Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/c2a48a-3a89-46b5-ae62-abeed70fabd1/1/DW0TBajIRaJNjehdF_P6lFN1E-I.roa
File: DW0TBajIRaJNjehdF_P6lFN1E-I.roa (raw, json)
Hash identifier: mI7ifTl+PSXtmyQehKoi7R5vAkxLOpMKlijli+a8Hsw=
Subject key identifier: 0D:6D:13:05:A8:C8:45:A2:4D:8D:E8:5D:17:F3:FA:94:53:75:13:E2
Certificate issuer: /CN=2fd971a27c6fc2c662f065dd8bfa8b8a132c1eae
Certificate serial: 01941F8C54EEC26ACF9244D8246403FBE1C9
Authority key identifier: 2F:D9:71:A2:7C:6F:C2:C6:62:F0:65:DD:8B:FA:8B:8A:13:2C:1E:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L9lxonxvwsZi8GXdi_qLihMsHq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/c2a48a-3a89-46b5-ae62-abeed70fabd1/1/DW0TBajIRaJNjehdF_P6lFN1E-I.roa
Signing time: Wed 01 Jan 2025 01:47:58 +0000
ROA not before: Wed 01 Jan 2025 01:47:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44592
IP address blocks: 80.91.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:54:ee:c2:6a:cf:92:44:d8:24:64:03:fb:e1:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fd971a27c6fc2c662f065dd8bfa8b8a132c1eae
Validity
Not Before: Jan 1 01:47:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0d6d1305a8c845a24d8de85d17f3fa94537513e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:8c:89:2a:9b:19:41:9e:3a:e2:f8:76:4d:
10:91:b5:62:b1:ad:95:02:90:74:63:13:79:1a:b9:
b7:6c:82:af:9f:79:79:10:d9:99:26:45:29:dd:30:
be:1a:65:b6:84:18:5a:12:03:7c:b5:f4:ec:39:95:
11:b4:6d:d3:b4:ad:d1:2f:87:44:9a:5c:fe:f2:d2:
0b:09:d4:9d:4a:68:71:24:39:b1:b3:49:20:43:d8:
59:49:3a:d7:dc:4c:6f:be:0e:b7:3f:62:39:8c:b1:
96:e8:8c:18:3a:31:74:5c:3c:04:16:b4:89:af:25:
65:07:25:ef:be:40:42:a0:fd:53:34:7c:44:95:e8:
e1:af:59:ea:1e:a7:9b:52:56:c2:de:c5:b3:a9:7d:
5f:ce:9c:15:a8:d7:0c:df:9e:05:fd:9e:91:12:61:
83:d8:7d:c7:85:36:d9:63:47:e5:8e:e7:29:1d:78:
3b:73:d8:24:0a:3a:7e:e2:76:e1:a9:95:51:16:01:
f1:66:2b:b4:56:57:6e:30:9d:95:3e:f9:2e:db:cc:
d3:69:a0:ac:f4:8d:86:ca:15:2c:86:98:86:6b:94:
5d:a7:7e:db:0d:72:28:10:a8:fd:cc:42:d8:1d:68:
6c:1f:99:eb:8d:38:f3:89:84:1d:9f:b1:73:98:1b:
a2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:6D:13:05:A8:C8:45:A2:4D:8D:E8:5D:17:F3:FA:94:53:75:13:E2
X509v3 Authority Key Identifier:
keyid:2F:D9:71:A2:7C:6F:C2:C6:62:F0:65:DD:8B:FA:8B:8A:13:2C:1E:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L9lxonxvwsZi8GXdi_qLihMsHq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c2a48a-3a89-46b5-ae62-abeed70fabd1/1/DW0TBajIRaJNjehdF_P6lFN1E-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c2a48a-3a89-46b5-ae62-abeed70fabd1/1/L9lxonxvwsZi8GXdi_qLihMsHq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.223.0/24
