Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/FvKlNgTTfUY6wfODmWwqXyKecZs.roa
File: FvKlNgTTfUY6wfODmWwqXyKecZs.roa (raw, json)
Hash identifier: 6cNZrSvW5aaw/X+eBl4EeZsRzlYWRXv6zzIu5nvGHbE=
Subject key identifier: 16:F2:A5:36:04:D3:7D:46:3A:C1:F3:83:99:6C:2A:5F:22:9E:71:9B
Certificate issuer: /CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Certificate serial: 019391435889921869B4ACDEEBE6D5A11FFB
Authority key identifier: 8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/FvKlNgTTfUY6wfODmWwqXyKecZs.roa
Signing time: Wed 04 Dec 2024 10:42:10 +0000
ROA not before: Wed 04 Dec 2024 10:42:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216314
IP address blocks: 91.200.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:91:43:58:89:92:18:69:b4:ac:de:eb:e6:d5:a1:1f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Validity
Not Before: Dec 4 10:42:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16f2a53604d37d463ac1f383996c2a5f229e719b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a0:e1:79:0e:b7:4f:d9:6d:19:2a:1b:a7:50:
10:94:34:7f:f9:c3:d6:0b:ca:a0:fb:2b:c2:a1:da:
05:74:65:35:bd:42:1e:12:9e:00:e1:a4:aa:69:d3:
77:0d:4a:16:1f:79:e0:e6:48:3e:11:ed:af:54:b2:
0e:4a:45:e8:eb:06:7d:ce:df:0e:af:7e:a2:53:c9:
04:30:65:2b:eb:09:06:42:18:46:c4:9e:0d:39:c9:
cb:04:d7:2a:2d:b8:80:e7:b7:38:79:64:f5:0f:46:
dd:03:67:47:42:bf:dc:56:85:39:1e:36:14:be:0b:
60:49:13:c7:aa:4c:27:91:d1:7a:28:4f:87:58:cc:
f8:8c:ad:ab:bc:4f:fd:e9:00:40:ff:77:3f:27:61:
ed:64:36:a7:97:f5:53:29:a0:ae:e7:1d:8d:58:90:
9c:da:28:16:e4:6e:54:51:3a:50:f1:93:16:32:ae:
b6:28:2d:cf:90:7b:0f:d9:5c:5d:96:ed:88:67:f2:
cd:cf:21:55:19:b6:f4:05:02:5f:ac:10:38:4f:94:
c1:0c:f1:39:75:37:0a:7a:3f:50:4f:ec:5b:3a:0e:
ad:b6:9b:5d:5c:b8:ae:1f:f5:d9:ec:bb:27:fd:1f:
da:dd:d9:80:44:d2:cc:6c:22:af:96:45:5d:d7:aa:
9e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F2:A5:36:04:D3:7D:46:3A:C1:F3:83:99:6C:2A:5F:22:9E:71:9B
X509v3 Authority Key Identifier:
keyid:8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/FvKlNgTTfUY6wfODmWwqXyKecZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/imAkssJ6Z9_1tlTvoGv3v8EiJiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.57.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:2d:97:6d:ef:e1:e3:b3:39:73:f8:1c:eb:7c:ae:18:4f:ee:
a1:86:d5:72:fb:5b:4f:b0:57:a2:5b:0a:d1:b2:ec:10:83:96:
c7:3f:fe:0a:7f:49:51:ff:68:32:8d:ab:f6:d8:5d:b9:91:9b:
9e:b4:97:81:7f:df:e7:ca:dd:03:e1:27:b2:a1:7b:d8:06:e4:
90:06:73:c7:44:31:dd:52:a3:4c:26:e6:39:bc:4d:3d:b6:66:
f3:c3:97:36:94:13:1e:31:57:32:d4:ec:10:7e:5e:c8:e5:db:
08:b8:1c:23:da:b4:dd:6f:f1:99:81:ad:24:49:a4:47:8a:88:
6c:11:32:fd:df:e8:48:09:0e:57:ce:1d:42:65:87:db:8c:72:
c3:5f:3b:90:fc:48:99:4a:11:ec:08:66:c3:60:1d:e0:d0:c8:
00:58:a0:7b:91:9b:32:99:0c:74:a8:e1:f9:a8:3d:0d:09:56:
9c:8b:38:57:f3:3c:1f:6c:df:5e:ce:77:bf:c4:94:a6:47:9a:
4b:f2:3a:e8:ed:5e:92:30:e3:f9:d7:6c:68:43:79:16:76:ae:
63:d0:a7:0d:c3:f2:86:9e:53:b3:fc:74:e8:e6:db:90:0a:e6:
bb:b4:72:b8:dc:33:69:fd:69:39:9e:c5:9d:f2:63:40:d2:a6:
7e:c4:46:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZORQ1iJkhhptKze6+bVoR/7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNjAyNGIyYzI3YTY3ZGZmNWI2NTRlZmEwNmJmN2JmYzEy
MjI2MjUwHhcNMjQxMjA0MTA0MjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmYyYTUzNjA0ZDM3ZDQ2M2FjMWYzODM5OTZjMmE1ZjIyOWU3MTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3aDheQ63T9ltGSobp1AQlDR/+cPW
C8qg+yvCodoFdGU1vUIeEp4A4aSqadN3DUoWH3ng5kg+Ee2vVLIOSkXo6wZ9zt8O
r36iU8kEMGUr6wkGQhhGxJ4NOcnLBNcqLbiA57c4eWT1D0bdA2dHQr/cVoU5HjYU
vgtgSRPHqkwnkdF6KE+HWMz4jK2rvE/96QBA/3c/J2HtZDanl/VTKaCu5x2NWJCc
2igW5G5UUTpQ8ZMWMq62KC3PkHsP2Vxdlu2IZ/LNzyFVGbb0BQJfrBA4T5TBDPE5
dTcKej9QT+xbOg6ttptdXLiuH/XZ7Lsn/R/a3dmARNLMbCKvlkVd16qe5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBbypTYE031GOsHzg5lsKl8innGbMB8GA1UdIwQY
MBaAFIpgJLLCemff9bZU76Br97/BIiYlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW1Ba3NzSjZaOV8xdGxUdm9HdjN2OEVpSmlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8zM2VjY2YtMGFlMy00YzdlLWE0NDEt
MDhlOGYwY2JiODQwLzEvRnZLbE5nVFRmVVk2d2ZPRG1Xd3FYeUtlY1pzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC8zM2VjY2YtMGFlMy00YzdlLWE0NDEtMDhlOGYwY2JiODQw
LzEvaW1Ba3NzSjZaOV8xdGxUdm9HdjN2OEVpSmlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8g5MA0G
CSqGSIb3DQEBCwUAA4IBAQBfLZdt7+Hjszlz+BzrfK4YT+6hhtVy+1tPsFeiWwrR
suwQg5bHP/4Kf0lR/2gyjav22F25kZuetJeBf9/nyt0D4SeyoXvYBuSQBnPHRDHd
UqNMJuY5vE09tmbzw5c2lBMeMVcy1OwQfl7I5dsIuBwj2rTdb/GZga0kSaRHiohs
ETL93+hICQ5Xzh1CZYfbjHLDXzuQ/EiZShHsCGbDYB3g0MgAWKB7kZsymQx0qOH5
qD0NCVacizhX8zwfbN9ezne/xJSmR5pL8jro7V6SMOP512xoQ3kWdq5j0KcNw/KG
nlOz/HTo5tuQCua7tHK43DNp/Wk5nsWd8mNA0qZ+xEbh
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:07:41 2025 by rpki-client