Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/VTdOF6vt4DJ2gAE9-rspP9YAtwY.roa
File: VTdOF6vt4DJ2gAE9-rspP9YAtwY.roa (raw, json)
Hash identifier: 1siesNie5rYzgdzSW4S1a0o9vqGP6HXUGewmb9Xhzlk=
Subject key identifier: 55:37:4E:17:AB:ED:E0:32:76:80:01:3D:FA:BB:29:3F:D6:00:B7:06
Certificate issuer: /CN=b14881fa3e75a3851cf70419135abdd529d2f682
Certificate serial: 019420D660D2078608AA1791406AB59324F7
Authority key identifier: B1:48:81:FA:3E:75:A3:85:1C:F7:04:19:13:5A:BD:D5:29:D2:F6:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUiB-j51o4Uc9wQZE1q91SnS9oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/VTdOF6vt4DJ2gAE9-rspP9YAtwY.roa
Signing time: Wed 01 Jan 2025 07:48:27 +0000
ROA not before: Wed 01 Jan 2025 07:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50446
IP address blocks: 91.216.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:60:d2:07:86:08:aa:17:91:40:6a:b5:93:24:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14881fa3e75a3851cf70419135abdd529d2f682
Validity
Not Before: Jan 1 07:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=55374e17abede0327680013dfabb293fd600b706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b2:86:02:d2:10:48:4c:90:c1:d8:bd:8a:5f:
89:8f:18:eb:37:0d:e2:5e:1c:5f:63:9c:bf:81:2c:
cc:da:f9:39:04:d7:21:cb:c1:05:f7:b7:c4:de:c5:
fb:88:7b:7a:3f:da:48:bc:69:ed:70:b9:33:97:15:
04:89:e2:23:a9:a7:65:0c:e8:c5:d6:6d:e0:5c:01:
ea:e6:b9:3e:84:7d:77:b5:30:cb:88:3c:c3:da:b5:
b7:04:0a:61:26:1c:5d:75:57:96:0d:db:e0:5c:28:
c9:f8:9d:15:98:e1:73:e2:75:fd:1a:44:a5:1c:1f:
39:e6:57:61:e1:07:da:8d:3e:dc:7f:44:9e:f1:eb:
69:b1:20:41:3d:1e:bf:69:b3:d7:ee:ea:4d:2e:e8:
a9:f5:58:24:02:19:d6:f6:6f:d3:a3:25:7a:ff:dc:
36:cf:a9:26:64:53:29:1b:00:2c:5a:1b:61:b9:10:
e8:8e:e7:86:cd:ba:ba:04:2b:5d:cc:84:c7:71:45:
86:ed:ee:0e:8c:56:35:8d:ca:26:a4:d2:ca:52:b4:
59:f4:94:86:02:f9:98:a8:cd:eb:19:68:3a:21:75:
45:f9:81:b7:1a:8d:72:59:66:13:8d:bb:73:ff:6d:
be:91:f2:31:db:0a:5b:b6:4d:d3:96:a5:ff:66:c6:
59:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:37:4E:17:AB:ED:E0:32:76:80:01:3D:FA:BB:29:3F:D6:00:B7:06
X509v3 Authority Key Identifier:
keyid:B1:48:81:FA:3E:75:A3:85:1C:F7:04:19:13:5A:BD:D5:29:D2:F6:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUiB-j51o4Uc9wQZE1q91SnS9oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/VTdOF6vt4DJ2gAE9-rspP9YAtwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/sUiB-j51o4Uc9wQZE1q91SnS9oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.234.0/24
Signature Algorithm: sha256WithRSAEncryption
