Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/cabd64-186b-4282-b14a-aa6fd434e0ef/1/AMqTeh0F3XSWkmUe0nZ3FjJ_0eI.roa
File: AMqTeh0F3XSWkmUe0nZ3FjJ_0eI.roa (raw, json)
Hash identifier: hVtRIuTJAp0UciU9Dz9eHBGNpOVVePzyiUAeImKtrwk=
Subject key identifier: 00:CA:93:7A:1D:05:DD:74:96:92:65:1E:D2:76:77:16:32:7F:D1:E2
Certificate issuer: /CN=01d19921440c2f2b22a777780293bc27fa47f35a
Certificate serial: 019428234EA1A15330717AB25395CDD42647
Authority key identifier: 01:D1:99:21:44:0C:2F:2B:22:A7:77:78:02:93:BC:27:FA:47:F3:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AdGZIUQMLysip3d4ApO8J_pH81o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/cabd64-186b-4282-b14a-aa6fd434e0ef/1/AMqTeh0F3XSWkmUe0nZ3FjJ_0eI.roa
Signing time: Thu 02 Jan 2025 17:49:50 +0000
ROA not before: Thu 02 Jan 2025 17:49:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56888
IP address blocks: 91.228.180.0/24 maxlen: 24
91.228.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:4e:a1:a1:53:30:71:7a:b2:53:95:cd:d4:26:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01d19921440c2f2b22a777780293bc27fa47f35a
Validity
Not Before: Jan 2 17:49:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=00ca937a1d05dd749692651ed2767716327fd1e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5f:01:b8:f9:8f:3d:42:df:1d:5e:a7:c1:ee:
2a:51:d7:2a:ee:43:a2:74:2b:2d:76:72:15:b3:9e:
af:d0:fd:44:95:1e:16:57:55:39:01:1d:9c:eb:40:
99:55:b0:34:6d:bb:3b:b2:d3:f1:c1:f4:a0:87:15:
7b:d4:70:83:c8:7a:7c:41:bb:14:5d:5a:69:84:7e:
f2:33:9f:0e:d0:90:51:fe:3d:14:f2:59:e7:8e:4e:
dc:e0:ef:ef:c3:28:05:2d:dc:0c:63:3a:d2:96:32:
6e:a2:50:f8:3f:11:ff:28:6d:da:96:fc:d3:9f:b1:
f3:cd:29:fc:90:9d:c4:3e:f4:51:7a:08:ba:9e:01:
b1:6e:ad:8b:55:e3:77:b7:c0:22:66:85:0b:55:e1:
48:e9:55:8a:37:6a:e5:00:e9:31:e7:af:d3:df:28:
a8:9e:06:47:cc:46:9d:88:09:96:0c:bd:5a:aa:69:
20:2c:a3:4f:24:dd:77:e4:71:97:8d:35:6f:1e:91:
68:a0:e9:7c:31:c7:36:88:5e:d3:74:e0:e7:63:0d:
cd:f8:14:ab:0f:e0:c6:aa:7c:e6:a2:d1:a6:5d:73:
14:47:56:6a:9b:cf:07:cd:d6:aa:4a:43:31:eb:20:
00:c1:18:83:34:64:d2:86:02:41:c1:64:ce:b8:7d:
63:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:CA:93:7A:1D:05:DD:74:96:92:65:1E:D2:76:77:16:32:7F:D1:E2
X509v3 Authority Key Identifier:
keyid:01:D1:99:21:44:0C:2F:2B:22:A7:77:78:02:93:BC:27:FA:47:F3:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AdGZIUQMLysip3d4ApO8J_pH81o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/cabd64-186b-4282-b14a-aa6fd434e0ef/1/AMqTeh0F3XSWkmUe0nZ3FjJ_0eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/cabd64-186b-4282-b14a-aa6fd434e0ef/1/AdGZIUQMLysip3d4ApO8J_pH81o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.180.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:7a:9d:5b:e5:2d:ab:73:7b:2b:a4:e2:f7:80:e0:10:c7:78:
f0:d1:49:e5:c5:73:b5:19:76:f1:ca:33:fb:f8:5d:ce:87:d4:
2f:3e:f4:21:f7:a7:9c:b7:85:05:0c:94:c9:2b:45:3e:9c:5f:
17:6f:7a:47:fd:46:89:11:0f:87:77:ec:5e:73:96:1c:f5:af:
38:ed:09:f7:0f:25:6b:0f:4c:71:9f:ef:7f:ed:5a:d9:35:58:
a5:45:96:a0:fb:b6:cb:0b:4b:40:77:e8:35:3e:95:27:ea:fd:
ca:4a:3f:6b:a9:fd:e9:b1:30:93:99:a4:7a:a2:e5:35:38:30:
e5:47:ef:d6:1a:a3:3d:39:2b:b6:f1:dd:34:94:79:e3:10:b3:
5e:5b:1f:ae:84:5e:f5:eb:42:f4:4a:9f:3f:94:ae:f0:42:36:
31:53:85:db:f1:f8:15:82:ce:d9:8e:43:a3:70:28:f4:a6:35:
88:0c:22:bb:38:29:da:f4:9b:1c:42:c4:cc:c4:1c:77:08:d7:
45:a3:d0:62:19:93:e7:80:c6:6f:e4:f3:17:f9:a3:35:51:a9:
72:fa:78:5e:b2:9d:a6:de:0b:ad:f8:e6:81:07:04:56:35:51:
5a:1b:df:84:22:84:c5:9d:39:ac:ca:3e:19:e7:2e:5a:a3:d8:
b8:1b:ee:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoI06hoVMwcXqyU5XN1CZHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxZDE5OTIxNDQwYzJmMmIyMmE3Nzc3ODAyOTNiYzI3ZmE0
N2YzNWEwHhcNMjUwMTAyMTc0OTUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMGNhOTM3YTFkMDVkZDc0OTY5MjY1MWVkMjc2NzcxNjMyN2ZkMWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6V8BuPmPPULfHV6nwe4qUdcq7kOi
dCstdnIVs56v0P1ElR4WV1U5AR2c60CZVbA0bbs7stPxwfSghxV71HCDyHp8QbsU
XVpphH7yM58O0JBR/j0U8lnnjk7c4O/vwygFLdwMYzrSljJuolD4PxH/KG3alvzT
n7HzzSn8kJ3EPvRRegi6ngGxbq2LVeN3t8AiZoULVeFI6VWKN2rlAOkx56/T3yio
ngZHzEadiAmWDL1aqmkgLKNPJN135HGXjTVvHpFooOl8Mcc2iF7TdODnYw3N+BSr
D+DGqnzmotGmXXMUR1Zqm88HzdaqSkMx6yAAwRiDNGTShgJBwWTOuH1jDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFADKk3odBd10lpJlHtJ2dxYyf9HiMB8GA1UdIwQY
MBaAFAHRmSFEDC8rIqd3eAKTvCf6R/NaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWRHWklVUU1MeXNpcDNkNEFwTzhKX3BIODFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9jYWJkNjQtMTg2Yi00MjgyLWIxNGEt
YWE2ZmQ0MzRlMGVmLzEvQU1xVGVoMEYzWFNXa21VZTBuWjNGakpfMGVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9jYWJkNjQtMTg2Yi00MjgyLWIxNGEtYWE2ZmQ0MzRlMGVm
LzEvQWRHWklVUU1MeXNpcDNkNEFwTzhKX3BIODFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+S0MA0G
CSqGSIb3DQEBCwUAA4IBAQAKep1b5S2rc3srpOL3gOAQx3jw0UnlxXO1GXbxyjP7
+F3Oh9QvPvQh96ect4UFDJTJK0U+nF8Xb3pH/UaJEQ+Hd+xec5Yc9a847Qn3DyVr
D0xxn+9/7VrZNVilRZag+7bLC0tAd+g1PpUn6v3KSj9rqf3psTCTmaR6ouU1ODDl
R+/WGqM9OSu28d00lHnjELNeWx+uhF7160L0Sp8/lK7wQjYxU4Xb8fgVgs7ZjkOj
cCj0pjWIDCK7OCna9JscQsTMxBx3CNdFo9BiGZPngMZv5PMX+aM1Ualy+nhesp2m
3gut+OaBBwRWNVFaG9+EIoTFnTmsyj4Z5y5ao9i4G+6W
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:24 2025 by rpki-client on console.sobornost.net