Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/E2kHiMdYodrnFH2KHA9US6yByGg.roa
File: E2kHiMdYodrnFH2KHA9US6yByGg.roa (raw, json)
Hash identifier: 4gqy0Z2gsQk+minstyMsiIr4y+M4uI9pxsNNqBMzDmE=
Subject key identifier: 13:69:07:88:C7:58:A1:DA:E7:14:7D:8A:1C:0F:54:4B:AC:81:C8:68
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 01942521BAA0B4759C84711B8F9C2447BDFF
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/E2kHiMdYodrnFH2KHA9US6yByGg.roa
Signing time: Thu 02 Jan 2025 03:49:14 +0000
ROA not before: Thu 02 Jan 2025 03:49:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 91.213.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:ba:a0:b4:75:9c:84:71:1b:8f:9c:24:47:bd:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Jan 2 03:49:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=13690788c758a1dae7147d8a1c0f544bac81c868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2d:4c:96:6c:54:0b:61:4d:07:4b:a3:97:97:
d9:37:40:00:35:c2:35:a5:35:7c:d3:e1:e6:a4:7f:
c2:b9:30:e8:a4:69:99:1d:d4:5a:0e:72:39:cb:7d:
ac:ca:0f:f8:f9:47:2b:04:cd:66:94:05:0e:ea:b5:
20:ff:f4:25:1a:b2:e0:3e:27:70:2e:dc:bb:f5:a0:
38:02:a6:dc:9f:b1:02:73:87:05:f9:00:86:37:d0:
d2:80:e3:7c:d5:be:3d:00:9c:b0:05:2d:d9:2a:53:
70:bb:94:dc:69:7f:5b:8b:23:48:ee:92:7f:5a:29:
c4:95:78:6e:fb:29:e8:87:d2:3c:15:7a:c7:98:f9:
62:ab:9f:f9:8e:1e:79:08:b0:1e:86:1a:6d:14:65:
e2:07:c3:b6:f2:07:df:48:79:08:45:27:33:4d:ab:
ac:b3:40:ec:2e:cd:ab:77:4b:b3:b1:4e:79:53:ac:
44:80:4c:88:61:7b:7b:9f:3a:85:dd:0e:c4:70:2a:
fe:71:c3:be:80:25:b6:26:20:c0:9f:52:74:2a:fb:
f8:14:da:57:e9:c0:57:3a:47:27:ce:94:b1:72:c1:
83:65:9c:b7:50:2c:e5:13:05:8a:31:e3:68:52:b4:
73:eb:c9:75:68:45:31:83:fb:3b:4f:57:a7:55:cb:
5d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:69:07:88:C7:58:A1:DA:E7:14:7D:8A:1C:0F:54:4B:AC:81:C8:68
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/E2kHiMdYodrnFH2KHA9US6yByGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.186.0/24
Signature Algorithm: sha256WithRSAEncryption
61:bd:53:6f:e7:d9:d4:76:0d:82:37:d2:b1:4c:eb:99:34:41:
7f:b1:d6:a4:b1:0a:c2:b0:82:30:a5:0e:99:77:45:ac:73:57:
65:8c:0c:32:9d:04:ff:8b:84:48:fe:d8:b9:da:e4:71:4c:b1:
04:bf:10:05:30:3f:1a:d6:df:0c:2d:22:db:fc:0e:52:31:6e:
ea:d5:d5:5e:a3:09:d8:56:57:7b:70:aa:cf:58:5a:5a:c4:20:
0c:0f:00:32:00:57:8c:c4:25:a9:47:bb:f3:9e:9c:5a:30:ff:
be:d3:e9:ab:0b:0d:79:8c:c2:59:69:f0:c8:dc:b8:eb:05:0f:
0e:fa:6d:50:37:f0:19:62:45:16:b7:05:f6:fc:50:d4:16:70:
b1:60:54:93:31:12:c1:73:d6:6a:fd:b2:d1:1b:6d:f1:57:57:
3e:4a:47:58:69:70:36:ae:81:65:72:15:bf:3a:d8:ea:1f:d6:
95:80:d1:5e:ee:ed:13:88:66:9a:94:16:8c:12:7d:2a:01:1e:
49:36:09:86:3c:7f:9d:92:07:3b:71:ea:ec:cb:60:5c:ea:9b:
1a:86:d2:3b:d1:b4:3b:cf:4c:50:ec:73:cb:1e:36:b8:8b:ff:
16:8b:8b:ab:6f:a4:97:9f:cc:4e:a0:c4:89:b6:b5:fa:85:eb:
2f:ef:64:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIbqgtHWchHEbj5wkR73/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNDczODM4OWNiM2I5OThlYzRmYTZkNDI3MmY4ZGQ3OTlm
YmM0YTkwHhcNMjUwMTAyMDM0OTE0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzY5MDc4OGM3NThhMWRhZTcxNDdkOGExYzBmNTQ0YmFjODFjODY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuy1MlmxUC2FNB0ujl5fZN0AANcI1
pTV80+HmpH/CuTDopGmZHdRaDnI5y32syg/4+UcrBM1mlAUO6rUg//QlGrLgPidw
Lty79aA4Aqbcn7ECc4cF+QCGN9DSgON81b49AJywBS3ZKlNwu5TcaX9biyNI7pJ/
WinElXhu+ynoh9I8FXrHmPliq5/5jh55CLAehhptFGXiB8O28gffSHkIRSczTaus
s0DsLs2rd0uzsU55U6xEgEyIYXt7nzqF3Q7EcCr+ccO+gCW2JiDAn1J0Kvv4FNpX
6cBXOkcnzpSxcsGDZZy3UCzlEwWKMeNoUrRz68l1aEUxg/s7T1enVctdrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBNpB4jHWKHa5xR9ihwPVEusgchoMB8GA1UdIwQY
MBaAFB9HODics7mY7E+m1CcvjdeZ+8SpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDBjNE9KeXp1WmpzVDZiVUp5LU4xNW43eEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS81MTc2OTQtYzhhMS00NThiLTljZjIt
NmM3ZTU2ODU4OTBjLzEvRTJrSGlNZFlvZHJuRkgyS0hBOVVTNnlCeUdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS81MTc2OTQtYzhhMS00NThiLTljZjItNmM3ZTU2ODU4OTBj
LzEvSDBjNE9KeXp1WmpzVDZiVUp5LU4xNW43eEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9W6MA0G
CSqGSIb3DQEBCwUAA4IBAQBhvVNv59nUdg2CN9KxTOuZNEF/sdaksQrCsIIwpQ6Z
d0Wsc1dljAwynQT/i4RI/ti52uRxTLEEvxAFMD8a1t8MLSLb/A5SMW7q1dVeownY
Vld7cKrPWFpaxCAMDwAyAFeMxCWpR7vznpxaMP++0+mrCw15jMJZafDI3LjrBQ8O
+m1QN/AZYkUWtwX2/FDUFnCxYFSTMRLBc9Zq/bLRG23xV1c+SkdYaXA2roFlchW/
OtjqH9aVgNFe7u0TiGaalBaMEn0qAR5JNgmGPH+dkgc7cersy2Bc6psahtI70bQ7
z0xQ7HPLHja4i/8Wi4urb6SXn8xOoMSJtrX6hesv72TQ
-----END CERTIFICATE-----
Generated at Fri Apr 4 19:13:50 2025 by rpki-client