Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e85180-1910-4c42-a1f5-73202f0e1d03/1/8WExy4twgMjUhhd6ZwwuMmQy8hc.roa
File: 8WExy4twgMjUhhd6ZwwuMmQy8hc.roa (raw, json)
Hash identifier: DEuWlnE+ezZMUM7awLwZ5+QzOvWVXlr73rgH56B1SXs=
Subject key identifier: F1:61:31:CB:8B:70:80:C8:D4:86:17:7A:67:0C:2E:32:64:32:F2:17
Certificate issuer: /CN=d62329d8d7e541953e120fd05f66cc6ebab0684d
Certificate serial: 019420D5C832DC53A19F15B22AB183506DB2
Authority key identifier: D6:23:29:D8:D7:E5:41:95:3E:12:0F:D0:5F:66:CC:6E:BA:B0:68:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1iMp2NflQZU-Eg_QX2bMbrqwaE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e85180-1910-4c42-a1f5-73202f0e1d03/1/8WExy4twgMjUhhd6ZwwuMmQy8hc.roa
Signing time: Wed 01 Jan 2025 07:47:48 +0000
ROA not before: Wed 01 Jan 2025 07:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44694
IP address blocks: 81.24.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:c8:32:dc:53:a1:9f:15:b2:2a:b1:83:50:6d:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d62329d8d7e541953e120fd05f66cc6ebab0684d
Validity
Not Before: Jan 1 07:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f16131cb8b7080c8d486177a670c2e326432f217
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:49:8a:cf:c2:7b:4d:e0:1e:80:86:55:47:
5a:7a:cc:16:3f:9c:11:ee:43:fc:07:80:fd:bb:87:
c6:28:dc:2c:36:ec:62:5d:c4:64:b7:60:55:63:e5:
ca:70:4e:c2:60:c7:a9:64:b2:18:97:dc:52:14:9e:
1a:a8:0c:dd:08:2a:44:ed:67:00:9f:f4:fc:e3:06:
24:67:37:ab:6b:2e:13:81:cc:84:1e:e8:4a:cc:93:
94:85:a6:b3:27:ef:34:76:95:fd:ca:61:59:23:4a:
7f:73:ff:20:cd:eb:d0:bd:fc:25:49:c1:7b:a6:a5:
e0:a5:69:3e:fc:8c:fb:69:54:69:ba:cd:eb:51:6b:
6b:34:b9:57:32:d5:58:fc:bc:ac:01:d0:cd:0d:67:
a7:89:70:d9:51:36:fd:60:d1:d2:54:84:a9:1f:ca:
06:7d:eb:27:27:01:94:c0:fd:db:fb:62:6f:c5:99:
6a:21:7f:cd:dd:9d:92:87:2f:cf:fb:cc:b4:1c:6e:
3b:18:42:db:8c:55:29:0d:a1:a7:ea:d2:e1:e6:c3:
be:72:4b:81:5d:56:0a:6d:be:a8:96:f3:99:be:47:
3c:63:c6:f3:89:1b:71:d5:a4:d8:89:7a:e9:5b:35:
52:12:70:9b:40:66:ec:1f:d1:b7:c9:8e:de:90:4c:
e5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:61:31:CB:8B:70:80:C8:D4:86:17:7A:67:0C:2E:32:64:32:F2:17
X509v3 Authority Key Identifier:
keyid:D6:23:29:D8:D7:E5:41:95:3E:12:0F:D0:5F:66:CC:6E:BA:B0:68:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1iMp2NflQZU-Eg_QX2bMbrqwaE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e85180-1910-4c42-a1f5-73202f0e1d03/1/8WExy4twgMjUhhd6ZwwuMmQy8hc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e85180-1910-4c42-a1f5-73202f0e1d03/1/1iMp2NflQZU-Eg_QX2bMbrqwaE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.24.12.0/22
