Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/fa39bc-5fa7-4fc1-81ec-15730e246ba6/1/Opp8U8aeHzNwIE0mPBiUqooeCJQ.roa
File: Opp8U8aeHzNwIE0mPBiUqooeCJQ.roa (raw, json)
Hash identifier: V/D3sQNgSw6lGL7igciFA6sJiWbs7FF9hEBFUMCcvFI=
Subject key identifier: 3A:9A:7C:53:C6:9E:1F:33:70:20:4D:26:3C:18:94:AA:8A:1E:08:94
Certificate issuer: /CN=dcded3ea3ba673a808cf5e6adcb51ea7f33f4203
Certificate serial: 019424B3DDEC19CD1E99ACD80B20964D5F7B
Authority key identifier: DC:DE:D3:EA:3B:A6:73:A8:08:CF:5E:6A:DC:B5:1E:A7:F3:3F:42:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3N7T6jumc6gIz15q3LUep_M_QgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/fa39bc-5fa7-4fc1-81ec-15730e246ba6/1/Opp8U8aeHzNwIE0mPBiUqooeCJQ.roa
Signing time: Thu 02 Jan 2025 01:49:15 +0000
ROA not before: Thu 02 Jan 2025 01:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50057
IP address blocks: 91.223.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:dd:ec:19:cd:1e:99:ac:d8:0b:20:96:4d:5f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcded3ea3ba673a808cf5e6adcb51ea7f33f4203
Validity
Not Before: Jan 2 01:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3a9a7c53c69e1f3370204d263c1894aa8a1e0894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:35:87:fa:66:a7:93:eb:fe:18:40:ca:21:02:
d8:06:0e:d7:c4:20:18:b9:99:0e:ba:e6:be:6a:84:
b1:17:7e:06:e5:e8:a3:41:bc:9d:28:94:27:85:ce:
6d:ea:cf:df:ca:91:7f:43:5a:e3:46:25:d9:dd:75:
b2:f5:2d:a2:8a:dd:fc:c7:f4:2b:16:6e:d3:fe:84:
f2:6c:0d:9c:7a:07:2b:88:bd:b6:01:8e:1d:bd:9c:
ec:80:2a:c1:23:8f:e3:6c:9a:c8:30:ae:e1:5a:22:
bd:e5:28:1a:df:3f:cf:f2:21:df:d8:2d:e4:4f:ac:
60:5d:2b:39:ed:49:c1:75:ab:14:be:89:8e:5d:44:
1b:5a:8a:4d:bf:63:0d:27:d9:c6:f9:83:8c:2e:10:
07:77:23:83:f6:71:76:98:f8:82:c3:f7:59:fb:c5:
58:71:fc:53:79:e7:d5:0e:71:4e:14:a7:fc:5f:5a:
ae:1c:bc:b8:9d:a0:98:71:d2:15:2b:06:31:c9:98:
b4:36:36:e6:1e:8e:7c:5d:e1:8b:f7:d5:68:45:65:
51:88:47:05:52:10:bc:25:21:46:5a:ca:29:95:46:
44:88:da:ee:0f:59:c8:69:6b:9c:f5:bb:b8:e2:69:
8f:ff:a4:39:88:fd:66:86:7c:02:56:e9:4b:51:06:
53:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:9A:7C:53:C6:9E:1F:33:70:20:4D:26:3C:18:94:AA:8A:1E:08:94
X509v3 Authority Key Identifier:
keyid:DC:DE:D3:EA:3B:A6:73:A8:08:CF:5E:6A:DC:B5:1E:A7:F3:3F:42:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3N7T6jumc6gIz15q3LUep_M_QgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/fa39bc-5fa7-4fc1-81ec-15730e246ba6/1/Opp8U8aeHzNwIE0mPBiUqooeCJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/fa39bc-5fa7-4fc1-81ec-15730e246ba6/1/3N7T6jumc6gIz15q3LUep_M_QgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.146.0/24