Signature Algorithm: sha256WithRSAEncryption
99:7a:dc:c2:e3:9b:5b:7c:45:d1:e8:8c:2d:88:49:d6:0b:1e:
b8:77:6f:8a:cd:4b:c2:24:15:27:c4:06:81:be:0e:e1:76:f0:
1d:87:1a:6e:2b:a3:55:f5:e3:f8:fd:12:06:de:3a:a8:43:33:
4b:f2:c2:ea:4c:23:fd:0c:72:ab:8f:33:41:4a:81:61:e0:0b:
47:08:39:f5:31:93:0c:cd:2a:0f:28:92:01:d3:4d:c4:df:ab:
9b:3f:6c:87:f8:48:a8:65:70:27:b0:61:4a:86:d2:dd:d4:93:
50:5c:de:ad:35:78:6c:04:4f:09:2c:43:f2:14:60:1f:46:43:
f2:a3:e7:c6:5e:6e:04:46:d5:ec:b8:26:da:09:d1:9b:9c:4c:
98:c2:d9:c7:71:e4:a6:78:a4:6f:0d:74:61:5c:05:5c:83:c7:
36:96:7e:b1:46:04:1b:7b:06:04:38:88:29:ef:6f:a3:2e:76:
a1:5c:70:06:79:6b:12:80:3a:ca:d5:9a:28:b5:75:d7:ce:73:
ff:f3:7b:41:c3:ef:4f:6f:f9:cc:8d:0c:2c:7e:14:9a:10:b2:
34:c3:94:d1:6c:cb:eb:d8:ea:38:09:dc:aa:a9:64:1b:dd:85:
f5:e7:34:14:bb:dc:db:95:fd:d6:d2:44:4a:82:80:c9:be:93:
ec:3c:38:f5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjFTuwmrPkkTYJGQD++HJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmZDk3MWEyN2M2ZmMyYzY2MmYwNjVkZDhiZmE4YjhhMTMy
YzFlYWUwHhcNMjUwMTAxMDE0NzU4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDZkMTMwNWE4Yzg0NWEyNGQ4ZGU4NWQxN2YzZmE5NDUzNzUxM2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOuMiSqbGUGeOuL4dk0QkbVisa2V
ApB0YxN5Grm3bIKvn3l5ENmZJkUp3TC+GmW2hBhaEgN8tfTsOZURtG3TtK3RL4dE
mlz+8tILCdSdSmhxJDmxs0kgQ9hZSTrX3Exvvg63P2I5jLGW6IwYOjF0XDwEFrSJ
ryVlByXvvkBCoP1TNHxElejhr1nqHqebUlbC3sWzqX1fzpwVqNcM354F/Z6REmGD
2H3HhTbZY0fljucpHXg7c9gkCjp+4nbhqZVRFgHxZiu0VlduMJ2VPvku28zTaaCs
9I2GyhUshpiGa5Rdp37bDXIoEKj9zELYHWhsH5nrjTjziYQdn7FzmBuiTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA1tEwWoyEWiTY3oXRfz+pRTdRPiMB8GA1UdIwQY
MBaAFC/ZcaJ8b8LGYvBl3Yv6i4oTLB6uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDlseG9ueHZ3c1ppOEdYZGlfcUxpaE1zSHE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9jMmE0OGEtM2E4OS00NmI1LWFlNjIt
YWJlZWQ3MGZhYmQxLzEvRFcwVEJhaklSYUpOamVoZEZfUDZsRk4xRS1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9jMmE0OGEtM2E4OS00NmI1LWFlNjItYWJlZWQ3MGZhYmQx
LzEvTDlseG9ueHZ3c1ppOEdYZGlfcUxpaE1zSHE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUFvfMA0G
CSqGSIb3DQEBCwUAA4IBAQCZetzC45tbfEXR6IwtiEnWCx64d2+KzUvCJBUnxAaB
vg7hdvAdhxpuK6NV9eP4/RIG3jqoQzNL8sLqTCP9DHKrjzNBSoFh4AtHCDn1MZMM
zSoPKJIB003E36ubP2yH+EioZXAnsGFKhtLd1JNQXN6tNXhsBE8JLEPyFGAfRkPy
o+fGXm4ERtXsuCbaCdGbnEyYwtnHceSmeKRvDXRhXAVcg8c2ln6xRgQbewYEOIgp
72+jLnahXHAGeWsSgDrK1ZootXXXznP/83tBw+9Pb/nMjQwsfhSaELI0w5TRbMvr
2Oo4CdyqqWQb3YX15zQUu9zblf3W0kRKgoDJvpPsPDj1
-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:42 2025 by rpki-client on console.sobornost.net