Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/e5e2d0-f439-45e4-8540-f19600c7ad54/1/mzS0mg7LzekXtU0-AI8vjQNsdnI.roa
File: mzS0mg7LzekXtU0-AI8vjQNsdnI.roa (raw, json)
Hash identifier: W1Odlm/4gNw2/x1K4BE4WalP/0rHvCKJa9lik2Xno0U=
Subject key identifier: 9B:34:B4:9A:0E:CB:CD:E9:17:B5:4D:3E:00:8F:2F:8D:03:6C:76:72
Certificate issuer: /CN=81060a518528e86a8ea77f188a0263790c08f6b9
Certificate serial: 0194252148DFDE484A8C21C4CB01C59F3307
Authority key identifier: 81:06:0A:51:85:28:E8:6A:8E:A7:7F:18:8A:02:63:79:0C:08:F6:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQYKUYUo6GqOp38YigJjeQwI9rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/e5e2d0-f439-45e4-8540-f19600c7ad54/1/mzS0mg7LzekXtU0-AI8vjQNsdnI.roa
Signing time: Thu 02 Jan 2025 03:48:45 +0000
ROA not before: Thu 02 Jan 2025 03:48:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5603
IP address blocks: 91.217.126.0/24 maxlen: 24
91.217.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:48:df:de:48:4a:8c:21:c4:cb:01:c5:9f:33:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81060a518528e86a8ea77f188a0263790c08f6b9
Validity
Not Before: Jan 2 03:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9b34b49a0ecbcde917b54d3e008f2f8d036c7672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:78:51:94:8e:57:ce:dc:cc:31:18:88:69:c2:
2a:a5:37:87:9a:d9:25:4b:d3:a0:cf:62:9f:1a:a6:
b2:3b:4b:47:37:51:75:2a:b7:f6:55:3a:e7:9d:f9:
87:b2:fd:9f:34:40:15:9f:89:20:87:2a:98:fb:9f:
5c:77:30:91:f4:09:74:41:13:ab:d8:7e:2c:5d:2b:
29:cf:71:94:55:18:22:fd:79:0e:d5:7d:5f:b2:7e:
9a:ae:cf:5d:29:36:da:ce:50:9a:a8:27:0e:b2:f0:
dd:d5:93:44:b3:33:cb:e8:49:19:f8:d5:e1:65:e9:
28:9a:ef:59:fe:0a:6b:df:38:65:c8:3c:27:06:71:
2e:18:c1:72:d7:46:f3:1c:24:6b:98:f0:1d:9f:ee:
5d:2d:c4:8b:5a:15:04:4a:2a:9a:d6:9b:a8:b9:f8:
f4:56:ee:f3:62:df:44:7d:86:7a:b3:a0:86:61:0d:
dc:aa:d1:3d:b0:4c:c3:e6:a3:ab:9e:b9:75:f6:19:
08:f6:fc:a5:d5:23:b8:c5:b1:8f:9b:e0:87:09:14:
6b:33:49:e2:71:f0:5a:6d:df:f1:e9:62:a2:39:1d:
bb:37:c4:f2:ab:b1:8f:81:52:1b:12:a2:3d:2e:ce:
86:15:ac:03:89:bf:e4:01:a6:31:76:7b:f0:b8:e4:
9e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:34:B4:9A:0E:CB:CD:E9:17:B5:4D:3E:00:8F:2F:8D:03:6C:76:72
X509v3 Authority Key Identifier:
keyid:81:06:0A:51:85:28:E8:6A:8E:A7:7F:18:8A:02:63:79:0C:08:F6:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQYKUYUo6GqOp38YigJjeQwI9rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e5e2d0-f439-45e4-8540-f19600c7ad54/1/mzS0mg7LzekXtU0-AI8vjQNsdnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e5e2d0-f439-45e4-8540-f19600c7ad54/1/gQYKUYUo6GqOp38YigJjeQwI9rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.126.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:6e:09:38:f9:ed:ef:4f:11:e1:35:de:cc:48:d4:d1:6c:33:
be:06:10:f3:18:df:04:fd:06:d9:a1:c0:bc:ad:c5:93:f5:70:
65:b1:ce:37:f7:e2:80:b5:e1:5a:ea:e5:ef:ba:fe:df:1d:6c:
b8:af:a7:46:e8:7c:3c:d1:7c:5b:4e:1a:9d:54:8a:fd:23:09:
bd:47:2a:27:ca:1b:b3:3d:0f:47:5e:1c:29:71:64:df:9c:d2:
82:b3:d3:38:3b:c5:73:ba:f3:cd:f7:ea:11:3a:44:33:a5:f3:
d9:d7:bc:81:f0:53:e3:bc:0b:b3:d8:45:ee:53:28:fa:31:10:
87:45:f0:b4:00:f4:73:46:20:93:82:75:60:27:87:e8:31:11:
72:87:ea:d6:3a:a5:c6:3f:e0:a5:04:27:9a:63:8b:7f:2c:91:
29:cd:4f:72:02:93:89:fd:68:2d:7b:94:f1:80:84:02:01:5f:
66:aa:6f:52:38:47:69:83:70:2b:df:c0:51:52:e7:e1:d5:06:
2b:e9:45:74:ac:e3:bd:8f:1f:45:f9:20:a5:c9:8f:88:29:6c:
6f:5e:5c:d3:fa:60:77:df:56:ae:01:3c:f9:bc:61:7b:f1:10:
69:34:68:13:9f:9a:70:bd:24:7f:5a:aa:85:97:a9:69:d3:ce:
fe:85:1a:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIUjf3khKjCHEywHFnzMHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxMDYwYTUxODUyOGU4NmE4ZWE3N2YxODhhMDI2Mzc5MGMw
OGY2YjkwHhcNMjUwMTAyMDM0ODQ1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjM0YjQ5YTBlY2JjZGU5MTdiNTRkM2UwMDhmMmY4ZDAzNmM3NjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHhRlI5XztzMMRiIacIqpTeHmtkl
S9Ogz2KfGqayO0tHN1F1Krf2VTrnnfmHsv2fNEAVn4kghyqY+59cdzCR9Al0QROr
2H4sXSspz3GUVRgi/XkO1X1fsn6ars9dKTbazlCaqCcOsvDd1ZNEszPL6EkZ+NXh
Zekomu9Z/gpr3zhlyDwnBnEuGMFy10bzHCRrmPAdn+5dLcSLWhUESiqa1puoufj0
Vu7zYt9EfYZ6s6CGYQ3cqtE9sEzD5qOrnrl19hkI9vyl1SO4xbGPm+CHCRRrM0ni
cfBabd/x6WKiOR27N8Tyq7GPgVIbEqI9Ls6GFawDib/kAaYxdnvwuOSeFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJs0tJoOy83pF7VNPgCPL40DbHZyMB8GA1UdIwQY
MBaAFIEGClGFKOhqjqd/GIoCY3kMCPa5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1FZS1VZVW82R3FPcDM4WWlnSmplUXdJOXJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9lNWUyZDAtZjQzOS00NWU0LTg1NDAt
ZjE5NjAwYzdhZDU0LzEvbXpTMG1nN0x6ZWtYdFUwLUFJOHZqUU5zZG5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy9lNWUyZDAtZjQzOS00NWU0LTg1NDAtZjE5NjAwYzdhZDU0
LzEvZ1FZS1VZVW82R3FPcDM4WWlnSmplUXdJOXJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW9l+MA0G
CSqGSIb3DQEBCwUAA4IBAQBNbgk4+e3vTxHhNd7MSNTRbDO+BhDzGN8E/QbZocC8
rcWT9XBlsc439+KAteFa6uXvuv7fHWy4r6dG6Hw80XxbThqdVIr9Iwm9Ryonyhuz
PQ9HXhwpcWTfnNKCs9M4O8VzuvPN9+oROkQzpfPZ17yB8FPjvAuz2EXuUyj6MRCH
RfC0APRzRiCTgnVgJ4foMRFyh+rWOqXGP+ClBCeaY4t/LJEpzU9yApOJ/Wgte5Tx
gIQCAV9mqm9SOEdpg3Ar38BRUufh1QYr6UV0rOO9jx9F+SClyY+IKWxvXlzT+mB3
31auATz5vGF78RBpNGgTn5pwvSR/WqqFl6lp087+hRq/
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net