Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/33635f-dbf6-4c7b-b121-8bc862da75dc/1/OFKH6RWYni8g7dCErAvCVIfM35A.roa
File: OFKH6RWYni8g7dCErAvCVIfM35A.roa (raw, json)
Hash identifier: JShFAKBMuaSDsVuDz+6PF2EsnypF1Aa7wfPAYEYwHU8=
Subject key identifier: 38:52:87:E9:15:98:9E:2F:20:ED:D0:84:AC:0B:C2:54:87:CC:DF:90
Certificate issuer: /CN=50ec74e7051a4509e0c52583a09298dae989d8c5
Certificate serial: 019424B3EAE093361D03E390A9E9909A17A3
Authority key identifier: 50:EC:74:E7:05:1A:45:09:E0:C5:25:83:A0:92:98:DA:E9:89:D8:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOx05wUaRQngxSWDoJKY2umJ2MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/33635f-dbf6-4c7b-b121-8bc862da75dc/1/OFKH6RWYni8g7dCErAvCVIfM35A.roa
Signing time: Thu 02 Jan 2025 01:49:17 +0000
ROA not before: Thu 02 Jan 2025 01:49:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43328
IP address blocks: 91.201.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ea:e0:93:36:1d:03:e3:90:a9:e9:90:9a:17:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ec74e7051a4509e0c52583a09298dae989d8c5
Validity
Not Before: Jan 2 01:49:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=385287e915989e2f20edd084ac0bc25487ccdf90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:91:a7:ed:be:fb:5f:71:8a:3e:4b:fb:5a:57:
8d:51:e5:ef:41:ab:59:b5:2d:f1:7f:40:65:d1:ca:
bc:ed:4e:5c:a0:73:83:20:24:c2:b1:0d:8e:1f:a9:
87:d1:09:d7:3f:4f:6b:97:8b:09:12:96:70:9c:17:
94:00:bf:42:c9:a6:f5:6c:f2:af:b2:74:e6:d2:10:
8f:ae:20:c0:fb:d0:9f:f1:ad:ec:f8:85:ff:ae:28:
dd:87:3e:f0:5e:93:2f:90:83:5b:ac:76:09:83:0f:
47:7e:b9:73:72:8d:be:bf:e0:5c:8d:cd:ef:6c:f1:
c9:22:54:fb:1c:32:f3:df:07:61:a2:ba:c4:51:64:
25:88:d9:45:ab:34:33:cf:d4:7a:a7:6d:85:85:30:
06:c9:35:c9:cc:d8:d0:7c:86:1d:51:b6:86:23:aa:
fe:c8:fe:2d:d9:8b:74:71:ee:70:0b:31:a1:2c:16:
1a:fa:d9:91:d0:54:85:56:76:da:e2:61:88:14:c2:
9b:ce:a8:44:38:cf:bb:68:7e:9a:44:48:91:69:bc:
09:28:85:51:95:0e:3c:5c:f8:79:ad:4b:90:cf:4a:
bd:e1:96:d4:1c:06:37:96:d2:b1:57:c1:39:55:dd:
31:05:32:5e:96:4b:81:b4:37:98:92:d6:ce:87:3d:
8a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:52:87:E9:15:98:9E:2F:20:ED:D0:84:AC:0B:C2:54:87:CC:DF:90
X509v3 Authority Key Identifier:
keyid:50:EC:74:E7:05:1A:45:09:E0:C5:25:83:A0:92:98:DA:E9:89:D8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOx05wUaRQngxSWDoJKY2umJ2MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/33635f-dbf6-4c7b-b121-8bc862da75dc/1/OFKH6RWYni8g7dCErAvCVIfM35A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/33635f-dbf6-4c7b-b121-8bc862da75dc/1/UOx05wUaRQngxSWDoJKY2umJ2MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.236.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:e6:55:fd:db:51:75:c8:00:7a:60:41:5f:f7:0e:5e:64:ae:
27:a9:e4:05:be:3c:02:d7:e0:cd:ff:7a:1b:54:bb:ce:ad:2b:
ef:9c:06:9a:50:7e:99:60:06:ca:ee:72:fe:f8:fc:64:af:5b:
00:56:05:05:2e:35:72:b1:e8:d9:91:17:95:42:5e:dc:41:fa:
59:ec:cf:50:d9:02:75:b5:55:29:46:8b:f4:8f:36:79:d7:4b:
fd:49:e3:18:24:4a:70:e0:ff:46:d9:77:b7:a5:51:54:39:85:
5e:04:6a:a9:1b:a9:bc:d9:4a:ee:3a:04:9e:02:aa:31:a9:39:
65:f6:1c:50:46:30:80:1f:b7:e8:38:9a:b5:80:a8:37:33:80:
f9:25:1a:22:67:1d:f6:80:3a:14:df:b7:50:f9:52:30:23:6f:
08:5e:b4:3b:d7:ef:b0:2c:22:3b:d4:b5:75:a1:44:94:ac:1a:
b2:e6:cc:37:c7:a0:23:80:df:0c:33:bd:43:2a:32:e5:32:26:
86:05:23:1c:72:b8:27:9a:3c:87:d6:94:9a:31:c8:0b:da:47:
20:2d:85:82:35:7f:cc:fe:d1:0e:37:b6:39:d6:4b:9a:bf:2a:
f5:dd:44:40:8b:42:cc:61:2a:49:dc:85:37:dc:02:20:a9:13:
77:79:21:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQks+rgkzYdA+OQqemQmhejMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZWM3NGU3MDUxYTQ1MDllMGM1MjU4M2EwOTI5OGRhZTk4
OWQ4YzUwHhcNMjUwMTAyMDE0OTE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzODUyODdlOTE1OTg5ZTJmMjBlZGQwODRhYzBiYzI1NDg3Y2NkZjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm5Gn7b77X3GKPkv7WleNUeXvQatZ
tS3xf0Bl0cq87U5coHODICTCsQ2OH6mH0QnXP09rl4sJEpZwnBeUAL9Cyab1bPKv
snTm0hCPriDA+9Cf8a3s+IX/rijdhz7wXpMvkINbrHYJgw9Hfrlzco2+v+Bcjc3v
bPHJIlT7HDLz3wdhorrEUWQliNlFqzQzz9R6p22FhTAGyTXJzNjQfIYdUbaGI6r+
yP4t2Yt0ce5wCzGhLBYa+tmR0FSFVnba4mGIFMKbzqhEOM+7aH6aREiRabwJKIVR
lQ48XPh5rUuQz0q94ZbUHAY3ltKxV8E5Vd0xBTJelkuBtDeYktbOhz2K/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDhSh+kVmJ4vIO3QhKwLwlSHzN+QMB8GA1UdIwQY
MBaAFFDsdOcFGkUJ4MUlg6CSmNrpidjFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU94MDV3VWFSUW5neFNXRG9KS1kydW1KMk1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8zMzYzNWYtZGJmNi00YzdiLWIxMjEt
OGJjODYyZGE3NWRjLzEvT0ZLSDZSV1luaThnN2RDRXJBdkNWSWZNMzVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi8zMzYzNWYtZGJmNi00YzdiLWIxMjEtOGJjODYyZGE3NWRj
LzEvVU94MDV3VWFSUW5neFNXRG9KS1kydW1KMk1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8nsMA0G
CSqGSIb3DQEBCwUAA4IBAQAv5lX921F1yAB6YEFf9w5eZK4nqeQFvjwC1+DN/3ob
VLvOrSvvnAaaUH6ZYAbK7nL++Pxkr1sAVgUFLjVysejZkReVQl7cQfpZ7M9Q2QJ1
tVUpRov0jzZ510v9SeMYJEpw4P9G2Xe3pVFUOYVeBGqpG6m82UruOgSeAqoxqTll
9hxQRjCAH7foOJq1gKg3M4D5JRoiZx32gDoU37dQ+VIwI28IXrQ71++wLCI71LV1
oUSUrBqy5sw3x6AjgN8MM71DKjLlMiaGBSMccrgnmjyH1pSaMcgL2kcgLYWCNX/M
/tEON7Y51kuavyr13URAi0LMYSpJ3IU33AIgqRN3eSFB
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:15:56 2025 by rpki-client on console.sobornost.net