Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/sL81ThqOdiuggWYnv3U7dVFV4tQ.roa
File: sL81ThqOdiuggWYnv3U7dVFV4tQ.roa (raw, json)
Hash identifier: 9lHlaxhYv60ZuaT3Wq1aBGjk7nIJ6koMpcmTPm5Lg44=
Subject key identifier: B0:BF:35:4E:1A:8E:76:2B:A0:81:66:27:BF:75:3B:75:51:55:E2:D4
Certificate issuer: /CN=17b8beb555dafa82c3d6aa336909ae5ade35a83d
Certificate serial: 0194258F3929786EED9A4D353A3C4CC0848D
Authority key identifier: 17:B8:BE:B5:55:DA:FA:82:C3:D6:AA:33:69:09:AE:5A:DE:35:A8:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7i-tVXa-oLD1qozaQmuWt41qD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/sL81ThqOdiuggWYnv3U7dVFV4tQ.roa
Signing time: Thu 02 Jan 2025 05:48:50 +0000
ROA not before: Thu 02 Jan 2025 05:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204864
IP address blocks: 91.200.70.0/24 maxlen: 24
91.200.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:39:29:78:6e:ed:9a:4d:35:3a:3c:4c:c0:84:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b8beb555dafa82c3d6aa336909ae5ade35a83d
Validity
Not Before: Jan 2 05:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0bf354e1a8e762ba0816627bf753b755155e2d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:46:60:61:5e:37:60:4d:ee:2f:d8:f5:aa:32:
c2:39:8f:f8:51:fe:7c:67:cc:46:ee:19:70:62:76:
74:a3:24:b7:3a:f8:b8:b4:e6:f0:6c:62:3b:7e:ca:
f4:06:a7:0d:57:76:6c:d7:34:0c:e0:f7:d7:8d:52:
b0:da:bb:84:de:16:07:4e:9e:57:c4:c9:6a:22:0a:
a6:c5:cd:27:40:3e:b9:f5:22:ca:76:ff:e1:4d:3e:
ed:73:45:29:97:38:c8:71:a5:07:43:50:41:9c:06:
e0:1f:78:56:6f:ef:9f:3e:a7:b5:08:df:78:e5:08:
74:38:b5:d1:ed:2e:67:4e:c3:da:3d:1f:ed:9a:26:
5e:22:91:54:87:30:1f:86:23:f9:70:1c:35:c2:60:
98:74:bd:eb:75:40:22:b5:5b:51:b1:ae:3e:43:6b:
d4:55:59:e3:99:2c:8a:7d:8f:5f:26:40:a5:2f:52:
3e:a6:68:38:6c:15:60:cc:1d:cf:75:bb:95:8f:36:
77:6a:c5:e1:a0:b4:a5:55:c0:1d:22:68:62:f5:76:
3e:3c:9f:e3:33:e4:e1:75:ed:96:34:0b:27:26:98:
af:16:28:a4:ca:3a:6e:f0:5a:62:21:6e:98:37:74:
e6:da:bb:18:0b:38:f5:1b:f8:63:a7:0c:c9:23:95:
47:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BF:35:4E:1A:8E:76:2B:A0:81:66:27:BF:75:3B:75:51:55:E2:D4
X509v3 Authority Key Identifier:
keyid:17:B8:BE:B5:55:DA:FA:82:C3:D6:AA:33:69:09:AE:5A:DE:35:A8:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7i-tVXa-oLD1qozaQmuWt41qD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/sL81ThqOdiuggWYnv3U7dVFV4tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/51519c-1e93-44a9-ac70-7e242674defc/1/F7i-tVXa-oLD1qozaQmuWt41qD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.70.0/23
