Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/a23348-62cf-4afa-94fc-9dd8561caede/1/qUUjm1H90-uL9euvKLjFEczkCzY.roa
File: qUUjm1H90-uL9euvKLjFEczkCzY.roa (raw, json)
Hash identifier: oUTa5+ocukOmAJZqVNEO6dDqsHnc1xufuifi9duph8M=
Subject key identifier: A9:45:23:9B:51:FD:D3:EB:8B:F5:EB:AF:28:B8:C5:11:CC:E4:0B:36
Certificate issuer: /CN=000a6718d539155c27300401f2c4667513eec5b1
Certificate serial: 019423D6DD68F20C2DE5EF69D62B57693DCA
Authority key identifier: 00:0A:67:18:D5:39:15:5C:27:30:04:01:F2:C4:66:75:13:EE:C5:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AApnGNU5FVwnMAQB8sRmdRPuxbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/a23348-62cf-4afa-94fc-9dd8561caede/1/qUUjm1H90-uL9euvKLjFEczkCzY.roa
Signing time: Wed 01 Jan 2025 21:47:51 +0000
ROA not before: Wed 01 Jan 2025 21:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49478
IP address blocks: 91.234.164.0/22 maxlen: 32
194.150.254.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:dd:68:f2:0c:2d:e5:ef:69:d6:2b:57:69:3d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=000a6718d539155c27300401f2c4667513eec5b1
Validity
Not Before: Jan 1 21:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a945239b51fdd3eb8bf5ebaf28b8c511cce40b36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:56:a0:1f:a8:97:0a:f0:1c:6f:89:ad:7a:dd:
7a:8c:45:57:83:e8:d1:c4:57:4d:37:4e:b3:e3:e1:
3d:fc:5c:10:b2:ae:91:6d:9d:b3:6a:b2:0e:e3:36:
5d:35:86:58:7f:03:9e:07:48:66:d4:d4:5c:4c:6f:
bc:f2:ec:70:52:07:21:b8:ea:f6:4f:b9:83:03:ec:
87:82:34:ee:78:aa:6a:4c:66:4a:65:ca:98:9b:c2:
e5:2c:76:bb:67:a7:a2:9b:f2:f5:1e:0f:b4:b4:57:
94:ce:0f:34:86:e8:0a:17:55:35:3c:92:2f:bc:32:
87:26:7a:6d:e6:23:22:ce:de:3f:a0:02:30:b7:93:
7c:a1:9c:49:d3:06:81:32:ff:41:25:74:47:43:ba:
db:93:90:e1:dd:18:52:bb:fc:44:97:90:c8:dc:6d:
39:ed:d0:dc:ae:54:45:16:76:89:8e:df:b8:34:7a:
f2:93:dc:f3:b5:62:e0:14:7c:90:95:87:df:96:5c:
12:7e:3c:8c:80:30:0a:d4:55:4d:ce:89:2a:a4:5b:
1f:37:c9:cb:51:16:5b:b8:75:30:3a:b4:0f:84:28:
ea:a8:ae:d8:3d:d1:54:d9:cd:8c:23:56:3e:ad:fe:
45:97:7a:b2:10:86:c1:df:e0:45:8b:c8:f0:a2:02:
30:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:45:23:9B:51:FD:D3:EB:8B:F5:EB:AF:28:B8:C5:11:CC:E4:0B:36
X509v3 Authority Key Identifier:
keyid:00:0A:67:18:D5:39:15:5C:27:30:04:01:F2:C4:66:75:13:EE:C5:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AApnGNU5FVwnMAQB8sRmdRPuxbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/a23348-62cf-4afa-94fc-9dd8561caede/1/qUUjm1H90-uL9euvKLjFEczkCzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/a23348-62cf-4afa-94fc-9dd8561caede/1/AApnGNU5FVwnMAQB8sRmdRPuxbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.164.0/22
