Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa
File: n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa (raw, json)
Hash identifier: depvn6FAlXY00NO5eAYz1KXbUInLhBp+Jz+PGCqafeo=
Subject key identifier: 9F:A9:8E:D2:3C:1F:30:21:AD:05:32:73:E3:3D:01:04:58:5A:69:AC
Certificate issuer: /CN=d25b90b8981b591d75a7e935e1304a74075602fd
Certificate serial: 01942444B4A73DCF213ACB69D95364BA9707
Authority key identifier: D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa
Signing time: Wed 01 Jan 2025 23:47:49 +0000
ROA not before: Wed 01 Jan 2025 23:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205798
IP address blocks: 193.141.109.0/24 maxlen: 24
193.141.121.0/24 maxlen: 24
193.142.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:b4:a7:3d:cf:21:3a:cb:69:d9:53:64:ba:97:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25b90b8981b591d75a7e935e1304a74075602fd
Validity
Not Before: Jan 1 23:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9fa98ed23c1f3021ad053273e33d0104585a69ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:af:a3:a4:a2:3a:71:07:92:a4:8f:04:86:f7:
c5:7c:a1:6b:82:6b:70:cf:27:31:96:a0:9b:35:54:
77:9c:1b:9d:d1:2a:86:43:ae:26:1e:32:46:ed:07:
d3:1b:12:12:84:1a:9c:d7:42:4d:39:e2:23:cf:f2:
63:fb:89:61:de:af:4b:9e:5c:fa:36:73:f0:65:79:
5d:25:3f:69:e1:b7:6c:e6:1c:d9:cf:66:7f:8e:01:
52:62:ac:00:db:76:64:50:1d:27:c9:ba:bf:ba:8a:
26:3a:31:24:dc:55:a3:5a:4b:e9:c2:64:1f:3b:be:
41:89:71:69:43:8d:cb:2a:ad:d2:44:3e:3b:84:d6:
ad:88:58:4a:df:0a:b8:7b:3a:8b:52:e5:c2:48:41:
20:11:72:cf:5a:9e:8d:91:4b:11:30:13:12:4c:b6:
0b:f0:75:16:93:f9:b3:d0:fa:2f:cb:bf:02:0c:10:
7f:63:1d:da:01:af:d3:d7:8f:72:42:5e:ff:92:60:
cc:09:e6:f2:92:61:0a:9c:dc:5f:20:5d:bd:01:65:
f0:44:21:4f:fa:85:ce:cf:b7:15:f7:24:42:52:c6:
c6:7a:08:bd:04:c0:9b:2d:5f:85:2d:8b:e2:4a:5a:
02:8a:53:08:b1:20:f9:52:fd:dc:74:3f:68:67:17:
05:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A9:8E:D2:3C:1F:30:21:AD:05:32:73:E3:3D:01:04:58:5A:69:AC
X509v3 Authority Key Identifier:
keyid:D2:5B:90:B8:98:1B:59:1D:75:A7:E9:35:E1:30:4A:74:07:56:02:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0luQuJgbWR11p-k14TBKdAdWAv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/n6mO0jwfMCGtBTJz4z0BBFhaaaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/2ce520-ec07-45ef-b587-a2abdadf5f90/1/0luQuJgbWR11p-k14TBKdAdWAv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.109.0/24
193.141.121.0/24