Signature Algorithm: sha256WithRSAEncryption
18:d5:d2:ba:9d:ad:50:b6:0c:81:bc:5b:3b:96:0d:a6:65:96:
13:98:7f:a4:fa:d2:05:46:70:2f:f2:72:fc:4e:b9:9a:c7:ce:
92:87:1c:d5:f7:13:93:ab:72:d2:9e:db:e0:99:57:86:c4:26:
3f:25:13:8f:00:8a:92:a4:78:ae:3c:04:fb:a9:b4:87:71:fe:
e3:68:60:26:68:f2:21:60:f4:08:bb:31:14:99:62:f3:de:b7:
1b:a5:83:8f:2b:e8:93:45:0d:84:62:a0:27:f6:cf:d1:a7:7d:
23:83:81:d0:dc:a5:90:fd:16:f2:be:fc:7c:4b:a5:af:42:94:
10:1b:e6:33:95:f2:50:c2:bb:0e:7c:71:a9:4b:be:30:16:a2:
74:2c:1b:5e:13:ee:07:4a:81:c4:e1:68:ba:39:eb:61:5e:17:
d7:c8:c4:ae:19:c6:f3:98:46:56:8a:2f:53:fc:96:78:92:54:
b6:d1:0a:b5:44:a3:d1:89:53:08:7b:cd:00:fe:23:72:3a:05:
fd:52:77:1e:0f:4b:83:8f:1f:12:bb:9e:12:53:98:52:f3:39:
d9:10:81:e6:31:a0:b5:21:21:9d:4e:a2:9f:e3:5b:70:15:76:
57:83:9e:78:f7:dc:44:66:ee:31:6a:1d:fe:65:c5:45:c9:0a:
23:ce:88:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQljzkpeG7tmk01OjxMwISNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3YjhiZWI1NTVkYWZhODJjM2Q2YWEzMzY5MDlhZTVhZGUz
NWE4M2QwHhcNMjUwMTAyMDU0ODUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGJmMzU0ZTFhOGU3NjJiYTA4MTY2MjdiZjc1M2I3NTUxNTVlMmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskZgYV43YE3uL9j1qjLCOY/4Uf58
Z8xG7hlwYnZ0oyS3Ovi4tObwbGI7fsr0BqcNV3Zs1zQM4PfXjVKw2ruE3hYHTp5X
xMlqIgqmxc0nQD659SLKdv/hTT7tc0UplzjIcaUHQ1BBnAbgH3hWb++fPqe1CN94
5Qh0OLXR7S5nTsPaPR/tmiZeIpFUhzAfhiP5cBw1wmCYdL3rdUAitVtRsa4+Q2vU
VVnjmSyKfY9fJkClL1I+pmg4bBVgzB3PdbuVjzZ3asXhoLSlVcAdImhi9XY+PJ/j
M+Thde2WNAsnJpivFiikyjpu8FpiIW6YN3Tm2rsYCzj1G/hjpwzJI5VH0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLC/NU4ajnYroIFmJ791O3VRVeLUMB8GA1UdIwQY
MBaAFBe4vrVV2vqCw9aqM2kJrlreNag9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjdpLXRWWGEtb0xEMXFvemFRbXVXdDQxcUQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi81MTUxOWMtMWU5My00NGE5LWFjNzAt
N2UyNDI2NzRkZWZjLzEvc0w4MVRocU9kaXVnZ1dZbnYzVTdkVkZWNHRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi81MTUxOWMtMWU5My00NGE5LWFjNzAtN2UyNDI2NzRkZWZj
LzEvRjdpLXRWWGEtb0xEMXFvemFRbXVXdDQxcUQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8hGMA0G
CSqGSIb3DQEBCwUAA4IBAQAY1dK6na1QtgyBvFs7lg2mZZYTmH+k+tIFRnAv8nL8
Trmax86ShxzV9xOTq3LSntvgmVeGxCY/JROPAIqSpHiuPAT7qbSHcf7jaGAmaPIh
YPQIuzEUmWLz3rcbpYOPK+iTRQ2EYqAn9s/Rp30jg4HQ3KWQ/Rbyvvx8S6WvQpQQ
G+YzlfJQwrsOfHGpS74wFqJ0LBteE+4HSoHE4Wi6OethXhfXyMSuGcbzmEZWii9T
/JZ4klS20Qq1RKPRiVMIe80A/iNyOgX9UnceD0uDjx8Su54SU5hS8znZEIHmMaC1
ISGdTqKf41twFXZXg55499xEZu4xah3+ZcVFyQojzogX
-----END CERTIFICATE-----
Generated at Fri Apr 25 04:00:45 2025 by rpki-client