Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/SzmhUfWJuFhyT5TGLouRAgBLoIM.roa
File: SzmhUfWJuFhyT5TGLouRAgBLoIM.roa (raw, json)
Hash identifier: Qov0MeRXvHn6kZBTJQaoc48+Yw0xT2B5xVOV+b6Nifs=
Subject key identifier: 4B:39:A1:51:F5:89:B8:58:72:4F:94:C6:2E:8B:91:02:00:4B:A0:83
Certificate issuer: /CN=5da38f7c3ecad29ec50644b70068b92a1be47074
Certificate serial: 019427B38849023971E51F78BDEB5099F763
Authority key identifier: 5D:A3:8F:7C:3E:CA:D2:9E:C5:06:44:B7:00:68:B9:2A:1B:E4:70:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/SzmhUfWJuFhyT5TGLouRAgBLoIM.roa
Signing time: Thu 02 Jan 2025 15:47:44 +0000
ROA not before: Thu 02 Jan 2025 15:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215026
IP address blocks: 91.227.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:88:49:02:39:71:e5:1f:78:bd:eb:50:99:f7:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da38f7c3ecad29ec50644b70068b92a1be47074
Validity
Not Before: Jan 2 15:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4b39a151f589b858724f94c62e8b9102004ba083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:01:b3:28:83:da:ab:54:ec:e5:07:a8:d1:5d:
e9:25:25:3f:67:9f:fa:29:80:31:e0:cf:32:1f:98:
c5:bf:ac:84:ec:92:86:45:cc:60:bb:26:8b:ae:32:
18:3e:61:3f:2d:bf:7b:1f:5b:55:e0:4c:6d:75:9c:
b4:c6:70:09:ad:d5:1f:59:ee:81:a7:aa:f5:fb:ff:
ff:9f:ca:b0:25:81:a0:59:82:bf:b3:2b:02:91:24:
6a:af:e4:78:e2:5a:04:8d:cf:76:5a:9d:e4:68:d7:
6e:71:0e:9b:d0:86:06:26:c4:e6:a9:eb:aa:c1:a0:
93:72:61:42:08:e0:d1:1a:0e:8e:71:50:de:d5:70:
ae:6b:23:4f:4e:fc:22:5d:b6:78:5a:90:e7:29:b4:
ca:4e:6f:0b:78:ae:e1:50:a6:5a:36:3b:36:16:29:
cb:f5:c0:b5:e6:d2:c0:66:02:3d:8b:cc:ba:08:bb:
0e:a0:e3:64:82:7b:aa:e0:2e:8d:fe:25:d2:e2:5d:
04:2c:43:99:bf:23:2f:bc:1b:5c:87:fc:3c:86:1f:
3b:2d:41:c9:9f:69:76:f8:b9:10:52:6c:06:35:e5:
3a:0e:fe:23:10:44:b1:ad:59:41:b2:d3:68:f1:1e:
b6:1e:fd:13:7f:63:a2:88:dd:57:64:48:1f:72:cb:
8a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:39:A1:51:F5:89:B8:58:72:4F:94:C6:2E:8B:91:02:00:4B:A0:83
X509v3 Authority Key Identifier:
keyid:5D:A3:8F:7C:3E:CA:D2:9E:C5:06:44:B7:00:68:B9:2A:1B:E4:70:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/SzmhUfWJuFhyT5TGLouRAgBLoIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/bba8e7-b9d2-4d9b-88b9-9408f1bc0d12/1/XaOPfD7K0p7FBkS3AGi5KhvkcHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.114.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:25:bd:da:47:3f:14:cd:9e:17:fc:a2:01:80:a3:8d:dd:8b:
5a:5f:a4:c8:bd:c2:43:21:d5:30:08:df:0d:47:50:05:dc:53:
06:be:9d:84:01:8d:25:c4:27:3c:39:ac:51:1a:ba:66:5d:10:
e8:1c:e5:6a:cb:ee:fb:a5:a6:76:36:97:21:5e:c6:45:cc:14:
14:8f:a7:e7:94:54:b8:48:c7:be:6d:82:47:7d:f6:f7:7d:7d:
8f:19:d6:85:24:44:0c:74:b2:a0:07:25:3a:4c:eb:8c:95:bb:
f2:1d:d0:a0:59:30:a5:ca:9b:03:81:54:a7:6d:fe:68:5d:0b:
6e:a1:15:34:6a:20:52:d6:04:ca:e1:f1:75:1b:4c:97:c8:bb:
15:7f:31:a4:6e:bf:6a:58:c6:95:4b:16:39:16:e0:4b:92:91:
28:8f:38:8c:d5:d5:64:7e:1d:fa:8c:ae:95:4e:f7:ec:59:e3:
2d:0f:f7:b0:1e:71:ec:ac:cc:86:3c:4d:a7:69:41:e3:57:52:
f3:47:df:c9:ff:f3:8d:9b:e2:68:83:d9:15:cf:cd:c1:c4:27:
4c:96:06:fd:d9:ff:5e:c3:38:12:40:03:55:59:6d:56:49:f0:
17:97:25:01:a3:f6:fe:9c:f2:78:31:9f:8d:32:a8:2c:81:f8:
5a:06:51:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQns4hJAjlx5R94vetQmfdjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYTM4ZjdjM2VjYWQyOWVjNTA2NDRiNzAwNjhiOTJhMWJl
NDcwNzQwHhcNMjUwMTAyMTU0NzQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjM5YTE1MWY1ODliODU4NzI0Zjk0YzYyZThiOTEwMjAwNGJhMDgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgGzKIPaq1Ts5Qeo0V3pJSU/Z5/6
KYAx4M8yH5jFv6yE7JKGRcxguyaLrjIYPmE/Lb97H1tV4ExtdZy0xnAJrdUfWe6B
p6r1+///n8qwJYGgWYK/sysCkSRqr+R44loEjc92Wp3kaNducQ6b0IYGJsTmqeuq
waCTcmFCCODRGg6OcVDe1XCuayNPTvwiXbZ4WpDnKbTKTm8LeK7hUKZaNjs2FinL
9cC15tLAZgI9i8y6CLsOoONkgnuq4C6N/iXS4l0ELEOZvyMvvBtch/w8hh87LUHJ
n2l2+LkQUmwGNeU6Dv4jEESxrVlBstNo8R62Hv0Tf2OiiN1XZEgfcsuKNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEs5oVH1ibhYck+Uxi6LkQIAS6CDMB8GA1UdIwQY
MBaAFF2jj3w+ytKexQZEtwBouSob5HB0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGFPUGZEN0swcDdGQmtTM0FHaTVLaHZrY0hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9iYmE4ZTctYjlkMi00ZDliLTg4Yjkt
OTQwOGYxYmMwZDEyLzEvU3ptaFVmV0p1Rmh5VDVUR0xvdVJBZ0JMb0lNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9iYmE4ZTctYjlkMi00ZDliLTg4YjktOTQwOGYxYmMwZDEy
LzEvWGFPUGZEN0swcDdGQmtTM0FHaTVLaHZrY0hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+NyMA0G
CSqGSIb3DQEBCwUAA4IBAQBKJb3aRz8UzZ4X/KIBgKON3YtaX6TIvcJDIdUwCN8N
R1AF3FMGvp2EAY0lxCc8OaxRGrpmXRDoHOVqy+77paZ2NpchXsZFzBQUj6fnlFS4
SMe+bYJHffb3fX2PGdaFJEQMdLKgByU6TOuMlbvyHdCgWTClypsDgVSnbf5oXQtu
oRU0aiBS1gTK4fF1G0yXyLsVfzGkbr9qWMaVSxY5FuBLkpEojziM1dVkfh36jK6V
TvfsWeMtD/ewHnHsrMyGPE2naUHjV1LzR9/J//ONm+Jog9kVz83BxCdMlgb92f9e
wzgSQANVWW1WSfAXlyUBo/b+nPJ4MZ+NMqgsgfhaBlE2
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:55 2025 by rpki-client on console.sobornost.net