Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/IVaoaG24f2RBxlsmdeeYnuFdCRU.roa
File: IVaoaG24f2RBxlsmdeeYnuFdCRU.roa (raw, json)
Hash identifier: QN/uFans9efY4M01L6J9AtniN8pdbotCv7aLoStnIzM=
Subject key identifier: 21:56:A8:68:6D:B8:7F:64:41:C6:5B:26:75:E7:98:9E:E1:5D:09:15
Certificate issuer: /CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Certificate serial: 0195F124B5D8D2C6CA30F146926AA69D4046
Authority key identifier: C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/IVaoaG24f2RBxlsmdeeYnuFdCRU.roa
Signing time: Tue 01 Apr 2025 11:37:49 +0000
ROA not before: Tue 01 Apr 2025 11:37:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 91.108.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f1:24:b5:d8:d2:c6:ca:30:f1:46:92:6a:a6:9d:40:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Validity
Not Before: Apr 1 11:37:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2156a8686db87f6441c65b2675e7989ee15d0915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:91:35:12:c7:ae:e5:d4:5a:04:76:47:62:1c:
70:df:86:7c:5a:0f:05:21:49:87:4e:c3:23:63:d7:
31:1c:e4:bb:6b:c0:2b:b5:a9:93:4b:16:5f:d3:bb:
f1:66:d2:c8:3e:53:12:f6:97:70:c3:ec:82:45:d5:
a6:9b:88:18:22:a3:03:14:79:2e:f6:6f:7b:a5:0f:
a0:05:44:25:e3:d1:08:ee:f7:c1:61:93:84:be:0d:
60:dd:bd:88:6d:dd:a3:7e:bc:da:df:da:9e:81:95:
0d:fb:73:2e:50:60:75:40:fe:40:29:da:26:ec:b8:
09:e8:a8:e6:a6:a2:c3:ee:f7:f9:d9:74:80:e9:3e:
7c:46:f5:69:9a:27:8b:a8:32:26:ba:8d:7e:c7:02:
f9:86:80:13:b2:e5:65:61:27:82:65:5d:57:2a:bb:
de:b5:9f:6b:a7:b5:5e:f9:24:f7:49:79:fd:92:30:
da:08:66:5f:e1:3b:de:af:24:43:9c:df:58:e8:f3:
b6:ba:fc:38:7a:1a:44:3d:cd:1a:17:ba:e8:2f:c2:
2f:e2:dd:83:32:59:79:b2:8a:96:f6:69:ff:38:87:
06:d8:57:db:32:10:41:f1:22:1b:40:7c:69:02:0d:
ba:bb:65:ef:58:58:44:72:06:31:a5:93:94:9a:ae:
1c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:56:A8:68:6D:B8:7F:64:41:C6:5B:26:75:E7:98:9E:E1:5D:09:15
X509v3 Authority Key Identifier:
keyid:C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/IVaoaG24f2RBxlsmdeeYnuFdCRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.237.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:5d:b1:a3:64:a6:c4:ae:66:61:e6:ce:d4:48:4b:c0:52:a5:
dd:4c:a6:ec:8b:24:43:34:2e:45:b9:72:e7:60:a9:a3:43:78:
b3:87:1f:b2:84:84:8f:b6:48:a7:4e:7a:f0:d9:e2:28:52:ce:
7b:8c:aa:f2:25:90:ec:32:80:bc:d6:1d:4f:f5:d4:88:5e:3f:
bc:02:6b:e1:c2:41:3f:d5:08:0f:e6:0a:2b:ee:66:88:10:1c:
50:f7:99:ce:09:22:0c:14:11:82:ab:93:ce:9f:3f:3b:57:3b:
8f:b3:9c:a1:35:c1:f4:3a:72:06:97:38:1e:20:43:37:29:b9:
0d:7d:99:07:cc:c7:f9:a8:30:85:c0:e1:62:a1:77:1a:40:81:
db:ae:f4:f0:88:ce:25:27:b7:6d:ec:ed:e2:9d:1b:36:38:11:
67:70:f6:73:3a:86:fa:db:70:1c:c9:22:1f:c2:b6:0a:2c:9d:
10:fc:8f:2c:2f:e2:cd:52:14:d1:67:cd:67:c4:af:6d:44:be:
58:40:2f:f7:d1:fb:94:76:7c:ef:0b:03:8d:93:f1:01:b9:01:
c2:c8:c9:e9:f4:63:22:a0:c5:2f:ab:d4:47:5a:db:70:f7:9a:
21:5f:59:ae:c9:24:84:65:f2:8c:57:7f:5b:be:88:e1:9b:5e:
b1:61:e6:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZXxJLXY0sbKMPFGkmqmnUBGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZWU0NTQyNmUxMmU1MGZlMzBlOGZmYzM5ZTA0NDg1ZDhm
NzMzMzkwHhcNMjUwNDAxMTEzNzQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTU2YTg2ODZkYjg3ZjY0NDFjNjViMjY3NWU3OTg5ZWUxNWQwOTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5E1Eseu5dRaBHZHYhxw34Z8Wg8F
IUmHTsMjY9cxHOS7a8ArtamTSxZf07vxZtLIPlMS9pdww+yCRdWmm4gYIqMDFHku
9m97pQ+gBUQl49EI7vfBYZOEvg1g3b2Ibd2jfrza39qegZUN+3MuUGB1QP5AKdom
7LgJ6KjmpqLD7vf52XSA6T58RvVpmieLqDImuo1+xwL5hoATsuVlYSeCZV1XKrve
tZ9rp7Ve+ST3SXn9kjDaCGZf4TveryRDnN9Y6PO2uvw4ehpEPc0aF7roL8Iv4t2D
Mll5soqW9mn/OIcG2FfbMhBB8SIbQHxpAg26u2XvWFhEcgYxpZOUmq4cdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCFWqGhtuH9kQcZbJnXnmJ7hXQkVMB8GA1UdIwQY
MBaAFMLuRUJuEuUP4w6P/DngRIXY9zM5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3U1RlFtNFM1UV9qRG9fOE9lQkVoZGozTXprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC83MGFhMzItOTYwNy00ZGI3LThmMWUt
ZGE3NTQzMGIxNmY2LzEvSVZhb2FHMjRmMlJCeGxzbWRlZVludUZkQ1JVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC83MGFhMzItOTYwNy00ZGI3LThmMWUtZGE3NTQzMGIxNmY2
LzEvd3U1RlFtNFM1UV9qRG9fOE9lQkVoZGozTXprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW2ztMA0G
CSqGSIb3DQEBCwUAA4IBAQC2XbGjZKbErmZh5s7USEvAUqXdTKbsiyRDNC5FuXLn
YKmjQ3izhx+yhISPtkinTnrw2eIoUs57jKryJZDsMoC81h1P9dSIXj+8AmvhwkE/
1QgP5gor7maIEBxQ95nOCSIMFBGCq5POnz87VzuPs5yhNcH0OnIGlzgeIEM3KbkN
fZkHzMf5qDCFwOFioXcaQIHbrvTwiM4lJ7dt7O3inRs2OBFncPZzOob623AcySIf
wrYKLJ0Q/I8sL+LNUhTRZ81nxK9tRL5YQC/30fuUdnzvCwONk/EBuQHCyMnp9GMi
oMUvq9RHWttw95ohX1muySSEZfKMV39bvojhm16xYeZp
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:31 2025 by rpki-client on console.sobornost.net