193.142.3.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:87:03:fa:d6:cf:a9:84:2b:6f:e2:bb:0f:d4:77:1f:2e:d9:
64:ec:2c:19:73:b3:82:ab:e1:43:2d:a2:9f:ae:85:35:18:ba:
5e:3f:60:82:bb:30:39:b9:57:24:d9:28:11:da:e3:2d:ce:52:
c3:82:aa:09:f8:85:96:a4:5d:dd:56:16:91:30:6f:02:53:48:
f6:b5:96:f6:12:e6:ec:19:67:7c:b4:1e:48:da:68:b6:26:e2:
6c:52:84:ed:50:33:81:40:65:59:40:43:b2:e3:41:c6:1e:81:
85:d0:5c:b9:e4:e9:1f:ef:07:56:64:6d:4d:d2:25:32:95:f2:
ce:ad:ee:de:68:fb:eb:30:30:2b:8d:bc:a3:5f:33:3f:23:50:
c9:48:32:40:75:13:06:2e:79:13:f7:6e:98:c6:69:8d:8a:41:
ff:fd:57:70:81:78:e4:17:4f:fc:fe:c2:23:42:fc:05:32:52:
7b:32:52:68:76:ff:95:fd:f3:3f:5e:38:0a:d2:51:83:54:7c:
03:1d:e8:10:94:5f:40:77:1a:ea:1a:22:cb:29:db:67:56:6f:
48:28:66:1e:ab:dd:7e:c3:17:19:ce:46:6a:69:7d:5e:e9:13:
78:06:91:99:7d:ba:f8:73:bf:1b:a3:0a:d4:2f:02:e6:6e:8a:
2a:35:53:12
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZQkRLSnPc8hOstp2VNkupcHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNWI5MGI4OTgxYjU5MWQ3NWE3ZTkzNWUxMzA0YTc0MDc1
NjAyZmQwHhcNMjUwMTAxMjM0NzQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmE5OGVkMjNjMWYzMDIxYWQwNTMyNzNlMzNkMDEwNDU4NWE2OWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6+jpKI6cQeSpI8EhvfFfKFrgmtw
zycxlqCbNVR3nBud0SqGQ64mHjJG7QfTGxIShBqc10JNOeIjz/Jj+4lh3q9Lnlz6
NnPwZXldJT9p4bds5hzZz2Z/jgFSYqwA23ZkUB0nybq/uoomOjEk3FWjWkvpwmQf
O75BiXFpQ43LKq3SRD47hNatiFhK3wq4ezqLUuXCSEEgEXLPWp6NkUsRMBMSTLYL
8HUWk/mz0Povy78CDBB/Yx3aAa/T149yQl7/kmDMCebykmEKnNxfIF29AWXwRCFP
+oXOz7cV9yRCUsbGegi9BMCbLV+FLYviSloCilMIsSD5Uv3cdD9oZxcFCQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFJ+pjtI8HzAhrQUyc+M9AQRYWmmsMB8GA1UdIwQY
MBaAFNJbkLiYG1kddafpNeEwSnQHVgL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODct
YTJhYmRhZGY1ZjkwLzEvbjZtTzBqd2ZNQ0d0QlRKejR6MEJCRmhhYWF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8yY2U1MjAtZWMwNy00NWVmLWI1ODctYTJhYmRhZGY1Zjkw
LzEvMGx1UXVKZ2JXUjExcC1rMTRUQktkQWRXQXYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAwY1tAwQA
wY15AwQAwY4DMA0GCSqGSIb3DQEBCwUAA4IBAQCghwP61s+phCtv4rsP1HcfLtlk
7CwZc7OCq+FDLaKfroU1GLpeP2CCuzA5uVck2SgR2uMtzlLDgqoJ+IWWpF3dVhaR
MG8CU0j2tZb2EubsGWd8tB5I2mi2JuJsUoTtUDOBQGVZQEOy40HGHoGF0Fy55Okf
7wdWZG1N0iUylfLOre7eaPvrMDArjbyjXzM/I1DJSDJAdRMGLnkT926YxmmNikH/
/VdwgXjkF0/8/sIjQvwFMlJ7MlJodv+V/fM/XjgK0lGDVHwDHegQlF9AdxrqGiLL
KdtnVm9IKGYeq91+wxcZzkZqaX1e6RN4BpGZfbr4c78bowrULwLmbooqNVMS
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:17 2025 by rpki-client on console.sobornost.net