61:2c:41:7b:80:d1:94:7c:c5:88:5f:86:68:f5:c3:bf:e0:ef:
e6:b7:7f:33:45:95:b3:3c:7f:f2:83:cb:e2:07:68:6b:db:d6:
e3:7f:33:7f:57:75:6a:06:0c:f4:80:2e:58:bd:e7:14:fb:37:
31:e7:b3:a9:42:b8:1c:8d:0a:b2:43:dc:63:ea:85:97:7d:d1:
0f:d3:1f:47:67:e4:5d:65:a0:6c:79:00:28:be:18:05:f8:b0:
1a:bb:c4:66:7a:7a:54:6e:cc:b4:4f:72:c0:89:04:2e:f6:df:
42:63:60:b9:6c:83:4d:66:20:75:2a:94:d4:bc:1c:c7:fe:80:
8b:2c:0c:83:dd:60:ed:3a:65:3f:cd:9e:50:f9:52:8c:86:70:
73:0f:d1:e3:bd:e9:bf:ab:3d:9f:eb:fd:a5:6c:fc:b9:9f:b9:
c2:a2:33:4f:e6:c7:a1:fe:a6:10:3a:f4:38:88:c3:ef:ff:d6:
50:4c:d1:57:ae:8f:db:f2:75:17:87:2b:65:2d:c1:26:db:1f:
93:38:ae:f4:e0:44:d5:ed:94:3d:94:31:60:29:26:78:a5:d9:
cc:e3:cd:7b:d5:a7:c7:b7:6f:0b:51:b4:7a:84:1f:1c:89:23:
ff:15:19:b0:ba:78:a4:ee:be:95:c1:6f:c3:df:64:90:44:d0:
63:49:19:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQg1mDSB4YIqheRQGq1kyT3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNDg4MWZhM2U3NWEzODUxY2Y3MDQxOTEzNWFiZGQ1Mjlk
MmY2ODIwHhcNMjUwMTAxMDc0ODI3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTM3NGUxN2FiZWRlMDMyNzY4MDAxM2RmYWJiMjkzZmQ2MDBiNzA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1LKGAtIQSEyQwdi9il+JjxjrNw3i
XhxfY5y/gSzM2vk5BNchy8EF97fE3sX7iHt6P9pIvGntcLkzlxUEieIjqadlDOjF
1m3gXAHq5rk+hH13tTDLiDzD2rW3BAphJhxddVeWDdvgXCjJ+J0VmOFz4nX9GkSl
HB855ldh4QfajT7cf0Se8etpsSBBPR6/abPX7upNLuip9VgkAhnW9m/ToyV6/9w2
z6kmZFMpGwAsWhthuRDojueGzbq6BCtdzITHcUWG7e4OjFY1jcompNLKUrRZ9JSG
AvmYqM3rGWg6IXVF+YG3Go1yWWYTjbtz/22+kfIx2wpbtk3TlqX/ZsZZ/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFU3Ther7eAydoABPfq7KT/WALcGMB8GA1UdIwQY
MBaAFLFIgfo+daOFHPcEGRNavdUp0vaCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1VpQi1qNTFvNFVjOXdRWkUxcTkxU25TOW9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy85NGM3MGEtZmUxZC00NDIwLTk5ODUt
MjBmMzMzYzI1M2FjLzEvVlRkT0Y2dnQ0REoyZ0FFOS1yc3BQOVlBdHdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy85NGM3MGEtZmUxZC00NDIwLTk5ODUtMjBmMzMzYzI1M2Fj
LzEvc1VpQi1qNTFvNFVjOXdRWkUxcTkxU25TOW9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9jqMA0G
CSqGSIb3DQEBCwUAA4IBAQBhLEF7gNGUfMWIX4Zo9cO/4O/mt38zRZWzPH/yg8vi
B2hr29bjfzN/V3VqBgz0gC5YvecU+zcx57OpQrgcjQqyQ9xj6oWXfdEP0x9HZ+Rd
ZaBseQAovhgF+LAau8RmenpUbsy0T3LAiQQu9t9CY2C5bINNZiB1KpTUvBzH/oCL
LAyD3WDtOmU/zZ5Q+VKMhnBzD9Hjvem/qz2f6/2lbPy5n7nCojNP5seh/qYQOvQ4
iMPv/9ZQTNFXro/b8nUXhytlLcEm2x+TOK704ETV7ZQ9lDFgKSZ4pdnM48171afH
t28LUbR6hB8ciSP/FRmwunik7r6VwW/D32SQRNBjSRkT
-----END CERTIFICATE-----
Generated at Fri Apr 25 05:55:30 2025 by rpki-client