Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ce043e-2ddb-48a7-8983-9d7a8872b454/1/XByggxBGqV43CvyUdzIIt6a45i0.roa
File: XByggxBGqV43CvyUdzIIt6a45i0.roa (raw, json)
Hash identifier: +ahxNaqpYRIqcavaBqUNzPyEswHxojATT5doqQzic0g=
Subject key identifier: 5C:1C:A0:83:10:46:A9:5E:37:0A:FC:94:77:32:08:B7:A6:B8:E6:2D
Certificate issuer: /CN=31921b6ff1ac449ba3e7f892cf0832d1ceb7d464
Certificate serial: 0194266C3CDD2F64261C5C19C5DD534718D7
Authority key identifier: 31:92:1B:6F:F1:AC:44:9B:A3:E7:F8:92:CF:08:32:D1:CE:B7:D4:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZIbb_GsRJuj5_iSzwgy0c631GQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ce043e-2ddb-48a7-8983-9d7a8872b454/1/XByggxBGqV43CvyUdzIIt6a45i0.roa
Signing time: Thu 02 Jan 2025 09:50:15 +0000
ROA not before: Thu 02 Jan 2025 09:50:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57057
IP address blocks: 91.224.66.0/23 maxlen: 23
2a01:5741::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:3c:dd:2f:64:26:1c:5c:19:c5:dd:53:47:18:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31921b6ff1ac449ba3e7f892cf0832d1ceb7d464
Validity
Not Before: Jan 2 09:50:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5c1ca0831046a95e370afc94773208b7a6b8e62d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:16:d0:b8:34:e4:db:ba:07:e8:2d:7d:4b:71:
6e:48:c0:e5:0f:5f:54:24:6d:9f:b5:4d:73:6e:f8:
14:d5:c6:8d:11:25:56:59:71:28:a4:8c:fb:66:a6:
c9:f4:4a:19:72:d9:49:57:f1:37:5f:83:22:9f:db:
51:1f:32:8d:a3:0f:6c:3e:58:24:36:2e:55:9d:a8:
45:25:24:4d:5d:7a:34:e1:02:24:0d:03:2f:48:38:
95:38:12:2a:49:43:6b:6d:36:81:09:be:c4:e2:b6:
3e:31:3a:a9:e4:9e:6e:4f:0b:ba:71:be:a7:3f:88:
e2:68:f8:64:c3:e3:07:fe:b4:10:2e:0a:71:5d:56:
73:08:3f:27:a3:7e:f3:1e:b4:19:c2:68:24:94:0e:
0a:88:71:bd:57:46:59:f3:96:b4:5e:71:ee:67:89:
20:77:1e:f3:c3:62:a7:ab:ed:7c:0c:26:e9:59:e8:
83:49:9b:34:f1:12:f2:b0:4c:75:f5:ac:fb:2e:b1:
ce:9f:8f:14:3f:71:5f:3b:39:04:15:e3:d9:c9:1f:
ce:8e:75:97:66:7a:74:d3:ef:c7:73:38:4b:14:ad:
ee:3c:47:a9:b6:52:04:98:63:81:09:9d:48:f0:b3:
d0:fa:e3:85:65:2b:67:81:ee:75:1f:33:f6:e6:e8:
cf:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:1C:A0:83:10:46:A9:5E:37:0A:FC:94:77:32:08:B7:A6:B8:E6:2D
X509v3 Authority Key Identifier:
keyid:31:92:1B:6F:F1:AC:44:9B:A3:E7:F8:92:CF:08:32:D1:CE:B7:D4:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZIbb_GsRJuj5_iSzwgy0c631GQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce043e-2ddb-48a7-8983-9d7a8872b454/1/XByggxBGqV43CvyUdzIIt6a45i0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce043e-2ddb-48a7-8983-9d7a8872b454/1/MZIbb_GsRJuj5_iSzwgy0c631GQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.66.0/23