Signature Algorithm: sha256WithRSAEncryption
08:43:f6:41:33:e0:ec:27:97:4f:de:fd:ff:1f:e3:5b:32:7b:
d6:9b:a3:5f:42:04:56:e4:52:7c:26:88:a2:c0:47:bd:c0:7c:
6d:fe:47:c1:c2:5e:e2:68:73:d0:b8:21:c1:b0:9f:5d:7f:89:
18:e7:42:33:8a:0b:cc:ea:49:cb:69:08:7d:fd:be:d4:2e:b4:
cd:40:71:6d:4b:54:04:22:fa:af:f1:d1:96:38:90:27:4b:93:
5c:0a:3b:2a:27:10:0e:94:8a:57:7b:d7:76:fa:c1:d3:81:15:
73:37:1c:f8:41:df:a6:3d:26:a4:ec:d7:15:3c:02:1a:79:5e:
d9:5c:de:85:dc:bd:0e:9c:d5:9a:bb:67:93:59:94:aa:57:89:
53:79:41:d2:b9:22:3c:8f:02:6e:e5:03:a6:7d:af:f2:88:66:
bf:03:10:42:48:3a:dc:92:e9:ab:f1:b3:a2:36:4b:15:0d:37:
e4:9f:af:9e:36:63:c6:37:be:ce:b7:52:83:c4:bb:72:86:77:
4a:11:e0:c2:48:2c:0e:3d:2e:fb:6e:05:fe:43:7d:37:6c:db:
cc:93:f5:30:da:62:3e:a2:25:4c:9c:08:73:20:b2:df:92:13:
99:6a:9d:06:bf:6e:7d:f4:86:c5:28:00:78:25:6d:a5:69:81:
15:1a:86:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1cgy3FOhnxWyKrGDUG2yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MjMyOWQ4ZDdlNTQxOTUzZTEyMGZkMDVmNjZjYzZlYmFi
MDY4NGQwHhcNMjUwMTAxMDc0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTYxMzFjYjhiNzA4MGM4ZDQ4NjE3N2E2NzBjMmUzMjY0MzJmMjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1tJis/Ce03gHoCGVUdaeswWP5wR
7kP8B4D9u4fGKNwsNuxiXcRkt2BVY+XKcE7CYMepZLIYl9xSFJ4aqAzdCCpE7WcA
n/T84wYkZzeray4TgcyEHuhKzJOUhaazJ+80dpX9ymFZI0p/c/8gzevQvfwlScF7
pqXgpWk+/Iz7aVRpus3rUWtrNLlXMtVY/LysAdDNDWeniXDZUTb9YNHSVISpH8oG
fesnJwGUwP3b+2JvxZlqIX/N3Z2Shy/P+8y0HG47GELbjFUpDaGn6tLh5sO+ckuB
XVYKbb6olvOZvkc8Y8bziRtx1aTYiXrpWzVSEnCbQGbsH9G3yY7ekEzlWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPFhMcuLcIDI1IYXemcMLjJkMvIXMB8GA1UdIwQY
MBaAFNYjKdjX5UGVPhIP0F9mzG66sGhNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWlNcDJOZmxRWlUtRWdfUVgyYk1icnF3YUUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9lODUxODAtMTkxMC00YzQyLWExZjUt
NzMyMDJmMGUxZDAzLzEvOFdFeHk0dHdnTWpVaGhkNlp3d3VNbVF5OGhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9lODUxODAtMTkxMC00YzQyLWExZjUtNzMyMDJmMGUxZDAz
LzEvMWlNcDJOZmxRWlUtRWdfUVgyYk1icnF3YUUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCURgMMA0G
CSqGSIb3DQEBCwUAA4IBAQAIQ/ZBM+DsJ5dP3v3/H+NbMnvWm6NfQgRW5FJ8Joii
wEe9wHxt/kfBwl7iaHPQuCHBsJ9df4kY50IzigvM6knLaQh9/b7ULrTNQHFtS1QE
Ivqv8dGWOJAnS5NcCjsqJxAOlIpXe9d2+sHTgRVzNxz4Qd+mPSak7NcVPAIaeV7Z
XN6F3L0OnNWau2eTWZSqV4lTeUHSuSI8jwJu5QOmfa/yiGa/AxBCSDrckumr8bOi
NksVDTfkn6+eNmPGN77Ot1KDxLtyhndKEeDCSCwOPS77bgX+Q303bNvMk/Uw2mI+
oiVMnAhzILLfkhOZap0Gv2599IbFKAB4JW2laYEVGoZQ
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:29 2025 by rpki-client on console.sobornost.net