Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/6dd682-2b06-405c-8693-46be79870be8/1/ht3KdHbaaKn0dUB9Eygpkn4YA9g.roa
File: ht3KdHbaaKn0dUB9Eygpkn4YA9g.roa (raw, json)
Hash identifier: NIfc2tNf/lNxNw/7+fw+tsc47P3faBnMYY6r4SXpFYs=
Subject key identifier: 86:DD:CA:74:76:DA:68:A9:F4:75:40:7D:13:28:29:92:7E:18:03:D8
Certificate issuer: /CN=e90391d244173f3e1aa821db77484b1ada53557f
Certificate serial: 01942444ADDB8372612720C151247B8D57A2
Authority key identifier: E9:03:91:D2:44:17:3F:3E:1A:A8:21:DB:77:48:4B:1A:DA:53:55:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6QOR0kQXPz4aqCHbd0hLGtpTVX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/6dd682-2b06-405c-8693-46be79870be8/1/ht3KdHbaaKn0dUB9Eygpkn4YA9g.roa
Signing time: Wed 01 Jan 2025 23:47:48 +0000
ROA not before: Wed 01 Jan 2025 23:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212604
IP address blocks: 31.42.178.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:ad:db:83:72:61:27:20:c1:51:24:7b:8d:57:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e90391d244173f3e1aa821db77484b1ada53557f
Validity
Not Before: Jan 1 23:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86ddca7476da68a9f475407d132829927e1803d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:15:1d:09:e5:06:83:bd:47:6d:c6:04:40:f0:
01:2c:d4:71:90:e3:7a:68:c9:b1:43:42:c5:91:08:
a2:3a:35:97:d3:a7:95:af:25:e0:a1:b6:f8:a8:b6:
d7:41:a5:84:8c:eb:7a:9a:80:78:53:95:5b:a5:8e:
04:3e:37:c0:74:2d:d9:58:14:c2:2b:cd:b0:c1:0a:
14:55:f9:80:a4:38:53:70:c2:c4:09:dc:95:0c:42:
55:75:e8:9d:08:27:9e:6f:a0:fe:da:45:06:bc:6a:
ee:17:fb:97:31:20:33:d6:5b:d2:8e:84:c2:20:cb:
95:be:c1:c8:a2:f6:11:10:88:57:7e:b6:d2:91:85:
7c:26:e9:6c:ac:1d:9b:ca:74:1f:72:02:73:23:6b:
84:cc:a5:8d:e0:1e:79:e8:b5:75:e5:68:63:1b:9e:
7b:93:69:f8:a1:b1:a8:4a:a8:49:b2:48:12:ee:da:
47:90:41:7f:5a:f7:26:c7:c9:3b:9d:7e:2b:19:0d:
e6:06:eb:26:26:28:bf:d2:8a:df:67:c6:73:2c:5c:
b5:1d:2b:27:0e:fb:6c:1a:c8:31:c7:41:07:82:93:
e8:cb:43:af:fc:da:41:08:0e:da:c9:21:9e:5f:ae:
0d:48:66:6a:90:88:ba:79:0a:0a:b3:e3:fd:0b:05:
15:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DD:CA:74:76:DA:68:A9:F4:75:40:7D:13:28:29:92:7E:18:03:D8
X509v3 Authority Key Identifier:
keyid:E9:03:91:D2:44:17:3F:3E:1A:A8:21:DB:77:48:4B:1A:DA:53:55:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QOR0kQXPz4aqCHbd0hLGtpTVX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6dd682-2b06-405c-8693-46be79870be8/1/ht3KdHbaaKn0dUB9Eygpkn4YA9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6dd682-2b06-405c-8693-46be79870be8/1/6QOR0kQXPz4aqCHbd0hLGtpTVX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.178.0/23
