLKiTucxgDwbXGVPF6aIA2dyazszpBdXfn/cYTwdR0YrFBylCtDhmJtFzkAdkM
4NRumHfDGjQDga8wdt64LzCH/1apbNLEazZjxSUbnpX+PLChv1STl01dlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJvkS+tyO+7Z21B2mUXoinER7UefMB8GA1UdIwQY
MBaAFBtUQ3ySweCLBuB3YYfHiE3VHA44MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzFSRGZKTEI0SXNHNEhkaGg4ZUlUZFVjRGpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9mMWRiMzYtNjY1ZC00ZDgwLWExYjIt
NTE1ZWUxNTcwMjU5LzEvbS1STDYzSTc3dG5iVUhhWlJlaUtjUkh0UjU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9mMWRiMzYtNjY1ZC00ZDgwLWExYjItNTE1ZWUxNTcwMjU5
LzEvRzFSRGZKTEI0SXNHNEhkaGg4ZUlUZFVjRGpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+vOMA0G
CSqGSIb3DQEBCwUAA4IBAQBklRAgK8KVrPpHV84pWXbDcNruqWDKcLykkiSMrieq
XJR9eps7eaDEs3gSqSJ3jaMUhzziqziiTELk7zA/GKi+DpY2l+7HkxFgquulP9s3
xP6YG3F5YYEsq5ErH/A5b/lG13KGA6EDQo1shNkoZfDl3q4hP0eBC+9clUlSs0Gk
5kMokdIeJaF7rbAk3BTX1HsloNMyG40N5OeErEc15FM+XqNkchV8TN4s3OPp8GbI
ZF+ff2xE6BV3OhBbFIhVqdh30fcVIIsE4xTnDjZ8mWYWKPK+duSkyUIMun16gepW
C6/8QKsa0+drdZegNe4sFJHnAOfHoM5316uFwnheVEMB
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net