Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/282ac6-72c6-4b2c-9df9-8f1f2c914f04/1/SkmMZcDmD4tfD5IJGWfT10a999s.roa
File: SkmMZcDmD4tfD5IJGWfT10a999s.roa (raw, json)
Hash identifier: FtSYkAppozDXy+VqyVeW2kon4HMuVtycn1oxBmmVVwQ=
Subject key identifier: 4A:49:8C:65:C0:E6:0F:8B:5F:0F:92:09:19:67:D3:D7:46:BD:F7:DB
Certificate issuer: /CN=e08142b42e39480048d1fcea587a3693da4c0b8a
Certificate serial: 01942445522FD70A5A6F570E0221E30B9DCE
Authority key identifier: E0:81:42:B4:2E:39:48:00:48:D1:FC:EA:58:7A:36:93:DA:4C:0B:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4IFCtC45SABI0fzqWHo2k9pMC4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/282ac6-72c6-4b2c-9df9-8f1f2c914f04/1/SkmMZcDmD4tfD5IJGWfT10a999s.roa
Signing time: Wed 01 Jan 2025 23:48:30 +0000
ROA not before: Wed 01 Jan 2025 23:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56754
IP address blocks: 91.227.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:52:2f:d7:0a:5a:6f:57:0e:02:21:e3:0b:9d:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e08142b42e39480048d1fcea587a3693da4c0b8a
Validity
Not Before: Jan 1 23:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a498c65c0e60f8b5f0f92091967d3d746bdf7db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:72:ce:4b:66:14:69:c1:03:1d:a3:5f:f0:97:
c8:28:2d:c1:29:04:e1:c0:3e:4b:83:5b:7a:2e:f3:
cb:73:a8:5b:f7:74:da:86:0e:3d:c6:e3:db:62:3d:
52:fd:66:b1:4d:35:b8:f1:39:ac:dd:4d:c6:c7:44:
91:f2:96:f6:6d:a9:9c:b2:db:bd:f9:03:bb:de:7f:
a5:aa:a4:a6:36:55:c0:52:92:4b:5f:a7:69:68:53:
79:de:ce:33:36:83:63:17:5e:32:75:d4:e7:9f:05:
e1:c0:1a:6c:6c:12:17:e5:eb:a5:db:82:6f:91:51:
70:a1:3b:f0:e4:6e:9d:1d:57:24:5e:44:60:9e:46:
06:89:25:21:ec:0d:50:d9:6f:de:3a:bb:d1:bb:5b:
56:5c:84:ac:0a:d3:95:04:06:09:42:3d:91:97:4c:
f3:da:ff:fe:e7:94:e0:01:4c:9b:89:46:4a:06:63:
f3:31:cf:9b:47:7b:15:00:3a:77:72:87:93:7b:91:
28:74:78:ec:18:14:5f:4f:dd:79:08:89:a1:24:6b:
3b:98:54:b4:c6:b8:b4:87:c4:d9:be:2b:3f:8c:68:
15:32:8b:92:8c:c1:17:8e:e3:91:d9:9b:d8:e0:70:
90:fb:70:8c:f0:73:15:49:1f:49:6c:2e:43:04:85:
6a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:49:8C:65:C0:E6:0F:8B:5F:0F:92:09:19:67:D3:D7:46:BD:F7:DB
X509v3 Authority Key Identifier:
keyid:E0:81:42:B4:2E:39:48:00:48:D1:FC:EA:58:7A:36:93:DA:4C:0B:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4IFCtC45SABI0fzqWHo2k9pMC4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/282ac6-72c6-4b2c-9df9-8f1f2c914f04/1/SkmMZcDmD4tfD5IJGWfT10a999s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/282ac6-72c6-4b2c-9df9-8f1f2c914f04/1/4IFCtC45SABI0fzqWHo2k9pMC4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.109.0/24
