Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/a3a5a4-d07d-4abd-b129-227f7497dc1e/1/KGShywXbD4wB1PLsBTNT01VDQKY.roa
File: KGShywXbD4wB1PLsBTNT01VDQKY.roa (raw, json)
Hash identifier: hBh9EiIl2TqddpHizY/LGkFYV3Ncy9Yws3g05SvVJTg=
Subject key identifier: 28:64:A1:CB:05:DB:0F:8C:01:D4:F2:EC:05:33:53:D3:55:43:40:A6
Certificate issuer: /CN=8f31cc3605b3efc09b2688508063b6fd485561dd
Certificate serial: 0194266A1F293702359789DCECCC9B6325C9
Authority key identifier: 8F:31:CC:36:05:B3:EF:C0:9B:26:88:50:80:63:B6:FD:48:55:61:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzHMNgWz78CbJohQgGO2_UhVYd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/a3a5a4-d07d-4abd-b129-227f7497dc1e/1/KGShywXbD4wB1PLsBTNT01VDQKY.roa
Signing time: Thu 02 Jan 2025 09:47:56 +0000
ROA not before: Thu 02 Jan 2025 09:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 702
IP address blocks: 192.109.254.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:1f:29:37:02:35:97:89:dc:ec:cc:9b:63:25:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f31cc3605b3efc09b2688508063b6fd485561dd
Validity
Not Before: Jan 2 09:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2864a1cb05db0f8c01d4f2ec053353d3554340a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:81:b6:b8:c4:87:fc:1a:85:25:15:b5:50:56:
2a:c9:39:9d:36:9b:a8:92:91:c4:4c:28:86:93:5e:
3b:10:26:0b:d7:18:aa:f2:17:99:3b:e4:d2:78:e5:
21:85:60:7f:0d:65:30:75:ad:3d:14:38:35:ca:a8:
ae:3c:70:9a:46:84:19:6e:f5:f3:a7:d7:c0:b3:16:
7c:c2:03:fa:10:d5:6c:c9:26:1f:be:c0:49:32:15:
ef:15:ca:a7:52:52:0f:d7:1f:23:cd:bf:44:1c:62:
60:24:36:d5:77:42:3e:e2:e0:9b:53:ef:ca:c7:e2:
9c:b4:d0:1b:95:08:1b:10:3c:3f:3e:1c:05:2b:30:
86:c6:32:34:ae:8a:42:56:fb:4c:f8:bb:d6:e4:2b:
c1:b4:04:7e:e0:f1:ef:a5:cd:50:41:7e:ce:2d:ac:
10:bb:8f:00:19:48:2e:58:73:16:b6:56:3c:d1:6b:
40:98:c4:36:d6:7d:10:1a:6b:1e:00:bd:01:55:a1:
3d:6e:e1:fc:1e:a0:95:99:74:67:40:a5:bd:dc:5f:
ea:97:17:e4:b0:fe:8f:d5:b7:d6:72:7e:4a:08:11:
89:6b:bc:22:b8:60:8e:03:79:01:97:ae:05:b2:5e:
69:0b:83:1b:08:72:2c:3c:9b:66:82:c0:2a:5b:59:
1a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:64:A1:CB:05:DB:0F:8C:01:D4:F2:EC:05:33:53:D3:55:43:40:A6
X509v3 Authority Key Identifier:
keyid:8F:31:CC:36:05:B3:EF:C0:9B:26:88:50:80:63:B6:FD:48:55:61:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzHMNgWz78CbJohQgGO2_UhVYd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a3a5a4-d07d-4abd-b129-227f7497dc1e/1/KGShywXbD4wB1PLsBTNT01VDQKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a3a5a4-d07d-4abd-b129-227f7497dc1e/1/jzHMNgWz78CbJohQgGO2_UhVYd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.254.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:f9:6a:af:a6:59:89:ff:d2:15:e0:dc:b0:a5:89:c8:68:e8:
b9:83:20:51:5f:2b:69:a4:09:1f:8f:0e:15:ba:8e:64:ef:34:
1f:22:81:2a:26:f2:fc:0d:96:91:e9:a0:55:37:bd:c1:73:d9:
53:44:82:2a:87:a2:2d:03:a9:35:ed:6e:65:84:a6:3c:0a:da:
ac:36:06:9b:04:61:08:d0:37:2f:34:1b:82:84:91:74:4f:ce:
09:40:7c:61:4c:b1:d8:af:d4:1b:5a:f1:cf:d0:f8:34:88:48:
03:a1:90:52:1d:28:e0:16:f9:df:d6:3b:8d:13:15:28:e7:43:
6a:e0:d1:b3:02:7c:5e:b9:80:31:15:7d:06:f1:cc:5c:e9:83:
c3:da:81:a3:1d:8c:79:94:e2:9b:52:39:1a:e5:bd:92:3b:0d:
93:22:ac:19:20:cc:48:f7:6c:11:fc:bd:99:d3:15:77:f3:d1:
f9:ea:0d:3e:f4:1c:84:1e:0c:5d:44:ed:57:10:2e:fc:80:5c:
50:10:ca:a1:0e:f0:79:65:31:c5:55:98:3c:00:e7:61:13:c3:
a1:b6:5c:69:b4:bb:23:90:77:5f:2f:2e:b6:f9:28:13:96:3a:
64:d6:44:b2:6c:0e:09:9d:5f:fe:a2:62:a4:9d:1e:a4:9c:ad:
80:b6:dd:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQmah8pNwI1l4nc7MybYyXJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmMzFjYzM2MDViM2VmYzA5YjI2ODg1MDgwNjNiNmZkNDg1
NTYxZGQwHhcNMjUwMTAyMDk0NzU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODY0YTFjYjA1ZGIwZjhjMDFkNGYyZWMwNTMzNTNkMzU1NDM0MGE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIG2uMSH/BqFJRW1UFYqyTmdNpuo
kpHETCiGk147ECYL1xiq8heZO+TSeOUhhWB/DWUwda09FDg1yqiuPHCaRoQZbvXz
p9fAsxZ8wgP6ENVsySYfvsBJMhXvFcqnUlIP1x8jzb9EHGJgJDbVd0I+4uCbU+/K
x+KctNAblQgbEDw/PhwFKzCGxjI0ropCVvtM+LvW5CvBtAR+4PHvpc1QQX7OLawQ
u48AGUguWHMWtlY80WtAmMQ21n0QGmseAL0BVaE9buH8HqCVmXRnQKW93F/qlxfk
sP6P1bfWcn5KCBGJa7wiuGCOA3kBl64Fsl5pC4MbCHIsPJtmgsAqW1kaswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFChkocsF2w+MAdTy7AUzU9NVQ0CmMB8GA1UdIwQY
MBaAFI8xzDYFs+/AmyaIUIBjtv1IVWHdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanpITU5nV3o3OENiSm9oUWdHTzJfVWhWWWQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9hM2E1YTQtZDA3ZC00YWJkLWIxMjkt
MjI3Zjc0OTdkYzFlLzEvS0dTaHl3WGJENHdCMVBMc0JUTlQwMVZEUUtZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9hM2E1YTQtZDA3ZC00YWJkLWIxMjktMjI3Zjc0OTdkYzFl
LzEvanpITU5nV3o3OENiSm9oUWdHTzJfVWhWWWQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwG3+MA0G
CSqGSIb3DQEBCwUAA4IBAQCP+WqvplmJ/9IV4NywpYnIaOi5gyBRXytppAkfjw4V
uo5k7zQfIoEqJvL8DZaR6aBVN73Bc9lTRIIqh6ItA6k17W5lhKY8CtqsNgabBGEI
0DcvNBuChJF0T84JQHxhTLHYr9QbWvHP0Pg0iEgDoZBSHSjgFvnf1juNExUo50Nq
4NGzAnxeuYAxFX0G8cxc6YPD2oGjHYx5lOKbUjka5b2SOw2TIqwZIMxI92wR/L2Z
0xV389H56g0+9ByEHgxdRO1XEC78gFxQEMqhDvB5ZTHFVZg8AOdhE8OhtlxptLsj
kHdfLy62+SgTljpk1kSybA4JnV/+omKknR6knK2Att2c
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:33 2025 by rpki-client on console.sobornost.net