Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/mMmU8J9cvKribA0TyyxrTMimYq0.roa
File: mMmU8J9cvKribA0TyyxrTMimYq0.roa (raw, json)
Hash identifier: +QMZ7HI91kwFx7FOOy5sSQZOrB15+cJVITGyupg3UvY=
Subject key identifier: 98:C9:94:F0:9F:5C:BC:AA:E2:6C:0D:13:CB:2C:6B:4C:C8:A6:62:AD
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 0194266C71FA5451250C0D97CF38DCC209AF
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/mMmU8J9cvKribA0TyyxrTMimYq0.roa
Signing time: Thu 02 Jan 2025 09:50:28 +0000
ROA not before: Thu 02 Jan 2025 09:50:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35389
IP address blocks: 87.236.40.0/21 maxlen: 21
93.90.240.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:71:fa:54:51:25:0c:0d:97:cf:38:dc:c2:09:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Jan 2 09:50:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=98c994f09f5cbcaae26c0d13cb2c6b4cc8a662ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e6:6b:0c:df:5a:13:aa:4e:8f:6d:b4:64:27:
5f:bf:c4:15:08:fb:6d:d6:b0:60:1d:23:bd:98:b3:
d8:76:a3:81:ad:03:b0:75:3f:ef:e9:6e:07:48:e4:
e0:52:ec:c0:2e:3e:c0:9a:a5:6c:f4:b7:be:f3:08:
3b:4a:fd:72:82:8c:a6:2f:8a:ef:56:fd:64:ae:b4:
90:b1:a4:12:73:4e:c2:e9:4c:19:c0:f3:1c:85:4d:
09:fe:20:f2:44:d4:44:0c:92:83:7b:37:d4:d9:8d:
50:8d:ec:8c:fa:8a:c8:1e:74:86:bd:ee:8a:cd:3f:
d0:2a:34:4a:3e:bc:cb:91:e8:19:e3:ed:3a:15:03:
3b:ce:d4:0b:f5:08:d5:87:33:02:11:1a:8e:1b:4e:
aa:e3:16:a8:1a:88:43:af:b3:54:f2:b6:bd:d0:59:
57:83:f7:12:d0:97:b6:94:79:34:ba:e5:cd:27:23:
23:de:7e:3b:6a:9f:9e:b3:72:30:88:18:6d:36:90:
9e:da:7d:aa:16:19:41:7a:2b:36:57:64:20:89:29:
d2:a2:43:f0:fe:58:48:cf:19:69:ae:de:53:dd:e3:
ea:ec:bf:81:65:4d:ee:cd:93:ab:13:e5:bf:5b:7b:
25:46:1a:29:53:49:23:ae:fe:05:5d:ad:e4:71:d0:
2b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C9:94:F0:9F:5C:BC:AA:E2:6C:0D:13:CB:2C:6B:4C:C8:A6:62:AD
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/mMmU8J9cvKribA0TyyxrTMimYq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.40.0/21
93.90.240.0/20
Signature Algorithm: sha256WithRSAEncryption
19:86:69:ba:e0:bb:1e:e1:43:df:10:a6:b6:f7:e0:e8:30:3b:
2e:86:16:c9:02:48:43:37:16:2c:9f:6c:96:a4:e5:9c:5e:bc:
0f:78:2a:85:82:96:8a:24:25:7a:8e:9f:0b:00:07:dc:45:c1:
0a:7c:cf:23:c3:19:b4:fa:f9:1a:1f:c9:f5:ab:38:0a:59:23:
b8:6f:36:e5:cb:00:02:54:08:b1:a8:dd:1b:d7:74:cb:1e:5a:
8f:ae:0b:b8:1b:7b:9f:ff:77:3d:bd:61:5e:dd:70:56:35:e3:
4a:2a:e6:0a:e2:c9:c0:84:ba:26:92:3e:df:05:69:42:87:8b:
58:eb:07:66:c2:16:6a:36:21:7f:43:35:a6:12:ae:77:69:aa:
e4:e6:6a:1a:45:e9:07:c8:fc:cb:0b:d3:de:f8:8f:b0:a7:a8:
91:cd:ef:cd:af:bf:db:5a:8a:4f:dd:7d:7d:d3:c4:7e:51:c8:
bf:e8:b2:03:e7:81:d4:36:61:09:6d:ec:8f:e4:5a:a2:fc:a8:
47:bd:20:79:33:7a:7c:cd:5e:9a:b3:60:ff:9c:7f:76:94:be:
11:99:8f:18:19:41:54:d4:63:0b:d9:49:24:90:a6:36:60:76:
f5:3c:f8:c2:4a:37:25:1f:8d:5d:7c:b5:40:62:3e:6b:82:f5:
0c:7e:fa:db
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQmbHH6VFElDA2XzzjcwgmvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjUwMTAyMDk1MDI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGM5OTRmMDlmNWNiY2FhZTI2YzBkMTNjYjJjNmI0Y2M4YTY2MmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouZrDN9aE6pOj220ZCdfv8QVCPtt
1rBgHSO9mLPYdqOBrQOwdT/v6W4HSOTgUuzALj7AmqVs9Le+8wg7Sv1ygoymL4rv
Vv1krrSQsaQSc07C6UwZwPMchU0J/iDyRNREDJKDezfU2Y1QjeyM+orIHnSGve6K
zT/QKjRKPrzLkegZ4+06FQM7ztQL9QjVhzMCERqOG06q4xaoGohDr7NU8ra90FlX
g/cS0Je2lHk0uuXNJyMj3n47ap+es3IwiBhtNpCe2n2qFhlBeis2V2QgiSnSokPw
/lhIzxlprt5T3ePq7L+BZU3uzZOrE+W/W3slRhopU0kjrv4FXa3kcdArywIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFJjJlPCfXLyq4mwNE8ssa0zIpmKtMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvbU1tVThKOWN2S3JpYkEwVHl5eHJUTWltWXEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDV+woAwQE
XVrwMA0GCSqGSIb3DQEBCwUAA4IBAQAZhmm64Lse4UPfEKa29+DoMDsuhhbJAkhD
NxYsn2yWpOWcXrwPeCqFgpaKJCV6jp8LAAfcRcEKfM8jwxm0+vkaH8n1qzgKWSO4
bzblywACVAixqN0b13TLHlqPrgu4G3uf/3c9vWFe3XBWNeNKKuYK4snAhLomkj7f
BWlCh4tY6wdmwhZqNiF/QzWmEq53aark5moaRekHyPzLC9Pe+I+wp6iRze/Nr7/b
WopP3X1908R+Uci/6LID54HUNmEJbeyP5Fqi/KhHvSB5M3p8zV6as2D/nH92lL4R
mY8YGUFU1GML2UkkkKY2YHb1PPjCSjclH41dfLVAYj5rgvUMfvrb
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:07 2025 by rpki-client on console.sobornost.net