IPv6:
2a01:5741::/32
Signature Algorithm: sha256WithRSAEncryption
5d:e5:42:5f:d3:64:cb:90:31:8a:78:08:6d:03:c9:0e:cb:6a:
a6:b0:90:1f:ad:59:c6:a7:05:b2:2f:82:96:d3:7a:84:c0:d2:
38:b1:47:98:c5:7d:21:88:d0:9c:a6:da:2b:65:18:ff:ec:91:
41:8f:1b:19:b4:2b:75:04:fe:9a:9f:3e:6b:a2:8f:1d:8f:7c:
dc:81:ee:c1:e4:3b:fb:8b:80:11:86:c4:38:30:e6:e9:5b:0c:
35:f1:b8:dc:13:82:09:1f:a7:ed:9b:3d:2b:c3:8e:f3:e4:b5:
4a:05:8c:96:00:6b:56:97:f1:58:58:cb:8d:53:16:45:be:73:
33:15:92:56:93:42:81:9f:35:50:f6:0d:15:4a:be:f7:13:87:
0d:3f:c7:33:98:bc:10:07:0a:2e:97:d8:c4:ab:d8:f9:f5:7d:
ab:fe:de:43:1a:47:e9:a5:07:52:67:04:6c:a2:be:f3:c7:eb:
47:cf:64:eb:e3:2a:c5:bf:d9:5e:91:1e:73:9e:01:bb:6b:99:
7d:2b:a8:1e:3c:c2:18:64:4e:27:7c:0d:41:5f:46:1b:7a:c1:
e8:89:e1:2d:19:bd:4b:b5:72:cb:1b:38:1c:36:19:c0:51:3a:
97:7c:f4:21:1e:45:9c:1c:46:b7:1b:91:8d:90:34:35:ea:44:
07:dd:f5:ba
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQmbDzdL2QmHFwZxd1TRxjXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxOTIxYjZmZjFhYzQ0OWJhM2U3Zjg5MmNmMDgzMmQxY2Vi
N2Q0NjQwHhcNMjUwMTAyMDk1MDE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YzFjYTA4MzEwNDZhOTVlMzcwYWZjOTQ3NzMyMDhiN2E2YjhlNjJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxbQuDTk27oH6C19S3FuSMDlD19U
JG2ftU1zbvgU1caNESVWWXEopIz7ZqbJ9EoZctlJV/E3X4Min9tRHzKNow9sPlgk
Ni5VnahFJSRNXXo04QIkDQMvSDiVOBIqSUNrbTaBCb7E4rY+MTqp5J5uTwu6cb6n
P4jiaPhkw+MH/rQQLgpxXVZzCD8no37zHrQZwmgklA4KiHG9V0ZZ85a0XnHuZ4kg
dx7zw2Knq+18DCbpWeiDSZs08RLysEx19az7LrHOn48UP3FfOzkEFePZyR/OjnWX
Znp00+/HczhLFK3uPEeptlIEmGOBCZ1I8LPQ+uOFZStnge51HzP25ujP+wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFwcoIMQRqleNwr8lHcyCLemuOYtMB8GA1UdIwQY
MBaAFDGSG2/xrESbo+f4ks8IMtHOt9RkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVpJYmJfR3NSSnVqNV9pU3p3Z3kwYzYzMUdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9jZTA0M2UtMmRkYi00OGE3LTg5ODMt
OWQ3YTg4NzJiNDU0LzEvWEJ5Z2d4QkdxVjQzQ3Z5VWR6SUl0NmE0NWkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9jZTA0M2UtMmRkYi00OGE3LTg5ODMtOWQ3YTg4NzJiNDU0
LzEvTVpJYmJfR3NSSnVqNV9pU3p3Z3kwYzYzMUdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBW+BCMA0E
AgACMAcDBQAqAVdBMA0GCSqGSIb3DQEBCwUAA4IBAQBd5UJf02TLkDGKeAhtA8kO
y2qmsJAfrVnGpwWyL4KW03qEwNI4sUeYxX0hiNCcptorZRj/7JFBjxsZtCt1BP6a
nz5roo8dj3zcge7B5Dv7i4ARhsQ4MObpWww18bjcE4IJH6ftmz0rw47z5LVKBYyW
AGtWl/FYWMuNUxZFvnMzFZJWk0KBnzVQ9g0VSr73E4cNP8czmLwQBwoul9jEq9j5
9X2r/t5DGkfppQdSZwRsor7zx+tHz2Tr4yrFv9lekR5zngG7a5l9K6gePMIYZE4n
fA1BX0YbesHoieEtGb1LtXLLGzgcNhnAUTqXfPQhHkWcHEa3G5GNkDQ16kQH3fW6
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net