Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/I3_IiNfwaVT6yGAou-Y_8jj1fjo.roa
File: I3_IiNfwaVT6yGAou-Y_8jj1fjo.roa (raw, json)
Hash identifier: 5R2EP2O5kXETgv526wumPipGy63WjecYbGIbTlL/qiU=
Subject key identifier: 23:7F:C8:88:D7:F0:69:54:FA:C8:60:28:BB:E6:3F:F2:38:F5:7E:3A
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 019427462A2CF25AD79776FA0836515319F1
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/I3_IiNfwaVT6yGAou-Y_8jj1fjo.roa
Signing time: Thu 02 Jan 2025 13:48:17 +0000
ROA not before: Thu 02 Jan 2025 13:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41047
IP address blocks: 87.237.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:2a:2c:f2:5a:d7:97:76:fa:08:36:51:53:19:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 2 13:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=237fc888d7f06954fac86028bbe63ff238f57e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:10:65:fc:6b:02:33:d7:fb:e3:fc:44:67:dd:
32:28:be:69:01:9e:f1:0d:c0:b4:35:4f:03:0e:05:
29:55:74:57:4e:3a:d9:67:eb:e2:84:22:3e:4c:5a:
b3:ae:65:a6:24:a1:60:78:29:a1:8e:2a:2e:46:90:
e6:a5:4e:b3:aa:a6:fe:f2:cd:96:77:16:04:3d:9e:
da:90:99:aa:d2:89:59:75:99:48:78:ad:c2:80:c1:
a7:ce:e8:10:e9:de:24:ae:b3:81:30:42:f6:1a:95:
b0:7b:9c:7e:69:6a:a3:ff:e5:31:25:91:3d:51:47:
88:9f:41:be:41:5b:90:c9:8b:66:19:3a:14:9c:fd:
16:3b:7e:ce:7d:81:a2:4f:28:46:17:18:9f:3a:19:
68:52:af:d1:5b:ab:94:73:3a:d5:f3:0c:09:f6:a5:
bc:32:63:70:d1:a9:04:fb:0d:0a:c8:17:1c:de:ab:
53:c9:db:48:51:f6:85:54:ac:65:36:04:3e:af:0f:
c4:e4:c8:ae:3b:35:3f:1c:9e:9e:bc:ff:d8:c3:fc:
38:83:37:f2:ab:c6:b8:ad:9d:21:c5:f2:60:19:e6:
61:31:8b:89:1e:8e:3f:62:a5:ea:8d:46:7a:66:70:
c0:5f:c7:6a:e0:e3:1d:cb:83:d3:83:59:7d:ff:64:
41:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7F:C8:88:D7:F0:69:54:FA:C8:60:28:BB:E6:3F:F2:38:F5:7E:3A
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/I3_IiNfwaVT6yGAou-Y_8jj1fjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.165.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:68:b1:27:d3:ec:60:75:bf:73:a3:21:66:e1:27:95:62:d7:
3c:32:95:4d:a0:d3:e3:8f:c5:48:ef:1b:e6:a3:27:99:c7:63:
6d:b6:92:d7:dd:99:50:34:29:40:63:00:2b:ff:fe:d4:bb:20:
90:ad:be:43:1a:b4:ff:4a:86:96:01:84:85:98:c5:3b:d3:a2:
f7:e9:2d:c8:73:fe:c3:db:08:3d:e4:56:71:8b:94:d3:bd:f8:
09:62:d6:52:77:0f:8c:53:2c:8e:18:6d:1c:f9:0a:47:dd:a6:
1e:ec:73:ef:22:b4:07:ec:0d:c3:a6:b6:6a:2e:e9:ac:98:08:
b1:19:f7:74:a7:2d:a9:3a:9e:f1:06:12:13:c9:7b:23:12:63:
af:a0:2d:2a:f9:19:0a:ff:23:92:c4:ce:77:43:86:e6:48:34:
8e:5e:2b:82:f7:6a:6b:c4:9e:af:a2:ee:f6:c2:80:8a:55:34:
69:b9:69:bf:19:5e:25:c4:f5:e6:bf:ee:61:2b:db:b7:55:39:
f6:b1:ad:f9:72:79:80:fb:48:a6:22:3a:99:90:b5:f9:57:47:
41:38:7e:19:5e:ed:91:7e:20:e4:72:6c:5f:88:1b:2d:f2:38:
49:a5:50:bf:e8:0b:67:b2:ae:2e:8a:a7:9a:08:77:de:19:df:
14:6b:b9:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnRios8lrXl3b6CDZRUxnxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjUwMTAyMTM0ODE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzdmYzg4OGQ3ZjA2OTU0ZmFjODYwMjhiYmU2M2ZmMjM4ZjU3ZTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhBl/GsCM9f74/xEZ90yKL5pAZ7x
DcC0NU8DDgUpVXRXTjrZZ+vihCI+TFqzrmWmJKFgeCmhjiouRpDmpU6zqqb+8s2W
dxYEPZ7akJmq0olZdZlIeK3CgMGnzugQ6d4krrOBMEL2GpWwe5x+aWqj/+UxJZE9
UUeIn0G+QVuQyYtmGToUnP0WO37OfYGiTyhGFxifOhloUq/RW6uUczrV8wwJ9qW8
MmNw0akE+w0KyBcc3qtTydtIUfaFVKxlNgQ+rw/E5MiuOzU/HJ6evP/Yw/w4gzfy
q8a4rZ0hxfJgGeZhMYuJHo4/YqXqjUZ6ZnDAX8dq4OMdy4PTg1l9/2RBtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCN/yIjX8GlU+shgKLvmP/I49X46MB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvSTNfSWlOZndhVlQ2eUdBb3UtWV84amoxZmpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV+2lMA0G
CSqGSIb3DQEBCwUAA4IBAQCmaLEn0+xgdb9zoyFm4SeVYtc8MpVNoNPjj8VI7xvm
oyeZx2NttpLX3ZlQNClAYwAr//7UuyCQrb5DGrT/SoaWAYSFmMU706L36S3Ic/7D
2wg95FZxi5TTvfgJYtZSdw+MUyyOGG0c+QpH3aYe7HPvIrQH7A3DprZqLumsmAix
Gfd0py2pOp7xBhITyXsjEmOvoC0q+RkK/yOSxM53Q4bmSDSOXiuC92prxJ6vou72
woCKVTRpuWm/GV4lxPXmv+5hK9u3VTn2sa35cnmA+0imIjqZkLX5V0dBOH4ZXu2R
fiDkcmxfiBst8jhJpVC/6Atnsq4uiqeaCHfeGd8Ua7nV
-----END CERTIFICATE-----
Generated at Sun Apr 6 11:42:02 2025 by rpki-client