Signature Algorithm: sha256WithRSAEncryption
dd:48:1d:f0:70:a6:e5:10:6b:b4:fd:a0:f9:97:27:ae:17:92:
ae:9f:ea:18:be:cf:f2:39:20:93:31:89:22:07:60:63:d1:02:
18:34:98:87:6b:b7:7a:5e:05:c5:3b:68:0b:93:5f:29:17:fd:
52:e7:5a:43:74:70:e4:53:fe:08:91:84:16:6c:18:e5:bd:1d:
ee:f0:23:d2:84:d8:f2:8a:fc:4e:10:b9:a5:75:9b:92:c7:ca:
9b:18:97:16:a9:67:bf:a5:d1:f3:c2:b9:6f:3f:ee:18:46:85:
90:fe:5c:14:5b:39:ae:a6:18:b5:97:9a:d5:59:0c:c9:92:36:
89:09:6f:83:36:06:b0:bb:1c:4c:8e:83:51:fd:ec:5e:d6:5c:
c8:65:4d:b8:a8:ad:22:ba:68:0f:58:8c:94:26:56:a4:e6:23:
13:80:f5:cf:f9:23:08:18:eb:03:43:ed:c4:ea:c4:c3:3e:12:
25:79:37:a8:26:15:18:e2:ce:02:e7:25:1d:a1:5b:d2:17:87:
9c:db:00:03:d0:d7:98:47:ff:e3:95:b8:11:48:b1:06:b6:99:
8e:1f:de:c7:62:57:a4:16:60:a2:fa:19:99:df:ec:45:4b:e3:
88:0e:65:ba:e8:ed:99:3d:85:24:b0:2e:ca:99:9f:65:e6:4c:
5a:51:f6:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRK3bg3JhJyDBUSR7jVeiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5MDM5MWQyNDQxNzNmM2UxYWE4MjFkYjc3NDg0YjFhZGE1
MzU1N2YwHhcNMjUwMTAxMjM0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmRkY2E3NDc2ZGE2OGE5ZjQ3NTQwN2QxMzI4Mjk5MjdlMTgwM2Q4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xUdCeUGg71HbcYEQPABLNRxkON6
aMmxQ0LFkQiiOjWX06eVryXgobb4qLbXQaWEjOt6moB4U5VbpY4EPjfAdC3ZWBTC
K82wwQoUVfmApDhTcMLECdyVDEJVdeidCCeeb6D+2kUGvGruF/uXMSAz1lvSjoTC
IMuVvsHIovYREIhXfrbSkYV8JulsrB2bynQfcgJzI2uEzKWN4B556LV15WhjG557
k2n4obGoSqhJskgS7tpHkEF/Wvcmx8k7nX4rGQ3mBusmJii/0orfZ8ZzLFy1HSsn
DvtsGsgxx0EHgpPoy0Ov/NpBCA7aySGeX64NSGZqkIi6eQoKs+P9CwUVlwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIbdynR22mip9HVAfRMoKZJ+GAPYMB8GA1UdIwQY
MBaAFOkDkdJEFz8+Gqgh23dISxraU1V/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlFPUjBrUVhQejRhcUNIYmQwaExHdHBUVlg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi82ZGQ2ODItMmIwNi00MDVjLTg2OTMt
NDZiZTc5ODcwYmU4LzEvaHQzS2RIYmFhS24wZFVCOUV5Z3BrbjRZQTlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi82ZGQ2ODItMmIwNi00MDVjLTg2OTMtNDZiZTc5ODcwYmU4
LzEvNlFPUjBrUVhQejRhcUNIYmQwaExHdHBUVlg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBHyqyMA0G
CSqGSIb3DQEBCwUAA4IBAQDdSB3wcKblEGu0/aD5lyeuF5Kun+oYvs/yOSCTMYki
B2Bj0QIYNJiHa7d6XgXFO2gLk18pF/1S51pDdHDkU/4IkYQWbBjlvR3u8CPShNjy
ivxOELmldZuSx8qbGJcWqWe/pdHzwrlvP+4YRoWQ/lwUWzmuphi1l5rVWQzJkjaJ
CW+DNgawuxxMjoNR/exe1lzIZU24qK0iumgPWIyUJlak5iMTgPXP+SMIGOsDQ+3E
6sTDPhIleTeoJhUY4s4C5yUdoVvSF4ec2wAD0NeYR//jlbgRSLEGtpmOH97HYlek
FmCi+hmZ3+xFS+OIDmW66O2ZPYUksC7KmZ9l5kxaUfZ4
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:46 2025 by rpki-client on console.sobornost.net