Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/pNLQBk-pCBWPUN1YAHMpq6u6Ykc.roa
File: pNLQBk-pCBWPUN1YAHMpq6u6Ykc.roa (raw, json)
Hash identifier: Jz05ulPrPHjq0CVkRZf/quXuzb1cOwpKThALnZqaWO8=
Subject key identifier: A4:D2:D0:06:4F:A9:08:15:8F:50:DD:58:00:73:29:AB:AB:BA:62:47
Certificate issuer: /CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Certificate serial: 018D03E2F00183362C5A4A68F47CE4D4F9CF
Authority key identifier: 49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/pNLQBk-pCBWPUN1YAHMpq6u6Ykc.roa
Signing time: Sat 13 Jan 2024 17:33:40 +0000
ROA not before: Sat 13 Jan 2024 17:33:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203217
IP address blocks: 81.90.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:03:e2:f0:01:83:36:2c:5a:4a:68:f4:7c:e4:d4:f9:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49216f5c165b827a7fd73d8107aebd2f63c63e24
Validity
Not Before: Jan 13 17:33:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4d2d0064fa908158f50dd58007329ababba6247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:f6:6e:fa:66:56:b7:c0:a2:9c:8c:60:d4:76:
46:59:f5:ce:37:01:a2:7d:3d:f7:13:8f:ab:5e:33:
79:a0:07:2c:9c:77:00:1e:05:d2:0a:07:9c:40:31:
e7:42:09:ee:80:53:6a:f0:8a:cc:2c:b7:64:2c:3c:
11:22:c4:1d:a5:4e:7a:45:60:0f:c9:c7:2e:57:34:
48:1c:a9:ba:8a:1d:cc:9c:48:8e:66:6f:df:e5:4d:
62:23:65:a7:67:d7:76:e1:cd:75:b1:83:b4:b2:56:
77:56:83:df:79:30:e1:f2:ac:37:b4:62:72:78:8d:
b8:97:dc:4b:16:c7:04:79:7b:3d:4f:f6:3c:92:ff:
c5:1a:9e:7a:a9:7d:15:88:75:f5:d2:5f:34:71:ca:
83:03:7b:20:90:f8:db:d2:a9:db:16:e4:91:45:cc:
b9:c8:a4:fa:63:d9:7d:43:95:f7:1c:5f:63:66:1b:
ff:7c:8f:5b:5d:c1:0a:78:11:16:1e:5b:03:b7:1d:
ab:f9:da:7a:28:95:df:f3:f2:25:ea:2b:ba:0c:3a:
a5:d1:d3:0f:82:fc:71:90:e4:ec:45:d0:d7:43:71:
fe:bb:b8:16:fa:22:6e:a9:77:92:ae:ef:c8:d1:6a:
20:19:68:a7:89:63:48:89:f2:35:57:76:a3:e1:5c:
6f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D2:D0:06:4F:A9:08:15:8F:50:DD:58:00:73:29:AB:AB:BA:62:47
X509v3 Authority Key Identifier:
keyid:49:21:6F:5C:16:5B:82:7A:7F:D7:3D:81:07:AE:BD:2F:63:C6:3E:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSFvXBZbgnp_1z2BB669L2PGPiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/pNLQBk-pCBWPUN1YAHMpq6u6Ykc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/4842a9-9fcd-4bb6-bb04-0dbbc249e657/1/SSFvXBZbgnp_1z2BB669L2PGPiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.17.0/24
