Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/237nnYKB7i2VaJ7m52nEdfcb0Ac.roa
File: 237nnYKB7i2VaJ7m52nEdfcb0Ac.roa (raw, json)
Hash identifier: dLnbAiBZCTSW/Pqjq4dBaGgbhjyCcK3BPz7BIZYga/k=
Subject key identifier: DB:7E:E7:9D:82:81:EE:2D:95:68:9E:E6:E7:69:C4:75:F7:1B:D0:07
Certificate issuer: /CN=46224dc9396e580ff7120f257353a70c72379c93
Certificate serial: 0194258E69B97BC2279298ECD2D9BFEE7584
Authority key identifier: 46:22:4D:C9:39:6E:58:0F:F7:12:0F:25:73:53:A7:0C:72:37:9C:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RiJNyTluWA_3Eg8lc1OnDHI3nJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/237nnYKB7i2VaJ7m52nEdfcb0Ac.roa
Signing time: Thu 02 Jan 2025 05:47:57 +0000
ROA not before: Thu 02 Jan 2025 05:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31704
IP address blocks: 91.216.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:69:b9:7b:c2:27:92:98:ec:d2:d9:bf:ee:75:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46224dc9396e580ff7120f257353a70c72379c93
Validity
Not Before: Jan 2 05:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=db7ee79d8281ee2d95689ee6e769c475f71bd007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:08:91:97:20:94:27:8d:2f:c5:db:de:d4:78:
61:c3:f6:9e:97:d2:ff:9b:63:39:e1:37:91:98:e8:
1d:52:0c:fd:cc:7f:c6:f0:86:7b:45:33:4e:56:c1:
9b:c4:b0:aa:ca:69:7a:95:0a:5a:e9:99:22:d5:2b:
73:e9:ba:5d:68:32:ea:50:eb:fe:32:45:b1:a1:ee:
8c:f1:ba:20:98:7e:d2:89:87:c1:e9:a5:e3:d4:8c:
6e:61:55:e0:5a:4a:a2:1a:71:8f:b8:a5:62:82:40:
b8:38:37:fc:9b:fb:87:23:b6:cf:8d:e5:6a:2e:68:
2e:d8:ed:9a:8f:98:a6:f9:94:34:45:df:84:3b:c7:
6b:5f:d4:6c:12:8f:89:a8:3d:fa:63:b7:f0:e1:0a:
89:98:6c:5e:01:20:ea:11:20:6b:18:e9:3a:9f:45:
80:10:45:62:02:a0:c3:bd:b9:73:d4:13:10:46:57:
25:96:64:56:69:58:54:de:ed:19:ca:7f:90:af:3a:
78:52:08:49:5d:80:85:31:c6:66:4b:b7:26:f2:01:
b8:9a:79:48:a1:55:5f:91:a0:2d:c4:74:b4:6b:11:
7d:a0:fd:c7:0c:05:cd:34:88:14:2e:0d:89:70:10:
f2:74:3d:f1:9d:1a:1b:89:13:5d:26:a5:74:c1:e1:
db:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:7E:E7:9D:82:81:EE:2D:95:68:9E:E6:E7:69:C4:75:F7:1B:D0:07
X509v3 Authority Key Identifier:
keyid:46:22:4D:C9:39:6E:58:0F:F7:12:0F:25:73:53:A7:0C:72:37:9C:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RiJNyTluWA_3Eg8lc1OnDHI3nJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/237nnYKB7i2VaJ7m52nEdfcb0Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/RiJNyTluWA_3Eg8lc1OnDHI3nJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.170.0/24
Signature Algorithm: sha256WithRSAEncryption
