Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/DNtnbvJyFX3vGs4Q6JEG_ZsHFQg.roa
File: DNtnbvJyFX3vGs4Q6JEG_ZsHFQg.roa (raw, json)
Hash identifier: K+AhFAZDpy/NkiLJfIEeAFYckiqA8OuE/Pb388Cb1M4=
Subject key identifier: 0C:DB:67:6E:F2:72:15:7D:EF:1A:CE:10:E8:91:06:FD:9B:07:15:08
Certificate issuer: /CN=996721831afb8b38307b49f5b9ee6292ad1e5850
Certificate serial: 01945ED2F61E10FE0E82B4C462BFFC7425B9
Authority key identifier: 99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/DNtnbvJyFX3vGs4Q6JEG_ZsHFQg.roa
Signing time: Mon 13 Jan 2025 08:41:11 +0000
ROA not before: Mon 13 Jan 2025 08:41:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41291
IP address blocks: 93.190.208.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5e:d2:f6:1e:10:fe:0e:82:b4:c4:62:bf:fc:74:25:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996721831afb8b38307b49f5b9ee6292ad1e5850
Validity
Not Before: Jan 13 08:41:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0cdb676ef272157def1ace10e89106fd9b071508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d7:ff:ed:88:f7:3a:6c:d2:1a:9b:85:c2:0e:
18:8f:d8:b3:05:77:1e:50:92:6d:de:e3:f0:30:6e:
15:95:3e:00:f8:f8:a1:79:07:42:6c:59:5c:b0:b2:
ee:98:ee:d2:43:ab:cd:bf:c2:ff:13:9d:6c:7d:3c:
fa:7a:0e:eb:ac:38:1a:b0:d0:4e:98:50:b9:44:13:
51:31:8d:d7:c4:5d:d3:b2:64:49:dd:67:87:4c:00:
5c:d6:c8:ea:18:3f:dd:37:42:ab:49:26:cb:78:ca:
ed:14:8b:e0:af:85:6b:3a:1e:92:f4:4b:de:cf:36:
e7:80:30:57:30:57:bf:a1:d7:2a:75:6c:e6:a7:54:
c9:cf:dd:c4:a1:cb:81:b9:1c:c1:61:28:67:4e:d3:
e9:0d:ca:b2:f2:a3:68:ac:44:6c:73:40:69:04:5d:
37:e8:43:c8:24:f8:3d:1a:6f:c9:25:3a:b4:84:bf:
b8:53:01:89:29:ce:16:65:e9:40:7e:04:ae:f7:8b:
e3:29:90:3d:cb:ba:1b:fd:49:9b:20:87:bb:85:3f:
7f:1c:62:33:49:ee:2d:30:c4:66:c0:3d:d6:98:31:
aa:a6:89:8b:82:a6:be:3e:6f:2b:cc:08:8b:41:f3:
4b:e2:93:35:e9:35:3c:e0:42:d2:85:9b:1f:00:6a:
c5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DB:67:6E:F2:72:15:7D:EF:1A:CE:10:E8:91:06:FD:9B:07:15:08
X509v3 Authority Key Identifier:
keyid:99:67:21:83:1A:FB:8B:38:30:7B:49:F5:B9:EE:62:92:AD:1E:58:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mWchgxr7izgwe0n1ue5ikq0eWFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/DNtnbvJyFX3vGs4Q6JEG_ZsHFQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/1c1eb2-1f65-4f71-8b32-b4bfe456dde0/1/mWchgxr7izgwe0n1ue5ikq0eWFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.190.208.0/21
Signature Algorithm: sha256WithRSAEncryption
17:42:80:cf:2f:a8:ce:38:df:ea:1d:70:ce:9d:36:71:dc:a7:
7d:53:e9:86:21:22:4a:78:bc:8c:67:4d:68:1f:8a:60:9f:87:
8e:e3:46:6a:ea:49:1c:62:ce:ab:e1:2d:e5:41:7a:1b:02:f5:
36:df:b7:cc:2b:24:2b:50:11:f8:7e:6a:bb:77:a1:32:47:76:
84:79:41:31:08:4f:6e:19:5c:5a:5a:ae:83:05:84:dd:a4:b6:
d9:63:6e:45:bd:b8:dc:86:8f:ac:0a:bf:53:73:4f:94:6c:c8:
36:f4:e1:22:cc:b8:af:de:b4:31:8e:48:8a:75:a6:4f:34:36:
13:c5:7e:bc:57:4b:ea:20:f0:5b:90:64:37:60:aa:39:bd:f6:
27:0b:b3:19:97:c3:d6:34:a1:d6:6d:ed:72:28:98:c2:34:c4:
d9:1d:8b:29:fc:f5:ec:1b:08:e8:48:04:d2:a4:ea:e7:2c:a9:
9c:cf:ee:92:a5:05:69:2c:48:51:90:28:ea:9c:9a:65:e1:ad:
ae:90:e1:41:da:01:98:dc:de:15:16:a1:80:81:1c:a1:86:72:
10:cc:32:b0:95:01:33:21:de:23:d0:e3:be:6c:b1:24:26:1f:
d0:7d:bb:7f:6c:6f:0f:87:7e:3b:b8:42:b3:8a:e5:75:4c:94:
41:54:23:66
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZRe0vYeEP4OgrTEYr/8dCW5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5NjcyMTgzMWFmYjhiMzgzMDdiNDlmNWI5ZWU2MjkyYWQx
ZTU4NTAwHhcNMjUwMTEzMDg0MTExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwY2RiNjc2ZWYyNzIxNTdkZWYxYWNlMTBlODkxMDZmZDliMDcxNTA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNf/7Yj3OmzSGpuFwg4Yj9izBXce
UJJt3uPwMG4VlT4A+PiheQdCbFlcsLLumO7SQ6vNv8L/E51sfTz6eg7rrDgasNBO
mFC5RBNRMY3XxF3TsmRJ3WeHTABc1sjqGD/dN0KrSSbLeMrtFIvgr4VrOh6S9Eve
zzbngDBXMFe/odcqdWzmp1TJz93EocuBuRzBYShnTtPpDcqy8qNorERsc0BpBF03
6EPIJPg9Gm/JJTq0hL+4UwGJKc4WZelAfgSu94vjKZA9y7ob/UmbIIe7hT9/HGIz
Se4tMMRmwD3WmDGqpomLgqa+Pm8rzAiLQfNL4pM16TU84ELShZsfAGrFjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAzbZ27ychV97xrOEOiRBv2bBxUIMB8GA1UdIwQY
MBaAFJlnIYMa+4s4MHtJ9bnuYpKtHlhQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVdjaGd4cjdpemd3ZTBuMXVlNWlrcTBlV0ZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8xYzFlYjItMWY2NS00ZjcxLThiMzIt
YjRiZmU0NTZkZGUwLzEvRE50bmJ2SnlGWDN2R3M0UTZKRUdfWnNIRlFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS8xYzFlYjItMWY2NS00ZjcxLThiMzItYjRiZmU0NTZkZGUw
LzEvbVdjaGd4cjdpemd3ZTBuMXVlNWlrcTBlV0ZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXb7QMA0G
CSqGSIb3DQEBCwUAA4IBAQAXQoDPL6jOON/qHXDOnTZx3Kd9U+mGISJKeLyMZ01o
H4pgn4eO40Zq6kkcYs6r4S3lQXobAvU237fMKyQrUBH4fmq7d6EyR3aEeUExCE9u
GVxaWq6DBYTdpLbZY25Fvbjcho+sCr9Tc0+UbMg29OEizLiv3rQxjkiKdaZPNDYT
xX68V0vqIPBbkGQ3YKo5vfYnC7MZl8PWNKHWbe1yKJjCNMTZHYsp/PXsGwjoSATS
pOrnLKmcz+6SpQVpLEhRkCjqnJpl4a2ukOFB2gGY3N4VFqGAgRyhhnIQzDKwlQEz
Id4j0OO+bLEkJh/Qfbt/bG8Ph347uEKziuV1TJRBVCNm
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:41 2025 by rpki-client on console.sobornost.net