Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/6c4c26-e34a-4336-90c8-f90ae9966428/1/8JJmvRAktSEG3OdLUZKBNwR6ws0.roa
File: 8JJmvRAktSEG3OdLUZKBNwR6ws0.roa (raw, json)
Hash identifier: TC8WkMj5LqYLotUQsIJXNU0W5IJEuyjKyKXTJdzLmbM=
Subject key identifier: F0:92:66:BD:10:24:B5:21:06:DC:E7:4B:51:92:81:37:04:7A:C2:CD
Certificate issuer: /CN=947e3e5f9eb8089b5ca94f38e6517cfbc5b20063
Certificate serial: 0194221F97B91660CCE3C1B657C45AF6F47F
Authority key identifier: 94:7E:3E:5F:9E:B8:08:9B:5C:A9:4F:38:E6:51:7C:FB:C5:B2:00:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lH4-X564CJtcqU845lF8-8WyAGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/6c4c26-e34a-4336-90c8-f90ae9966428/1/8JJmvRAktSEG3OdLUZKBNwR6ws0.roa
Signing time: Wed 01 Jan 2025 13:48:03 +0000
ROA not before: Wed 01 Jan 2025 13:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204719
IP address blocks: 91.132.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:97:b9:16:60:cc:e3:c1:b6:57:c4:5a:f6:f4:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947e3e5f9eb8089b5ca94f38e6517cfbc5b20063
Validity
Not Before: Jan 1 13:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f09266bd1024b52106dce74b51928137047ac2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f7:0c:f3:7b:fc:bd:83:d1:a5:ad:c9:b4:63:
0f:da:e6:f6:e6:e4:72:cf:92:a3:ce:6f:83:3b:dd:
0f:98:c7:75:1d:d3:80:07:32:f6:ab:7a:6f:59:4e:
04:02:70:e5:3b:81:0a:fe:98:82:3e:86:25:20:b5:
0b:73:75:06:6e:7c:0b:f9:30:50:af:8a:e3:2e:1b:
e0:b3:24:05:df:ea:da:2e:81:7f:f6:7e:93:2a:35:
92:29:e7:da:18:66:fd:c4:bc:26:1d:96:3d:1b:9b:
f1:ea:35:aa:17:23:54:e9:f6:7e:16:b9:13:ab:fd:
cd:0c:4f:fa:eb:81:fc:e4:7d:96:12:55:20:03:67:
70:6e:b1:e8:00:8d:fc:a7:a0:52:db:5f:04:1b:e0:
b3:74:4c:a1:3d:a5:7c:43:83:67:84:aa:02:8b:cf:
62:5e:c0:5d:73:5b:df:72:f3:b8:78:ce:0e:2c:35:
1c:de:db:00:ba:a8:e4:2b:31:20:35:98:c2:f8:3b:
21:d3:5d:b1:fc:04:15:2b:68:16:1c:45:9b:d5:18:
7b:68:07:25:49:71:fd:1f:9b:aa:00:b0:f4:05:38:
b4:4a:58:24:23:74:e6:d8:4f:d6:f4:41:a4:a3:4c:
74:0c:6a:33:67:a5:26:b0:7d:ff:6b:12:ca:fb:e2:
71:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:92:66:BD:10:24:B5:21:06:DC:E7:4B:51:92:81:37:04:7A:C2:CD
X509v3 Authority Key Identifier:
keyid:94:7E:3E:5F:9E:B8:08:9B:5C:A9:4F:38:E6:51:7C:FB:C5:B2:00:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lH4-X564CJtcqU845lF8-8WyAGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6c4c26-e34a-4336-90c8-f90ae9966428/1/8JJmvRAktSEG3OdLUZKBNwR6ws0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6c4c26-e34a-4336-90c8-f90ae9966428/1/lH4-X564CJtcqU845lF8-8WyAGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.100.0/24