59:e6:35:62:bf:81:7e:0a:60:1d:79:5b:46:b1:17:f0:93:cc:
50:38:09:b4:e7:43:a8:41:bd:e9:d7:00:07:86:ca:69:f8:6c:
be:5e:30:e7:2c:1b:c4:09:b4:b0:12:63:e7:0a:19:76:35:c7:
13:98:b3:15:73:55:0d:d8:bb:c4:59:8b:fc:9a:bf:38:75:e3:
1f:ff:0a:de:70:9e:14:c5:4c:4f:90:59:8f:fa:ea:14:5a:05:
5d:b9:b1:4a:2c:c4:ad:18:67:ea:8e:91:c4:11:76:c1:35:45:
c0:70:58:9c:06:61:1f:c8:7a:1d:ee:a6:db:bd:56:ab:bc:f4:
31:20:1c:5b:c8:1e:3c:03:f8:ee:a7:7e:0c:75:6b:36:40:86:
12:eb:d6:39:d7:09:6d:9d:4e:df:55:c8:b6:1c:60:0d:3e:8d:
52:1d:fb:25:06:85:97:b2:5e:d5:d8:d7:6b:79:31:3e:ed:ec:
05:2e:a3:46:01:b2:49:6d:0f:99:da:be:fe:df:c1:24:6c:f2:
fc:e2:b8:59:c4:fc:37:06:fa:30:dd:77:9d:de:48:a5:93:6a:
9a:e7:61:5f:39:f5:44:b8:5a:3a:bc:72:04:f7:94:49:3d:d5:
d3:74:4c:17:c6:9b:1d:a8:b4:b5:d5:21:d7:9d:2b:78:65:80:
0f:55:3e:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQljmm5e8Inkpjs0tm/7nWEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2MjI0ZGM5Mzk2ZTU4MGZmNzEyMGYyNTczNTNhNzBjNzIz
NzljOTMwHhcNMjUwMTAyMDU0NzU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjdlZTc5ZDgyODFlZTJkOTU2ODllZTZlNzY5YzQ3NWY3MWJkMDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgiRlyCUJ40vxdve1Hhhw/ael9L/
m2M54TeRmOgdUgz9zH/G8IZ7RTNOVsGbxLCqyml6lQpa6Zki1Stz6bpdaDLqUOv+
MkWxoe6M8bogmH7SiYfB6aXj1IxuYVXgWkqiGnGPuKVigkC4ODf8m/uHI7bPjeVq
Lmgu2O2aj5im+ZQ0Rd+EO8drX9RsEo+JqD36Y7fw4QqJmGxeASDqESBrGOk6n0WA
EEViAqDDvblz1BMQRlcllmRWaVhU3u0Zyn+Qrzp4UghJXYCFMcZmS7cm8gG4mnlI
oVVfkaAtxHS0axF9oP3HDAXNNIgULg2JcBDydD3xnRobiRNdJqV0weHbtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNt+552Cge4tlWie5udpxHX3G9AHMB8GA1UdIwQY
MBaAFEYiTck5blgP9xIPJXNTpwxyN5yTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmlKTnlUbHVXQV8zRWc4bGMxT25ESEkzbkpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9lMDVkZmYtYmUxMi00ZTgyLTg3M2Qt
ZDMxYTMzZmM1ZTk5LzEvMjM3bm5ZS0I3aTJWYUo3bTUybkVkZmNiMEFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9lMDVkZmYtYmUxMi00ZTgyLTg3M2QtZDMxYTMzZmM1ZTk5
LzEvUmlKTnlUbHVXQV8zRWc4bGMxT25ESEkzbkpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9iqMA0G
CSqGSIb3DQEBCwUAA4IBAQBZ5jViv4F+CmAdeVtGsRfwk8xQOAm050OoQb3p1wAH
hspp+Gy+XjDnLBvECbSwEmPnChl2NccTmLMVc1UN2LvEWYv8mr84deMf/wrecJ4U
xUxPkFmP+uoUWgVdubFKLMStGGfqjpHEEXbBNUXAcFicBmEfyHod7qbbvVarvPQx
IBxbyB48A/jup34MdWs2QIYS69Y51wltnU7fVci2HGANPo1SHfslBoWXsl7V2Ndr
eTE+7ewFLqNGAbJJbQ+Z2r7+38EkbPL84rhZxPw3Bvow3Xed3kilk2qa52FfOfVE
uFo6vHIE95RJPdXTdEwXxpsdqLS11SHXnSt4ZYAPVT5R
-----END CERTIFICATE-----
Generated at Fri Apr 25 08:32:36 2025 by rpki-client