Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91d6ce-1a6a-4d13-a2e2-a7eb46b37d72/1/xmpcwINBwhfOQ2qyibBKWtgFhyc.roa
File: xmpcwINBwhfOQ2qyibBKWtgFhyc.roa (raw, json)
Hash identifier: RM0GiW910PS4/kJDIOZ/RJgcd9jsdiuKg4ZQlvkwZTE=
Subject key identifier: C6:6A:5C:C0:83:41:C2:17:CE:43:6A:B2:89:B0:4A:5A:D8:05:87:27
Certificate issuer: /CN=d45473d1e8cdf49e3d98f8d770aac148d2f28b23
Certificate serial: 0194266B2C41C86A8D1E7F8655C526D75E9A
Authority key identifier: D4:54:73:D1:E8:CD:F4:9E:3D:98:F8:D7:70:AA:C1:48:D2:F2:8B:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FRz0ejN9J49mPjXcKrBSNLyiyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91d6ce-1a6a-4d13-a2e2-a7eb46b37d72/1/xmpcwINBwhfOQ2qyibBKWtgFhyc.roa
Signing time: Thu 02 Jan 2025 09:49:05 +0000
ROA not before: Thu 02 Jan 2025 09:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48189
IP address blocks: 91.209.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:2c:41:c8:6a:8d:1e:7f:86:55:c5:26:d7:5e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45473d1e8cdf49e3d98f8d770aac148d2f28b23
Validity
Not Before: Jan 2 09:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c66a5cc08341c217ce436ab289b04a5ad8058727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:27:54:8d:27:aa:17:84:f6:9c:cf:b4:00:74:
32:6c:d7:4d:93:69:80:a2:fb:72:02:53:27:7a:48:
8c:ae:4f:53:2e:f3:e7:81:ce:36:a5:55:a1:71:a4:
c8:38:4e:af:6c:98:1f:59:3f:62:a6:70:83:25:77:
09:f6:79:14:11:c0:c8:56:99:11:aa:a2:42:3f:74:
93:98:59:f8:cd:59:12:0c:0a:ff:9c:8b:99:0e:16:
79:40:b3:87:e3:b6:35:f9:7f:30:60:fc:6e:7e:c7:
e6:f8:fc:3e:2e:f8:13:d9:51:67:27:46:05:d8:fc:
56:42:d1:51:69:1b:c9:d1:39:6b:3c:23:a1:ca:98:
14:f8:f8:69:9a:34:72:c9:28:84:0f:84:d9:e9:5a:
06:a7:0c:e4:3d:e1:3a:54:6c:2d:4c:79:c6:d8:04:
09:9c:17:8f:54:ce:d2:f2:8d:67:54:c7:68:c2:42:
11:5d:7c:8a:36:3a:72:bb:fc:15:b7:0f:3c:c7:37:
40:4d:b0:7d:c9:da:f4:a5:15:2b:42:d3:45:81:c4:
0e:ae:60:3f:c7:77:b9:8b:af:ed:d1:ae:c0:a4:66:
57:c3:ba:dc:8d:75:22:f6:4c:72:af:30:26:6d:7d:
95:ee:af:ba:50:3d:9a:5c:e1:27:e2:04:3e:f3:70:
2f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:6A:5C:C0:83:41:C2:17:CE:43:6A:B2:89:B0:4A:5A:D8:05:87:27
X509v3 Authority Key Identifier:
keyid:D4:54:73:D1:E8:CD:F4:9E:3D:98:F8:D7:70:AA:C1:48:D2:F2:8B:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FRz0ejN9J49mPjXcKrBSNLyiyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91d6ce-1a6a-4d13-a2e2-a7eb46b37d72/1/xmpcwINBwhfOQ2qyibBKWtgFhyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91d6ce-1a6a-4d13-a2e2-a7eb46b37d72/1/1FRz0ejN9J49mPjXcKrBSNLyiyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.27.0/24
