Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/oiZHTdtEDz6aP8WgUPcMGh6h5wQ.roa
File: oiZHTdtEDz6aP8WgUPcMGh6h5wQ.roa (raw, json)
Hash identifier: ewlicz9ndLYefeC/+lwNbWi0WIXINkEHOt0Ubc6GHQg=
Subject key identifier: A2:26:47:4D:DB:44:0F:3E:9A:3F:C5:A0:50:F7:0C:1A:1E:A1:E7:04
Certificate issuer: /CN=0f34477aa0f0123138c0472f5b3528e4d2193e68
Certificate serial: 01946A30A90EA5E4007A91958A065E31BC6D
Authority key identifier: 0F:34:47:7A:A0:F0:12:31:38:C0:47:2F:5B:35:28:E4:D2:19:3E:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DzRHeqDwEjE4wEcvWzUo5NIZPmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/oiZHTdtEDz6aP8WgUPcMGh6h5wQ.roa
Signing time: Wed 15 Jan 2025 13:39:21 +0000
ROA not before: Wed 15 Jan 2025 13:39:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198108
IP address blocks: 91.216.232.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6a:30:a9:0e:a5:e4:00:7a:91:95:8a:06:5e:31:bc:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f34477aa0f0123138c0472f5b3528e4d2193e68
Validity
Not Before: Jan 15 13:39:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a226474ddb440f3e9a3fc5a050f70c1a1ea1e704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5a:08:57:27:41:25:5d:40:1d:ce:9c:81:06:
95:49:4c:b5:86:6a:b7:60:7f:a3:a8:2d:4a:c3:c9:
ec:91:17:70:2d:46:5d:bc:1b:49:5c:ec:4d:d1:53:
76:e6:7d:49:05:3c:54:ab:be:69:a4:3e:20:b8:93:
d5:86:4c:62:69:b5:31:ea:4d:f6:39:d3:2a:79:8a:
2e:2a:06:03:8f:53:0a:e4:32:ba:13:28:d2:54:fa:
76:c0:85:e3:64:d3:63:bd:99:13:ed:60:f4:78:2e:
c8:bb:dc:0b:b5:3e:27:66:5b:fa:14:76:da:50:fe:
48:bb:d2:37:5d:04:9b:51:5b:f7:00:bd:af:aa:d1:
39:8c:22:c3:00:be:e3:d5:a0:49:02:21:be:e3:20:
af:bf:dc:de:fa:d9:83:5c:a1:0b:ea:e2:10:00:a8:
6f:10:9e:f8:4b:7d:66:18:15:0a:a3:f2:7b:29:a0:
f0:1d:d1:cc:96:40:fe:af:8d:23:f1:b6:e3:71:c2:
04:5a:e7:be:2b:61:0f:9b:84:e1:90:d8:5f:d7:c6:
a1:42:76:69:51:d9:51:06:2b:73:f8:0a:d3:47:98:
4d:91:03:a0:94:ef:f0:aa:93:36:b1:68:18:23:08:
11:66:e2:e7:b4:c0:21:b2:e8:d2:19:ea:c8:52:48:
20:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:26:47:4D:DB:44:0F:3E:9A:3F:C5:A0:50:F7:0C:1A:1E:A1:E7:04
X509v3 Authority Key Identifier:
keyid:0F:34:47:7A:A0:F0:12:31:38:C0:47:2F:5B:35:28:E4:D2:19:3E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DzRHeqDwEjE4wEcvWzUo5NIZPmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/oiZHTdtEDz6aP8WgUPcMGh6h5wQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/DzRHeqDwEjE4wEcvWzUo5NIZPmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.232.0/24
Signature Algorithm: sha256WithRSAEncryption
