Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IFpZrxJhl8wQt7Uq0qRwzYFnZJk.roa
File: IFpZrxJhl8wQt7Uq0qRwzYFnZJk.roa (raw, json)
Hash identifier: eoMtlnp1ZLGeorMDixEuqh0nobwLwy70mhjbtsKxD5o=
Subject key identifier: 20:5A:59:AF:12:61:97:CC:10:B7:B5:2A:D2:A4:70:CD:81:67:64:99
Certificate issuer: /CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Certificate serial: 019427B597692F896E49851CC2F163EDAD1B
Authority key identifier: 20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IFpZrxJhl8wQt7Uq0qRwzYFnZJk.roa
Signing time: Thu 02 Jan 2025 15:49:59 +0000
ROA not before: Thu 02 Jan 2025 15:49:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 30746
IP address blocks: 193.47.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:97:69:2f:89:6e:49:85:1c:c2:f1:63:ed:ad:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Validity
Not Before: Jan 2 15:49:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=205a59af126197cc10b7b52ad2a470cd81676499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:06:36:c5:74:9b:f5:b1:54:6b:29:35:f4:d2:
cc:38:11:9d:40:a1:c4:42:f6:8a:a3:27:ac:5c:25:
37:c4:e5:5c:a4:36:8a:6d:3d:96:f7:d1:d0:eb:ea:
ec:2b:84:dc:ca:c3:8d:17:a9:b3:4c:f5:55:44:25:
45:dc:b7:64:79:4d:6c:b6:b4:06:ab:e7:70:d1:09:
57:4f:05:ed:d2:57:ad:fb:96:bc:08:be:6b:a9:06:
71:a2:28:66:0e:87:74:56:49:f8:24:02:58:08:3b:
bf:11:40:1d:b4:16:07:eb:74:f4:2d:df:1d:d7:f8:
3c:6e:21:04:15:7c:75:f9:42:30:3f:f9:0c:69:f5:
a9:4c:7d:48:66:d9:79:44:9d:64:18:86:dc:f6:b2:
3b:4b:23:8b:92:99:9e:d8:ad:a1:6e:5e:3b:f9:46:
42:f1:fa:90:a4:74:7f:b8:16:a8:c3:91:eb:8a:01:
fe:58:e1:6a:d4:52:fe:0b:b5:9a:d4:6e:73:fd:d7:
37:89:72:45:5a:41:f7:b6:a1:00:8f:68:c4:dc:0b:
ab:37:a5:c0:bc:4f:5e:c3:f8:a1:5b:3d:a2:50:45:
c8:5f:a3:e3:04:b9:4d:cd:56:07:b1:9e:85:ca:6b:
e8:ad:01:ec:9e:70:5f:a9:25:9b:d7:16:d3:cd:e7:
b6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:5A:59:AF:12:61:97:CC:10:B7:B5:2A:D2:A4:70:CD:81:67:64:99
X509v3 Authority Key Identifier:
keyid:20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IFpZrxJhl8wQt7Uq0qRwzYFnZJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.147.0/24
Signature Algorithm: sha256WithRSAEncryption
15:23:3e:7d:82:87:ff:c5:97:71:47:30:ab:34:0e:bb:00:bf:
5e:e7:b8:7c:d3:01:15:e2:0a:62:1b:0a:53:db:12:8a:fb:17:
30:6e:ec:66:df:32:ad:ec:90:5f:ff:01:0e:96:d7:1b:c5:b5:
9e:63:ed:7c:22:fb:fc:51:9a:2f:a5:3d:eb:75:40:26:81:5a:
ee:0c:8f:0b:1f:5e:30:46:22:d7:4f:22:23:14:98:e0:89:3c:
11:26:61:b9:81:83:50:62:48:d3:48:74:b5:2b:78:21:d2:06:
a5:cc:8b:ee:88:22:d1:89:d8:8c:c4:b3:7f:f4:0d:f0:62:15:
54:13:0a:64:88:9c:4b:58:2b:de:83:b8:cc:90:ab:fc:36:e3:
9d:4b:75:0c:fb:8c:89:2a:df:2e:e0:c4:f4:5f:b8:26:74:51:
c3:79:93:a0:59:39:4b:fb:36:ec:7a:12:ec:13:46:7d:8e:10:
21:48:50:94:c0:f6:28:56:ea:21:a8:23:3d:6e:cf:3b:c5:c9:
cf:26:c1:d3:2c:75:62:20:39:b0:fe:9b:ae:a8:c5:a8:66:a6:
af:08:90:89:f7:b4:3e:a2:7e:ec:a5:7e:04:1f:be:69:b9:fc:
62:1c:f4:3b:36:db:79:03:5d:c8:ab:d1:8f:5a:ac:b7:1d:0c:
8d:03:c8:37
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQntZdpL4luSYUcwvFj7a0bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwOTNlMzgzYjJjYzUyZDVlY2EzMGZlYjEyNjk3NTkzYzlj
Nzg4YTAwHhcNMjUwMTAyMTU0OTU5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDVhNTlhZjEyNjE5N2NjMTBiN2I1MmFkMmE0NzBjZDgxNjc2NDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0wY2xXSb9bFUayk19NLMOBGdQKHE
QvaKoyesXCU3xOVcpDaKbT2W99HQ6+rsK4TcysONF6mzTPVVRCVF3LdkeU1strQG
q+dw0QlXTwXt0let+5a8CL5rqQZxoihmDod0Vkn4JAJYCDu/EUAdtBYH63T0Ld8d
1/g8biEEFXx1+UIwP/kMafWpTH1IZtl5RJ1kGIbc9rI7SyOLkpme2K2hbl47+UZC
8fqQpHR/uBaow5HrigH+WOFq1FL+C7Wa1G5z/dc3iXJFWkH3tqEAj2jE3AurN6XA
vE9ew/ihWz2iUEXIX6PjBLlNzVYHsZ6FymvorQHsnnBfqSWb1xbTzee2EQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCBaWa8SYZfMELe1KtKkcM2BZ2SZMB8GA1UdIwQY
MBaAFCCT44OyzFLV7KMP6xJpdZPJx4igMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUpQamc3TE1VdFhzb3dfckVtbDFrOG5IaUtBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS85NzMxMzYtMDlhYi00YzgzLThmM2Mt
MDQ1MzRlYmNlMzVlLzEvSUZwWnJ4SmhsOHdRdDdVcTBxUnd6WUZuWkprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS85NzMxMzYtMDlhYi00YzgzLThmM2MtMDQ1MzRlYmNlMzVl
LzEvSUpQamc3TE1VdFhzb3dfckVtbDFrOG5IaUtBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwS+TMA0G
CSqGSIb3DQEBCwUAA4IBAQAVIz59gof/xZdxRzCrNA67AL9e57h80wEV4gpiGwpT
2xKK+xcwbuxm3zKt7JBf/wEOltcbxbWeY+18Ivv8UZovpT3rdUAmgVruDI8LH14w
RiLXTyIjFJjgiTwRJmG5gYNQYkjTSHS1K3gh0galzIvuiCLRidiMxLN/9A3wYhVU
EwpkiJxLWCveg7jMkKv8NuOdS3UM+4yJKt8u4MT0X7gmdFHDeZOgWTlL+zbsehLs
E0Z9jhAhSFCUwPYoVuohqCM9bs87xcnPJsHTLHViIDmw/puuqMWoZqavCJCJ97Q+
on7spX4EH75pufxiHPQ7Ntt5A13Iq9GPWqy3HQyNA8g3
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net