Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/5yZD9nx7jUpSuAq31368eyNO-eU.roa
File: 5yZD9nx7jUpSuAq31368eyNO-eU.roa (raw, json)
Hash identifier: OflVXK4ZWm69PjGxTZASUSnsF3H4WxYH8J2/3kWidx4=
Subject key identifier: E7:26:43:F6:7C:7B:8D:4A:52:B8:0A:B7:D7:7E:BC:7B:23:4E:F9:E5
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 019427B583396F53BF72E1EE5A0B2BEC9096
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/5yZD9nx7jUpSuAq31368eyNO-eU.roa
Signing time: Thu 02 Jan 2025 15:49:54 +0000
ROA not before: Thu 02 Jan 2025 15:49:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47216
IP address blocks: 91.186.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:83:39:6f:53:bf:72:e1:ee:5a:0b:2b:ec:90:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 2 15:49:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e72643f67c7b8d4a52b80ab7d77ebc7b234ef9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e9:f7:fa:b5:cc:00:bb:fb:6b:94:15:34:80:
04:aa:36:fe:0a:d9:7f:b8:3d:71:24:93:97:4e:5b:
18:d5:c6:f7:88:1e:99:b1:43:2c:94:e9:38:5f:ee:
73:dc:98:2e:42:c6:04:4b:f3:d8:95:73:15:7b:6e:
97:49:0b:7f:2f:49:d4:be:1f:a7:15:51:97:06:c9:
73:8e:c8:7d:74:0e:12:fa:6c:24:54:51:ed:8c:cb:
33:60:40:77:36:a8:66:e3:5a:9f:45:04:bf:9e:e5:
67:67:55:64:cb:22:8e:26:34:d8:3d:f0:79:a4:5d:
36:62:d4:22:c1:3e:8e:49:4c:85:ab:a3:34:be:57:
5a:4b:17:a4:21:4f:dc:92:7a:c2:ff:4a:35:a2:65:
34:08:49:f5:66:6c:0d:05:b6:02:54:45:27:69:4e:
b2:39:50:80:66:86:b5:c7:ec:df:e4:fb:9f:25:38:
69:ec:fe:24:9a:f5:d4:30:85:97:7a:c7:fa:6e:b2:
4a:29:57:3d:07:a5:9d:22:52:fb:47:24:51:27:03:
c7:a2:06:16:60:49:b5:60:91:d9:97:08:12:f6:ce:
57:79:e6:e6:fa:d6:71:db:35:ff:80:a0:de:97:61:
0b:dc:18:c2:98:fb:ad:c1:49:f1:62:95:fb:19:c4:
41:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:26:43:F6:7C:7B:8D:4A:52:B8:0A:B7:D7:7E:BC:7B:23:4E:F9:E5
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/5yZD9nx7jUpSuAq31368eyNO-eU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.193.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:63:f0:02:a6:5d:ce:cb:02:18:80:e6:0e:20:91:33:d5:82:
76:ac:72:69:72:e5:00:aa:cc:33:e5:a2:6a:e1:9f:98:63:fd:
2c:d6:a1:c1:06:fa:d9:bb:55:dd:1e:12:d4:ca:04:cc:a1:e6:
3a:3c:05:7f:f6:d1:b4:ba:a7:5d:d8:fc:05:fe:2b:6f:50:6b:
1f:02:9c:69:b4:42:ac:08:ae:6a:16:bc:53:5a:47:86:03:49:
72:be:6c:35:5b:37:40:51:e5:69:5a:7b:6d:b0:a1:a3:72:82:
e0:91:61:8b:35:22:72:44:7f:9a:99:bf:3f:2c:3c:a4:fd:e4:
ef:41:e9:31:cd:a7:93:26:e7:13:a8:6d:af:7f:13:ff:e3:d5:
66:47:f4:81:4e:d7:a6:3d:45:da:33:39:83:a6:bb:4a:29:10:
69:f6:20:39:6d:39:93:05:73:23:03:c1:52:63:cf:b7:4c:19:
e1:51:5a:ea:4d:54:7d:f1:7a:33:1d:2d:30:f4:ff:ad:a8:ef:
e3:c2:ea:1c:00:61:6e:93:80:1f:9f:41:50:28:44:22:bf:06:
0c:0d:34:6d:3e:03:7e:1c:89:fe:2b:53:4c:10:1b:41:dd:70:
3f:36:6b:c9:1e:a3:b2:89:6d:2a:b8:a9:96:02:f2:7f:b7:bc:
60:c5:02:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQntYM5b1O/cuHuWgsr7JCWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjUwMTAyMTU0OTU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzI2NDNmNjdjN2I4ZDRhNTJiODBhYjdkNzdlYmM3YjIzNGVmOWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqun3+rXMALv7a5QVNIAEqjb+Ctl/
uD1xJJOXTlsY1cb3iB6ZsUMslOk4X+5z3JguQsYES/PYlXMVe26XSQt/L0nUvh+n
FVGXBslzjsh9dA4S+mwkVFHtjMszYEB3Nqhm41qfRQS/nuVnZ1VkyyKOJjTYPfB5
pF02YtQiwT6OSUyFq6M0vldaSxekIU/cknrC/0o1omU0CEn1ZmwNBbYCVEUnaU6y
OVCAZoa1x+zf5PufJThp7P4kmvXUMIWXesf6brJKKVc9B6WdIlL7RyRRJwPHogYW
YEm1YJHZlwgS9s5Xeebm+tZx2zX/gKDel2EL3BjCmPutwUnxYpX7GcRBYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOcmQ/Z8e41KUrgKt9d+vHsjTvnlMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvNXlaRDlueDdqVXBTdUFxMzEzNjhleU5PLWVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW7rBMA0G
CSqGSIb3DQEBCwUAA4IBAQA7Y/ACpl3OywIYgOYOIJEz1YJ2rHJpcuUAqswz5aJq
4Z+YY/0s1qHBBvrZu1XdHhLUygTMoeY6PAV/9tG0uqdd2PwF/itvUGsfApxptEKs
CK5qFrxTWkeGA0lyvmw1WzdAUeVpWnttsKGjcoLgkWGLNSJyRH+amb8/LDyk/eTv
QekxzaeTJucTqG2vfxP/49VmR/SBTtemPUXaMzmDprtKKRBp9iA5bTmTBXMjA8FS
Y8+3TBnhUVrqTVR98XozHS0w9P+tqO/jwuocAGFuk4Afn0FQKEQivwYMDTRtPgN+
HIn+K1NMEBtB3XA/NmvJHqOyiW0quKmWAvJ/t7xgxQL5
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:12 2025 by rpki-client on console.sobornost.net