Signature Algorithm: sha256WithRSAEncryption
46:4d:c5:44:76:61:69:3b:ef:38:25:1c:89:40:ef:2d:c9:98:
c7:91:39:88:dd:6d:63:ca:9b:e1:4f:16:32:c9:97:81:d3:0f:
0a:85:83:a4:0e:ea:69:84:7a:8d:db:cd:50:48:f8:08:f2:8a:
56:a0:a3:27:fa:e8:c6:85:0f:84:27:26:2d:fb:06:fc:e5:4b:
5a:90:ad:99:5b:6f:59:42:52:ff:8c:4a:00:fb:1a:37:b6:b2:
1b:02:69:ed:2e:7e:25:39:53:10:93:d3:9a:b7:9a:d7:cf:5f:
36:9d:a7:95:90:4d:02:ce:60:f1:68:2f:a1:5e:e7:c1:1a:d8:
57:c3:65:ee:62:dd:41:24:cf:ed:14:30:24:4a:66:c3:d4:39:
2f:0d:a6:64:e1:e9:3a:7e:47:a7:42:11:86:c6:1f:92:9a:93:
ec:e6:9f:80:1b:ce:84:8a:40:1e:fa:c9:bc:44:43:bb:55:cd:
64:a5:fd:16:c3:25:77:d1:b6:24:a4:03:b7:51:64:8a:62:a0:
b7:ba:ed:eb:d2:5e:87:a7:af:55:53:f1:a5:87:5d:8b:c7:cd:
c8:8b:c9:e2:46:f6:a8:fd:74:b7:61:cf:fb:c4:a9:17:11:b7:
18:71:35:f1:e1:92:0d:8b:37:89:8d:40:10:06:b4:17:f0:9a:
b9:b3:16:01
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiH5e5FmDM48G2V8Ra9vR/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0N2UzZTVmOWViODA4OWI1Y2E5NGYzOGU2NTE3Y2ZiYzVi
MjAwNjMwHhcNMjUwMTAxMTM0ODAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDkyNjZiZDEwMjRiNTIxMDZkY2U3NGI1MTkyODEzNzA0N2FjMmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPcM83v8vYPRpa3JtGMP2ub25uRy
z5Kjzm+DO90PmMd1HdOABzL2q3pvWU4EAnDlO4EK/piCPoYlILULc3UGbnwL+TBQ
r4rjLhvgsyQF3+raLoF/9n6TKjWSKefaGGb9xLwmHZY9G5vx6jWqFyNU6fZ+FrkT
q/3NDE/664H85H2WElUgA2dwbrHoAI38p6BS218EG+CzdEyhPaV8Q4NnhKoCi89i
XsBdc1vfcvO4eM4OLDUc3tsAuqjkKzEgNZjC+Dsh012x/AQVK2gWHEWb1Rh7aAcl
SXH9H5uqALD0BTi0SlgkI3Tm2E/W9EGko0x0DGozZ6UmsH3/axLK++JxYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPCSZr0QJLUhBtznS1GSgTcEesLNMB8GA1UdIwQY
MBaAFJR+Pl+euAibXKlPOOZRfPvFsgBjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEg0LVg1NjRDSnRjcVU4NDVsRjgtOFd5QUdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC82YzRjMjYtZTM0YS00MzM2LTkwYzgt
ZjkwYWU5OTY2NDI4LzEvOEpKbXZSQWt0U0VHM09kTFVaS0JOd1I2d3MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC82YzRjMjYtZTM0YS00MzM2LTkwYzgtZjkwYWU5OTY2NDI4
LzEvbEg0LVg1NjRDSnRjcVU4NDVsRjgtOFd5QUdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW4RkMA0G
CSqGSIb3DQEBCwUAA4IBAQBGTcVEdmFpO+84JRyJQO8tyZjHkTmI3W1jypvhTxYy
yZeB0w8KhYOkDupphHqN281QSPgI8opWoKMn+ujGhQ+EJyYt+wb85UtakK2ZW29Z
QlL/jEoA+xo3trIbAmntLn4lOVMQk9Oat5rXz182naeVkE0CzmDxaC+hXufBGthX
w2XuYt1BJM/tFDAkSmbD1DkvDaZk4ek6fkenQhGGxh+SmpPs5p+AG86EikAe+sm8
REO7Vc1kpf0WwyV30bYkpAO3UWSKYqC3uu3r0l6Hp69VU/Glh12Lx83Ii8niRvao
/XS3Yc/7xKkXEbcYcTXx4ZINizeJjUAQBrQX8Jq5sxYB
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:59 2025 by rpki-client on console.sobornost.net