Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/L2QPsEXXxjypDuteGOkuNir3lUA.roa
File: L2QPsEXXxjypDuteGOkuNir3lUA.roa (raw, json)
Hash identifier: mcJaTh3VxTTNDuoHtoju+OCGdo4jk9ztR2/hlQRPaNY=
Subject key identifier: 2F:64:0F:B0:45:D7:C6:3C:A9:0E:EB:5E:18:E9:2E:36:2A:F7:95:40
Certificate issuer: /CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Certificate serial: 019428254610EF666531E43E4613631D66E2
Authority key identifier: A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/L2QPsEXXxjypDuteGOkuNir3lUA.roa
Signing time: Thu 02 Jan 2025 17:51:58 +0000
ROA not before: Thu 02 Jan 2025 17:51:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49556
IP address blocks: 91.212.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:46:10:ef:66:65:31:e4:3e:46:13:63:1d:66:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0dc6cd3334e02690322373c3b506e4184faec7f
Validity
Not Before: Jan 2 17:51:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2f640fb045d7c63ca90eeb5e18e92e362af79540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5a:8d:d5:86:c0:55:8a:61:5b:87:c0:b9:63:
e8:75:ca:e7:56:d7:46:bd:c8:7f:20:a2:39:15:10:
1a:05:07:b2:7b:5c:e6:35:c6:d8:b1:34:8c:c2:b8:
53:54:3f:76:76:a2:08:97:52:f5:08:ae:1c:4b:d3:
15:ac:93:52:e7:b2:ff:b2:6b:50:fe:2c:eb:4b:8b:
31:a0:56:0a:1d:d8:23:0d:fa:a7:06:40:48:91:c4:
ab:e6:5a:b2:93:ac:32:49:16:d7:26:55:3f:4a:c3:
01:1f:86:70:ce:b5:e7:53:17:60:88:17:00:37:65:
92:2f:92:3b:45:fe:29:0a:f8:fb:c8:10:dc:5e:76:
72:ee:ab:35:fd:bf:0b:2d:78:2b:c1:86:d7:85:e3:
29:da:06:18:9f:aa:7b:6b:bc:8b:44:af:d2:2d:0a:
f3:5d:1a:9b:16:69:ab:0a:ab:a0:29:47:aa:ea:61:
27:a7:b0:8d:05:1e:dc:bb:88:09:da:1f:50:69:8d:
b3:df:e4:3d:ca:92:39:f0:ce:75:72:26:1d:da:b4:
e3:75:f8:f5:a3:dd:aa:93:ae:b3:bd:51:03:f0:dc:
f5:f5:23:97:0c:ac:2f:3c:71:78:8e:cb:94:56:3f:
1b:e6:c8:58:68:b7:49:2b:bc:57:7b:1a:dd:f0:ac:
9e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:64:0F:B0:45:D7:C6:3C:A9:0E:EB:5E:18:E9:2E:36:2A:F7:95:40
X509v3 Authority Key Identifier:
keyid:A0:DC:6C:D3:33:4E:02:69:03:22:37:3C:3B:50:6E:41:84:FA:EC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNxs0zNOAmkDIjc8O1BuQYT67H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/L2QPsEXXxjypDuteGOkuNir3lUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c01f90-d0fa-4976-b1c0-d1ff75a7a35c/1/oNxs0zNOAmkDIjc8O1BuQYT67H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.232.0/24
Signature Algorithm: sha256WithRSAEncryption
06:e6:56:fe:b7:60:ec:a0:5d:e8:61:f0:58:c3:46:5d:83:c9:
57:0b:79:73:74:0a:ce:97:6b:68:dd:41:47:9c:9a:7a:9c:78:
97:7e:f8:e6:e6:61:18:65:15:24:a1:98:6e:37:c7:54:9c:bc:
9b:71:64:13:3c:04:4e:ca:d5:d8:54:9c:e7:46:48:62:91:d7:
3d:cc:c3:cd:81:37:9f:3a:1a:73:ba:94:24:0a:25:aa:2e:85:
b0:69:c7:56:9f:03:cc:6f:14:a2:5e:0c:9c:48:e5:7a:17:d6:
97:73:31:7f:82:ce:92:b8:d1:d3:31:06:53:cd:d1:5d:bf:e8:
1f:d6:e5:a6:e5:f2:bd:55:68:23:29:bc:ce:c3:2a:62:eb:d1:
21:40:2f:d7:b0:95:76:77:e3:6b:b1:93:31:8e:dd:a4:50:8c:
19:f2:23:da:eb:c3:01:11:31:aa:b2:2a:bc:d7:67:c0:76:77:
cf:3b:66:cb:30:db:9c:0f:86:e3:8c:65:bf:8a:9b:a2:1d:78:
62:09:ab:1c:ac:b4:c2:59:80:5a:ec:93:7c:36:5a:6c:18:98:
44:a2:67:fb:40:5a:db:d5:6d:98:93:a9:ff:db:8b:e4:37:ef:
61:61:29:19:9e:8c:2a:1c:0c:2c:80:4e:c4:15:bd:9b:c7:05:
36:f9:c0:08
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQoJUYQ72ZlMeQ+RhNjHWbiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZGM2Y2QzMzM0ZTAyNjkwMzIyMzczYzNiNTA2ZTQxODRm
YWVjN2YwHhcNMjUwMTAyMTc1MTU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjY0MGZiMDQ1ZDdjNjNjYTkwZWViNWUxOGU5MmUzNjJhZjc5NTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxlqN1YbAVYphW4fAuWPodcrnVtdG
vch/IKI5FRAaBQeye1zmNcbYsTSMwrhTVD92dqIIl1L1CK4cS9MVrJNS57L/smtQ
/izrS4sxoFYKHdgjDfqnBkBIkcSr5lqyk6wySRbXJlU/SsMBH4ZwzrXnUxdgiBcA
N2WSL5I7Rf4pCvj7yBDcXnZy7qs1/b8LLXgrwYbXheMp2gYYn6p7a7yLRK/SLQrz
XRqbFmmrCqugKUeq6mEnp7CNBR7cu4gJ2h9QaY2z3+Q9ypI58M51ciYd2rTjdfj1
o92qk66zvVED8Nz19SOXDKwvPHF4jsuUVj8b5shYaLdJK7xXexrd8KyeIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC9kD7BF18Y8qQ7rXhjpLjYq95VAMB8GA1UdIwQY
MBaAFKDcbNMzTgJpAyI3PDtQbkGE+ux/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb054czB6Tk9BbWtESWpjOE8xQnVRWVQ2N0g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9jMDFmOTAtZDBmYS00OTc2LWIxYzAt
ZDFmZjc1YTdhMzVjLzEvTDJRUHNFWFh4anlwRHV0ZUdPa3VOaXIzbFVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9jMDFmOTAtZDBmYS00OTc2LWIxYzAtZDFmZjc1YTdhMzVj
LzEvb054czB6Tk9BbWtESWpjOE8xQnVRWVQ2N0g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9ToMA0G
CSqGSIb3DQEBCwUAA4IBAQAG5lb+t2DsoF3oYfBYw0Zdg8lXC3lzdArOl2to3UFH
nJp6nHiXfvjm5mEYZRUkoZhuN8dUnLybcWQTPAROytXYVJznRkhikdc9zMPNgTef
OhpzupQkCiWqLoWwacdWnwPMbxSiXgycSOV6F9aXczF/gs6SuNHTMQZTzdFdv+gf
1uWm5fK9VWgjKbzOwypi69EhQC/XsJV2d+NrsZMxjt2kUIwZ8iPa68MBETGqsiq8
12fAdnfPO2bLMNucD4bjjGW/ipuiHXhiCascrLTCWYBa7JN8NlpsGJhEomf7QFrb
1W2Yk6n/24vkN+9hYSkZnowqHAwsgE7EFb2bxwU2+cAI
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:13 2025 by rpki-client on console.sobornost.net