194.150.254.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:eb:7d:84:d1:e3:02:42:88:f7:08:88:47:6a:7f:c4:a2:b1:
79:d4:8b:ae:b4:9e:61:cd:94:5b:70:66:82:3a:da:f4:c4:4d:
fb:3c:06:f7:0a:1d:72:50:45:3d:95:e6:76:c3:37:8d:29:f1:
0a:f7:97:2a:80:5d:02:18:83:7b:f9:47:90:03:17:eb:a9:53:
dc:a2:d7:37:36:e0:3a:48:1f:1f:76:fb:9c:84:87:c5:e8:74:
4f:9e:c8:00:26:7b:fc:fd:49:a2:0c:38:02:1e:b8:32:ac:9c:
8b:d9:4e:0c:b5:13:e5:c5:0b:17:44:77:67:18:a2:4e:16:0e:
10:43:c8:be:1f:04:e6:ae:67:85:f3:ab:92:df:0c:60:b3:c0:
46:8a:e1:7d:0b:f0:bc:94:f8:a5:77:79:ad:f4:24:84:a2:24:
61:24:e4:9b:dc:a6:ab:b8:02:55:ac:76:f8:64:18:f5:ef:45:
bf:90:99:c8:7c:35:c5:7d:88:92:15:66:cf:ad:aa:c0:ac:c5:
4a:6b:8d:c1:5a:57:65:a4:db:6d:fa:75:ce:b1:ec:03:28:37:
91:0d:2a:09:83:b1:66:65:1c:64:6c:e0:e5:5d:1e:ec:6d:0b:
74:e8:3a:af:aa:26:d1:aa:38:c1:ec:23:f1:72:1e:cb:35:78:
ea:0f:d6:0a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQj1t1o8gwt5e9p1itXaT3KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMGE2NzE4ZDUzOTE1NWMyNzMwMDQwMWYyYzQ2Njc1MTNl
ZWM1YjEwHhcNMjUwMTAxMjE0NzUxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOTQ1MjM5YjUxZmRkM2ViOGJmNWViYWYyOGI4YzUxMWNjZTQwYjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4lagH6iXCvAcb4mtet16jEVXg+jR
xFdNN06z4+E9/FwQsq6RbZ2zarIO4zZdNYZYfwOeB0hm1NRcTG+88uxwUgchuOr2
T7mDA+yHgjTueKpqTGZKZcqYm8LlLHa7Z6eim/L1Hg+0tFeUzg80hugKF1U1PJIv
vDKHJnpt5iMizt4/oAIwt5N8oZxJ0waBMv9BJXRHQ7rbk5Dh3RhSu/xEl5DI3G05
7dDcrlRFFnaJjt+4NHryk9zztWLgFHyQlYffllwSfjyMgDAK1FVNzokqpFsfN8nL
URZbuHUwOrQPhCjqqK7YPdFU2c2MI1Y+rf5Fl3qyEIbB3+BFi8jwogIwWQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKlFI5tR/dPri/Xrryi4xRHM5As2MB8GA1UdIwQY
MBaAFAAKZxjVORVcJzAEAfLEZnUT7sWxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUFwbkdOVTVGVnduTUFRQjhzUm1kUlB1eGJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9hMjMzNDgtNjJjZi00YWZhLTk0ZmMt
OWRkODU2MWNhZWRlLzEvcVVVam0xSDkwLXVMOWV1dktMakZFY3prQ3pZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9hMjMzNDgtNjJjZi00YWZhLTk0ZmMtOWRkODU2MWNhZWRl
LzEvQUFwbkdOVTVGVnduTUFRQjhzUm1kUlB1eGJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW+qkAwQB
wpb+MA0GCSqGSIb3DQEBCwUAA4IBAQAf632E0eMCQoj3CIhHan/EorF51IuutJ5h
zZRbcGaCOtr0xE37PAb3Ch1yUEU9leZ2wzeNKfEK95cqgF0CGIN7+UeQAxfrqVPc
otc3NuA6SB8fdvuchIfF6HRPnsgAJnv8/UmiDDgCHrgyrJyL2U4MtRPlxQsXRHdn
GKJOFg4QQ8i+HwTmrmeF86uS3wxgs8BGiuF9C/C8lPild3mt9CSEoiRhJOSb3Kar
uAJVrHb4ZBj170W/kJnIfDXFfYiSFWbPrarArMVKa43BWldlpNtt+nXOsewDKDeR
DSoJg7FmZRxkbODlXR7sbQt06DqvqibRqjjB7CPxch7LNXjqD9YK
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net