27:ca:01:f6:14:86:d9:83:ee:30:19:7c:8d:93:1a:57:95:7f:
18:b0:38:07:c5:e5:e9:a8:30:90:f4:f7:13:2f:3d:56:75:d8:
eb:c2:be:bc:f8:96:30:71:e0:99:9e:53:f3:dc:d5:3c:26:b0:
41:b3:40:26:73:28:e6:19:8f:05:84:e4:a3:a4:e3:94:15:aa:
c9:db:46:0c:e3:78:73:54:8d:b7:56:1c:2c:f2:d0:0c:d6:7e:
56:eb:4f:5f:c1:2e:3f:30:61:30:67:c8:4a:3c:0d:45:0c:d0:
45:21:be:2a:82:65:3f:e4:f3:6d:b8:01:de:ae:ab:26:00:20:
59:84:c2:95:a2:26:4e:39:6d:45:41:60:a6:8e:bd:3d:ea:27:
2b:50:e6:bb:f4:e7:2c:ef:5b:f5:f7:27:d3:0d:7b:28:c7:7d:
2f:20:fb:f0:51:e8:ce:7d:80:01:b6:36:b5:9a:39:03:8c:fc:
37:87:8c:5c:e4:20:12:f3:cd:9e:1d:2a:c6:57:d2:40:4d:dd:
07:b9:46:26:f5:aa:46:94:0b:a2:24:1b:ff:67:76:ef:fe:8b:
49:37:9e:71:8d:3b:c8:28:ef:09:61:be:33:b7:a1:7c:1d:ec:
b7:47:2f:a4:50:aa:ca:39:c4:24:7d:cd:1e:80:6e:7d:f4:8c:
a2:83:27:8e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZRqMKkOpeQAepGVigZeMbxtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMzQ0NzdhYTBmMDEyMzEzOGMwNDcyZjViMzUyOGU0ZDIx
OTNlNjgwHhcNMjUwMTE1MTMzOTIxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjI2NDc0ZGRiNDQwZjNlOWEzZmM1YTA1MGY3MGMxYTFlYTFlNzA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41oIVydBJV1AHc6cgQaVSUy1hmq3
YH+jqC1Kw8nskRdwLUZdvBtJXOxN0VN25n1JBTxUq75ppD4guJPVhkxiabUx6k32
OdMqeYouKgYDj1MK5DK6EyjSVPp2wIXjZNNjvZkT7WD0eC7Iu9wLtT4nZlv6FHba
UP5Iu9I3XQSbUVv3AL2vqtE5jCLDAL7j1aBJAiG+4yCvv9ze+tmDXKEL6uIQAKhv
EJ74S31mGBUKo/J7KaDwHdHMlkD+r40j8bbjccIEWue+K2EPm4ThkNhf18ahQnZp
UdlRBitz+ArTR5hNkQOglO/wqpM2sWgYIwgRZuLntMAhsujSGerIUkggzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKImR03bRA8+mj/FoFD3DBoeoecEMB8GA1UdIwQY
MBaAFA80R3qg8BIxOMBHL1s1KOTSGT5oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHpSSGVxRHdFakU0d0Vjdld6VW81TklaUG1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi85ZDRiZWYtOGViZC00ZmRiLWFhZjAt
ZTA5YmM0ZWFlMTg5LzEvb2laSFRkdEVEejZhUDhXZ1VQY01HaDZoNXdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi85ZDRiZWYtOGViZC00ZmRiLWFhZjAtZTA5YmM0ZWFlMTg5
LzEvRHpSSGVxRHdFakU0d0Vjdld6VW81TklaUG1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9joMA0G
CSqGSIb3DQEBCwUAA4IBAQAnygH2FIbZg+4wGXyNkxpXlX8YsDgHxeXpqDCQ9PcT
Lz1Wddjrwr68+JYwceCZnlPz3NU8JrBBs0AmcyjmGY8FhOSjpOOUFarJ20YM43hz
VI23Vhws8tAM1n5W609fwS4/MGEwZ8hKPA1FDNBFIb4qgmU/5PNtuAHerqsmACBZ
hMKVoiZOOW1FQWCmjr096icrUOa79Ocs71v19yfTDXsox30vIPvwUejOfYABtja1
mjkDjPw3h4xc5CAS882eHSrGV9JATd0HuUYm9apGlAuiJBv/Z3bv/otJN55xjTvI
KO8JYb4zt6F8Hey3Ry+kUKrKOcQkfc0egG599IyigyeO
-----END CERTIFICATE-----
Generated at Fri Apr 25 05:28:42 2025 by rpki-client