Signature Algorithm: sha256WithRSAEncryption
67:ca:7b:07:2b:44:b9:d1:3d:47:d4:37:4e:28:c2:b4:55:8e:
ed:fd:cf:bb:dd:f3:c7:ae:8d:bb:9d:ba:e4:59:58:4e:62:56:
20:8d:22:17:c3:82:8e:34:22:43:27:12:bc:17:61:44:cd:2e:
4e:75:5b:ea:b0:80:c5:37:1e:e0:b0:74:19:6e:ff:17:e0:89:
d3:78:e8:6d:56:ea:c1:2f:59:d5:68:4c:4f:80:50:3e:29:56:
bc:ec:87:04:01:ef:73:b9:c4:3b:78:d1:ea:a5:39:f2:69:d8:
1f:73:22:6f:5a:b7:28:82:1a:50:59:76:03:09:10:d4:26:33:
f1:74:5f:ae:17:aa:51:a6:38:89:7e:89:3c:57:c8:f9:b6:69:
23:d4:44:c7:9c:8e:ce:2b:7b:3d:6f:61:fa:b2:9b:79:f3:ea:
5c:5d:fd:9d:45:4c:4c:6f:bf:91:76:04:da:7d:0a:ad:66:fe:
b5:57:c1:2e:ac:0d:6e:10:4e:a8:59:97:89:1a:3b:7d:fc:2c:
57:fd:94:5c:7b:f6:34:95:99:d9:f4:35:03:4b:a4:3c:11:37:
4b:12:a7:1a:53:2d:e7:c7:24:22:14:b9:49:64:e2:41:49:3d:
40:e1:a4:8a:d0:22:01:36:96:55:91:1f:7c:50:03:29:cd:e7:
4d:83:3e:25
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0D4vABgzYsWkpo9Hzk1PnPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5MjE2ZjVjMTY1YjgyN2E3ZmQ3M2Q4MTA3YWViZDJmNjNj
NjNlMjQwHhcNMjQwMTEzMTczMzQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNGQyZDAwNjRmYTkwODE1OGY1MGRkNTgwMDczMjlhYmFiYmE2MjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8PZu+mZWt8CinIxg1HZGWfXONwGi
fT33E4+rXjN5oAcsnHcAHgXSCgecQDHnQgnugFNq8IrMLLdkLDwRIsQdpU56RWAP
yccuVzRIHKm6ih3MnEiOZm/f5U1iI2WnZ9d24c11sYO0slZ3VoPfeTDh8qw3tGJy
eI24l9xLFscEeXs9T/Y8kv/FGp56qX0ViHX10l80ccqDA3sgkPjb0qnbFuSRRcy5
yKT6Y9l9Q5X3HF9jZhv/fI9bXcEKeBEWHlsDtx2r+dp6KJXf8/Il6iu6DDql0dMP
gvxxkOTsRdDXQ3H+u7gW+iJuqXeSru/I0WogGWiniWNIifI1V3aj4VxvIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKTS0AZPqQgVj1DdWABzKaurumJHMB8GA1UdIwQY
MBaAFEkhb1wWW4J6f9c9gQeuvS9jxj4kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQt
MGRiYmMyNDllNjU3LzEvcE5MUUJrLXBDQldQVU4xWUFITXBxNnU2WWtjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi80ODQyYTktOWZjZC00YmI2LWJiMDQtMGRiYmMyNDllNjU3
LzEvU1NGdlhCWmJnbnBfMXoyQkI2NjlMMlBHUGlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUVoRMA0G
CSqGSIb3DQEBCwUAA4IBAQBnynsHK0S50T1H1DdOKMK0VY7t/c+73fPHro27nbrk
WVhOYlYgjSIXw4KONCJDJxK8F2FEzS5OdVvqsIDFNx7gsHQZbv8X4InTeOhtVurB
L1nVaExPgFA+KVa87IcEAe9zucQ7eNHqpTnyadgfcyJvWrcoghpQWXYDCRDUJjPx
dF+uF6pRpjiJfok8V8j5tmkj1ETHnI7OK3s9b2H6spt58+pcXf2dRUxMb7+RdgTa
fQqtZv61V8EurA1uEE6oWZeJGjt9/CxX/ZRce/Y0lZnZ9DUDS6Q8ETdLEqcaUy3n
xyQiFLlJZOJBST1A4aSK0CIBNpZVkR98UAMpzedNgz4l
-----END CERTIFICATE-----
Generated at Sun Apr 6 19:36:31 2025 by rpki-client