Signature Algorithm: sha256WithRSAEncryption
65:f3:e9:8c:2f:1b:8d:fb:35:a0:a4:cc:d6:65:18:70:f5:5f:
06:48:0a:ad:8b:c9:fb:e2:95:3a:76:52:3b:59:91:a5:28:a8:
fe:58:24:c3:6e:f4:ed:67:67:89:e6:7d:28:c7:83:ff:72:4d:
8a:7b:a5:94:a1:33:e1:37:41:fb:33:a8:2d:a6:62:d7:f1:fa:
27:b3:91:cb:94:db:4d:9f:a2:23:8a:c4:77:df:a5:71:1d:8f:
13:10:08:dc:ed:77:51:ed:33:8e:92:a5:7c:c6:ef:1b:1c:d2:
94:95:ab:b9:b6:a8:8f:29:06:d0:86:50:4e:b1:c0:89:ab:97:
10:3f:31:d3:29:f6:dd:33:01:bc:96:6a:14:4e:5c:c9:b8:cb:
9a:1b:54:85:08:22:e0:13:3d:96:81:74:f2:fa:4c:2a:d7:a8:
ff:5a:9c:f4:41:8a:71:20:a2:b7:ec:b5:08:0b:26:31:63:e3:
f7:7d:22:38:b7:ff:40:67:1b:c0:bc:b6:b5:31:60:7b:c8:d4:
a7:a4:6a:6c:8f:f5:6d:a2:37:de:38:53:b1:4c:92:17:02:07:
e6:26:54:c7:1d:43:a9:4b:72:94:f1:9f:f5:37:3b:7a:00:5b:
e2:41:1b:f3:b9:d1:f6:f4:a5:39:8e:b5:38:b8:83:e0:37:74:
56:2d:74:50
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQks93sGc0emazYCyCWTV97MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjZGVkM2VhM2JhNjczYTgwOGNmNWU2YWRjYjUxZWE3ZjMz
ZjQyMDMwHhcNMjUwMTAyMDE0OTE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTlhN2M1M2M2OWUxZjMzNzAyMDRkMjYzYzE4OTRhYThhMWUwODk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljWH+mank+v+GEDKIQLYBg7XxCAY
uZkOuua+aoSxF34G5eijQbydKJQnhc5t6s/fypF/Q1rjRiXZ3XWy9S2iit38x/Qr
Fm7T/oTybA2cegcriL22AY4dvZzsgCrBI4/jbJrIMK7hWiK95Sga3z/P8iHf2C3k
T6xgXSs57UnBdasUvomOXUQbWopNv2MNJ9nG+YOMLhAHdyOD9nF2mPiCw/dZ+8VY
cfxTeefVDnFOFKf8X1quHLy4naCYcdIVKwYxyZi0NjbmHo58XeGL99VoRWVRiEcF
UhC8JSFGWsoplUZEiNruD1nIaWuc9bu44mmP/6Q5iP1mhnwCVulLUQZT1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDqafFPGnh8zcCBNJjwYlKqKHgiUMB8GA1UdIwQY
MBaAFNze0+o7pnOoCM9eaty1HqfzP0IDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM043VDZqdW1jNmdJejE1cTNMVWVwX01fUWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9mYTM5YmMtNWZhNy00ZmMxLTgxZWMt
MTU3MzBlMjQ2YmE2LzEvT3BwOFU4YWVIek53SUUwbVBCaVVxb29lQ0pRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi9mYTM5YmMtNWZhNy00ZmMxLTgxZWMtMTU3MzBlMjQ2YmE2
LzEvM043VDZqdW1jNmdJejE1cTNMVWVwX01fUWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9+SMA0G
CSqGSIb3DQEBCwUAA4IBAQBl8+mMLxuN+zWgpMzWZRhw9V8GSAqti8n74pU6dlI7
WZGlKKj+WCTDbvTtZ2eJ5n0ox4P/ck2Ke6WUoTPhN0H7M6gtpmLX8fons5HLlNtN
n6IjisR336VxHY8TEAjc7XdR7TOOkqV8xu8bHNKUlau5tqiPKQbQhlBOscCJq5cQ
PzHTKfbdMwG8lmoUTlzJuMuaG1SFCCLgEz2WgXTy+kwq16j/Wpz0QYpxIKK37LUI
CyYxY+P3fSI4t/9AZxvAvLa1MWB7yNSnpGpsj/VtojfeOFOxTJIXAgfmJlTHHUOp
S3KU8Z/1Nzt6AFviQRvzudH29KU5jrU4uIPgN3RWLXRQ
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:47:54 2025 by rpki-client