Signature Algorithm: sha256WithRSAEncryption
40:dd:13:30:dc:dc:b4:aa:28:7e:a1:47:d6:e8:e2:b2:18:9a:
c8:7b:0f:41:d7:46:88:40:b5:4f:1b:59:24:5e:50:eb:f1:9d:
90:b6:9e:e3:7e:10:c8:b3:a3:3a:d1:9e:75:05:9c:ef:53:b5:
4f:ee:78:bf:78:99:d5:2c:f1:c1:b8:68:cb:b1:2a:60:24:a7:
84:29:2a:00:5f:6c:83:94:77:88:f2:d0:ef:22:4b:17:d3:b3:
18:b7:c7:2f:00:03:19:18:fe:a7:26:1c:6e:f0:6f:99:66:ec:
7f:c1:05:7b:8b:bd:c1:39:57:23:1c:f9:a6:93:82:01:b5:b7:
d5:ad:9e:83:1e:08:96:72:73:e2:9b:03:93:ab:02:dd:7b:57:
22:66:41:bf:54:67:85:4d:e7:11:d9:b0:c6:38:56:f5:d9:3c:
5d:15:ae:d9:ed:69:7f:a7:0c:fe:43:5c:d4:32:a1:a7:4f:c0:
ff:ec:73:de:78:8e:ce:82:e8:0b:7b:21:50:9c:90:93:1d:ce:
f7:be:0e:dd:a9:e7:66:06:0c:f0:c5:11:1a:87:d3:79:73:75:
4f:77:a2:56:0d:80:8c:ac:80:c4:1e:f7:98:f9:b8:14:b3:78:
77:16:1b:3f:99:da:5d:81:3a:32:df:c5:51:53:42:90:df:1f:
f1:8a:44:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQmayxByGqNHn+GVcUm116aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NTQ3M2QxZThjZGY0OWUzZDk4ZjhkNzcwYWFjMTQ4ZDJm
MjhiMjMwHhcNMjUwMTAyMDk0OTA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjZhNWNjMDgzNDFjMjE3Y2U0MzZhYjI4OWIwNGE1YWQ4MDU4NzI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiydUjSeqF4T2nM+0AHQybNdNk2mA
ovtyAlMnekiMrk9TLvPngc42pVWhcaTIOE6vbJgfWT9ipnCDJXcJ9nkUEcDIVpkR
qqJCP3STmFn4zVkSDAr/nIuZDhZ5QLOH47Y1+X8wYPxufsfm+Pw+LvgT2VFnJ0YF
2PxWQtFRaRvJ0TlrPCOhypgU+PhpmjRyySiED4TZ6VoGpwzkPeE6VGwtTHnG2AQJ
nBePVM7S8o1nVMdowkIRXXyKNjpyu/wVtw88xzdATbB9ydr0pRUrQtNFgcQOrmA/
x3e5i6/t0a7ApGZXw7rcjXUi9kxyrzAmbX2V7q+6UD2aXOEn4gQ+83AveQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMZqXMCDQcIXzkNqsomwSlrYBYcnMB8GA1UdIwQY
MBaAFNRUc9HozfSePZj413CqwUjS8osjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUZSejBlak45SjQ5bVBqWGNLckJTTkx5aXlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85MWQ2Y2UtMWE2YS00ZDEzLWEyZTIt
YTdlYjQ2YjM3ZDcyLzEveG1wY3dJTkJ3aGZPUTJxeWliQktXdGdGaHljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC85MWQ2Y2UtMWE2YS00ZDEzLWEyZTItYTdlYjQ2YjM3ZDcy
LzEvMUZSejBlak45SjQ5bVBqWGNLckJTTkx5aXlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9EbMA0G
CSqGSIb3DQEBCwUAA4IBAQBA3RMw3Ny0qih+oUfW6OKyGJrIew9B10aIQLVPG1kk
XlDr8Z2Qtp7jfhDIs6M60Z51BZzvU7VP7ni/eJnVLPHBuGjLsSpgJKeEKSoAX2yD
lHeI8tDvIksX07MYt8cvAAMZGP6nJhxu8G+ZZux/wQV7i73BOVcjHPmmk4IBtbfV
rZ6DHgiWcnPimwOTqwLde1ciZkG/VGeFTecR2bDGOFb12TxdFa7Z7Wl/pwz+Q1zU
MqGnT8D/7HPeeI7OgugLeyFQnJCTHc73vg7dqedmBgzwxREah9N5c3VPd6JWDYCM
rIDEHveY+bgUs3h3Fhs/mdpdgToy38VRU0KQ3x/xikTB
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:21:56 2025 by rpki-client