Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/iiCSGGgxN2dI_YNYAYnLsWSzIvk.roa
File: iiCSGGgxN2dI_YNYAYnLsWSzIvk.roa (raw, json)
Hash identifier: rHuaFNuztgBdjSOmq2nEo94MqWDd+bV87f0qBWPvt94=
Subject key identifier: 8A:20:92:18:68:31:37:67:48:FD:83:58:01:89:CB:B1:64:B3:22:F9
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 01941F8C519DEEA0753E34CFF92DC6207605
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/iiCSGGgxN2dI_YNYAYnLsWSzIvk.roa
Signing time: Wed 01 Jan 2025 01:47:57 +0000
ROA not before: Wed 01 Jan 2025 01:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208593
IP address blocks: 5.202.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:51:9d:ee:a0:75:3e:34:cf:f9:2d:c6:20:76:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 1 01:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a2092186831376748fd83580189cbb164b322f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c7:37:ce:5b:66:ed:de:c5:64:fc:3e:af:67:
27:bf:c1:09:13:a1:4a:12:3d:9b:9b:75:35:f1:0d:
e5:15:ea:5a:28:f5:74:a4:01:e5:48:7e:ec:0f:e7:
b8:d7:0b:92:ee:c5:11:89:4e:1e:44:b7:24:69:f0:
33:a2:2c:db:72:76:6b:45:f0:4f:d6:2f:c2:88:49:
04:f6:a1:d6:31:be:d7:77:57:0f:31:8c:53:46:96:
51:66:89:48:85:8a:44:fa:04:af:ad:8a:3e:4f:f2:
ad:12:d6:20:50:73:d9:9c:c6:49:db:02:c4:73:87:
b6:ad:48:d4:69:68:71:18:68:d3:96:7a:32:ca:a8:
d4:5f:6f:11:e7:05:ea:79:f2:44:8e:8c:92:55:0f:
14:b3:1f:d2:8d:a2:c4:e0:ce:31:0f:78:a2:d4:97:
ab:0d:28:6f:c1:08:8c:d2:e5:85:da:cb:e9:66:52:
0d:0a:36:aa:75:c5:cb:65:41:c8:f0:30:cc:18:28:
87:32:f3:a8:27:79:b8:ed:18:03:9d:f8:5a:61:e1:
19:b8:85:dc:a0:6b:89:92:81:45:84:fb:d7:16:71:
97:e6:b7:8b:31:a6:b8:f7:a6:10:9e:33:87:65:33:
27:a9:cf:08:3e:00:47:5f:29:ed:b6:36:2b:06:ec:
5c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:20:92:18:68:31:37:67:48:FD:83:58:01:89:CB:B1:64:B3:22:F9
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/iiCSGGgxN2dI_YNYAYnLsWSzIvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.202.187.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:bd:b7:c6:e3:e3:9b:14:c2:90:14:bb:ad:f3:61:63:cf:ef:
d6:ec:16:41:55:eb:23:4a:2d:c6:e8:8c:f3:2b:25:11:a8:f7:
35:19:bd:f5:23:41:8d:c2:4a:d9:7b:49:cb:6a:ad:18:e4:64:
f9:19:6d:c4:54:aa:90:83:24:05:8b:b0:f6:0f:3f:12:40:11:
a2:08:0e:ba:a2:e0:fd:f5:a7:37:07:56:52:fb:7c:b9:fa:68:
5e:78:ac:ca:46:e9:41:05:39:30:bd:07:6c:9a:2f:d6:25:46:
09:ea:37:66:95:2c:14:8e:2e:b1:75:95:9a:13:59:b7:d7:6c:
c2:fd:c0:3e:94:17:6c:7c:f8:e2:45:9b:a2:9c:99:99:be:ef:
8f:49:4f:f2:b5:ec:ab:68:80:d1:26:9a:1d:8d:18:b0:0b:18:
2b:b8:18:67:02:2a:6d:6c:87:b1:40:47:89:bb:8f:30:b8:e3:
1d:60:d4:23:3a:3c:d3:f6:93:2c:7e:89:08:79:d8:ae:00:56:
c3:85:93:30:8d:2c:f2:c6:7f:ec:04:48:2b:c4:9b:a1:c6:81:
49:82:62:18:cc:5c:a0:31:a7:16:a9:a9:f1:53:69:2b:5e:01:
e9:b9:c6:d6:2a:9e:ec:ce:1f:18:62:9a:0e:3c:9b:59:e6:e0:
3f:42:ce:98
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjFGd7qB1PjTP+S3GIHYFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhMWU2OTM2OGFiZDM0NTM4ZmU3N2RkYWFiY2RjODM1YWY1
OTVlYmEwHhcNMjUwMTAxMDE0NzU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTIwOTIxODY4MzEzNzY3NDhmZDgzNTgwMTg5Y2JiMTY0YjMyMmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8c3zltm7d7FZPw+r2cnv8EJE6FK
Ej2bm3U18Q3lFepaKPV0pAHlSH7sD+e41wuS7sURiU4eRLckafAzoizbcnZrRfBP
1i/CiEkE9qHWMb7Xd1cPMYxTRpZRZolIhYpE+gSvrYo+T/KtEtYgUHPZnMZJ2wLE
c4e2rUjUaWhxGGjTlnoyyqjUX28R5wXqefJEjoySVQ8Usx/SjaLE4M4xD3ii1Jer
DShvwQiM0uWF2svpZlINCjaqdcXLZUHI8DDMGCiHMvOoJ3m47RgDnfhaYeEZuIXc
oGuJkoFFhPvXFnGX5reLMaa496YQnjOHZTMnqc8IPgBHXynttjYrBuxcwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIogkhhoMTdnSP2DWAGJy7FksyL5MB8GA1UdIwQY
MBaAFJoeaTaKvTRTj+d92qvNyDWvWV66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjIt
MTA5ODJlMDQwZDUzLzEvaWlDU0dHZ3hOMmRJX1lOWUFZbkxzV1N6SXZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjItMTA5ODJlMDQwZDUz
LzEvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABcq7MA0G
CSqGSIb3DQEBCwUAA4IBAQDKvbfG4+ObFMKQFLut82Fjz+/W7BZBVesjSi3G6Izz
KyURqPc1Gb31I0GNwkrZe0nLaq0Y5GT5GW3EVKqQgyQFi7D2Dz8SQBGiCA66ouD9
9ac3B1ZS+3y5+mheeKzKRulBBTkwvQdsmi/WJUYJ6jdmlSwUji6xdZWaE1m312zC
/cA+lBdsfPjiRZuinJmZvu+PSU/yteyraIDRJpodjRiwCxgruBhnAiptbIexQEeJ
u48wuOMdYNQjOjzT9pMsfokIediuAFbDhZMwjSzyxn/sBEgrxJuhxoFJgmIYzFyg
MacWqanxU2krXgHpucbWKp7szh8YYpoOPJtZ5uA/Qs6Y
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:25 2025 by rpki-client on console.sobornost.net