Signature Algorithm: sha256WithRSAEncryption
35:83:66:d8:ac:71:b8:dc:f7:cc:d2:ed:65:27:3b:bf:4f:41:
ef:ba:98:f0:da:ac:4e:16:44:4e:43:cf:55:95:c0:19:af:2b:
6a:f4:8c:76:99:5b:9c:17:4f:99:ab:75:09:e1:26:93:ca:88:
db:58:cd:25:32:cb:9e:d7:ca:07:33:82:e3:b5:d2:cf:2f:bc:
8b:ee:61:be:64:92:b1:9f:6d:e7:72:20:5d:1a:c0:d9:65:9c:
3a:22:3b:3e:39:3c:38:57:36:76:00:50:6e:6e:05:e1:58:bd:
e0:a5:3a:45:c2:26:7e:3d:e0:fb:96:e6:38:b9:e5:43:a3:69:
21:6f:56:25:1d:ae:59:1b:26:da:ad:23:6b:18:a0:29:1f:9b:
8d:60:45:73:5e:f2:e4:e6:50:9d:8c:28:7b:c6:c1:22:39:4e:
c7:6e:c6:7b:18:21:cb:6a:d0:25:6f:49:55:81:54:2b:a6:56:
c7:d2:55:39:ab:67:0e:99:83:a3:e3:68:8d:51:8a:f3:27:5d:
f9:9e:01:a1:de:d8:45:95:f0:28:11:fe:33:b5:3f:90:92:73:
69:87:05:d9:54:54:db:ff:db:6a:a3:a8:71:08:50:91:bc:a7:
b8:ff:98:4c:f8:8c:4b:dd:2e:e6:55:5f:7a:bd:d0:a0:4c:bf:
fe:14:d9:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRVIv1wpab1cOAiHjC53OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwODE0MmI0MmUzOTQ4MDA0OGQxZmNlYTU4N2EzNjkzZGE0
YzBiOGEwHhcNMjUwMTAxMjM0ODMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTQ5OGM2NWMwZTYwZjhiNWYwZjkyMDkxOTY3ZDNkNzQ2YmRmN2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHLOS2YUacEDHaNf8JfIKC3BKQTh
wD5Lg1t6LvPLc6hb93Tahg49xuPbYj1S/WaxTTW48Tms3U3Gx0SR8pb2bamcstu9
+QO73n+lqqSmNlXAUpJLX6dpaFN53s4zNoNjF14yddTnnwXhwBpsbBIX5eul24Jv
kVFwoTvw5G6dHVckXkRgnkYGiSUh7A1Q2W/eOrvRu1tWXISsCtOVBAYJQj2Rl0zz
2v/+55TgAUybiUZKBmPzMc+bR3sVADp3coeTe5EodHjsGBRfT915CImhJGs7mFS0
xri0h8TZvis/jGgVMouSjMEXjuOR2ZvY4HCQ+3CM8HMVSR9JbC5DBIVqdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEpJjGXA5g+LXw+SCRln09dGvffbMB8GA1UdIwQY
MBaAFOCBQrQuOUgASNH86lh6NpPaTAuKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNElGQ3RDNDVTQUJJMGZ6cVdIbzJrOXBNQzRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yODJhYzYtNzJjNi00YjJjLTlkZjkt
OGYxZjJjOTE0ZjA0LzEvU2ttTVpjRG1ENHRmRDVJSkdXZlQxMGE5OTlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8yODJhYzYtNzJjNi00YjJjLTlkZjktOGYxZjJjOTE0ZjA0
LzEvNElGQ3RDNDVTQUJJMGZ6cVdIbzJrOXBNQzRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+NtMA0G
CSqGSIb3DQEBCwUAA4IBAQA1g2bYrHG43PfM0u1lJzu/T0Hvupjw2qxOFkROQ89V
lcAZrytq9Ix2mVucF0+Zq3UJ4SaTyojbWM0lMsue18oHM4LjtdLPL7yL7mG+ZJKx
n23nciBdGsDZZZw6Ijs+OTw4VzZ2AFBubgXhWL3gpTpFwiZ+PeD7luY4ueVDo2kh
b1YlHa5ZGybarSNrGKApH5uNYEVzXvLk5lCdjCh7xsEiOU7HbsZ7GCHLatAlb0lV
gVQrplbH0lU5q2cOmYOj42iNUYrzJ135ngGh3thFlfAoEf4ztT+QknNphwXZVFTb
/9tqo6hxCFCRvKe4/5hM+IxL3S7mVV96vdCgTL/+FNle
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net