Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/FiNVX28gYght-QYZJvZkKvA8mpg.roa
File: FiNVX28gYght-QYZJvZkKvA8mpg.roa (raw, json)
Hash identifier: OWl23RYTlTMxZtrywernX3ASfukLtRAzCghbHPY5Zmc=
Subject key identifier: 16:23:55:5F:6F:20:62:08:6D:F9:06:19:26:F6:64:2A:F0:3C:9A:98
Certificate issuer: /CN=839a9a1b7e11fde77e4e1f57ff11864cee21f165
Certificate serial: 0195378E884DB2583E651D80DE8CC2A9E402
Authority key identifier: 83:9A:9A:1B:7E:11:FD:E7:7E:4E:1F:57:FF:11:86:4C:EE:21:F1:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5qaG34R_ed-Th9X_xGGTO4h8WU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/FiNVX28gYght-QYZJvZkKvA8mpg.roa
Signing time: Mon 24 Feb 2025 10:44:02 +0000
ROA not before: Mon 24 Feb 2025 10:44:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56985
IP address blocks: 141.105.112.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:37:8e:88:4d:b2:58:3e:65:1d:80:de:8c:c2:a9:e4:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=839a9a1b7e11fde77e4e1f57ff11864cee21f165
Validity
Not Before: Feb 24 10:44:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1623555f6f2062086df9061926f6642af03c9a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c5:10:03:03:45:6f:35:e5:e9:57:e8:39:0e:
20:4b:3b:bd:97:0e:51:98:4f:87:29:29:11:80:95:
97:fd:8d:09:a4:fa:14:4d:aa:80:31:f7:0a:a7:b0:
49:77:17:1d:ce:f8:1e:7f:a9:aa:df:21:70:b7:21:
5f:c3:7b:d2:ad:4b:c8:a6:5b:7b:02:f1:c7:b8:cd:
2f:71:34:a9:dc:50:5a:c6:94:d3:75:b9:ee:99:2d:
eb:37:cc:41:84:14:3b:58:db:41:8e:e6:17:09:e2:
25:61:50:7f:e7:2e:89:3a:fa:e2:07:f9:3e:76:e0:
27:28:f9:94:5a:fd:7f:87:80:4e:a5:23:a6:aa:c0:
3b:04:33:52:37:7e:42:a1:d6:18:19:2c:eb:b2:65:
1c:89:55:6f:ec:8a:11:1c:ab:4b:2a:1f:00:e3:d7:
a9:4d:26:ea:55:3c:ca:5e:0b:5f:6f:5b:22:05:81:
56:a5:1d:68:02:b5:01:59:7f:d6:82:ee:bb:1a:54:
37:45:cb:53:a4:4f:7b:30:d0:aa:43:62:01:b4:79:
92:d6:0b:05:da:4c:d7:59:21:bc:d1:23:34:90:8b:
bf:de:b0:de:8d:5d:64:00:60:01:ce:03:ce:00:3d:
7b:ad:07:54:a5:b8:14:a6:06:d5:ec:0c:9f:79:2e:
e0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:23:55:5F:6F:20:62:08:6D:F9:06:19:26:F6:64:2A:F0:3C:9A:98
X509v3 Authority Key Identifier:
keyid:83:9A:9A:1B:7E:11:FD:E7:7E:4E:1F:57:FF:11:86:4C:EE:21:F1:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5qaG34R_ed-Th9X_xGGTO4h8WU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/FiNVX28gYght-QYZJvZkKvA8mpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/767bd0-b0ef-4114-a58e-ff86bf881648/1/g5qaG34R_ed-Th9X_xGGTO4h8WU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.105.112.0/21
Signature Algorithm: sha256WithRSAEncryption
04:93:b0:ac:94:fa:cd:9c:da:d3:06:94:8f:55:f2:5b:c6:9b:
63:db:bb:5f:f6:ae:89:56:e9:75:99:1e:c3:f8:c5:df:60:f8:
27:b1:5b:44:71:a3:ca:68:1c:ee:5b:b1:a8:77:da:63:24:e1:
b1:23:e6:d9:e8:c2:8d:ac:0b:34:df:07:f7:20:a8:f5:c4:bc:
ad:f2:5e:7a:39:4e:43:bf:3c:9d:5a:b7:34:86:e1:47:55:1b:
d3:1f:00:64:9f:db:cd:c4:fe:01:f5:36:8d:55:f1:47:89:3a:
9c:1d:23:8b:f6:8d:92:db:47:11:aa:8f:68:21:a6:eb:93:d3:
4a:05:0b:fd:a5:bd:2c:d6:61:34:3f:1f:42:79:14:df:a7:d2:
a0:d1:22:7a:8c:d9:b1:f2:bd:f1:03:7e:07:d0:02:f4:b5:ed:
dc:d7:86:46:cc:71:c3:27:3c:70:f6:1e:0f:dc:e6:db:8f:91:
fb:17:b9:3e:ed:f6:fd:16:e5:6f:00:3f:06:0c:b7:a0:e5:19:
66:e8:a6:b5:c6:58:96:20:5c:61:e0:5a:67:17:03:f2:d5:66:
8b:f0:eb:8c:f0:c5:27:16:ac:23:1d:5d:14:0f:68:24:8a:8f:
04:12:41:9b:0d:1f:b1:6a:a8:72:fe:94:d4:85:58:2a:d6:9a:
64:f1:cd:8d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZU3johNslg+ZR2A3ozCqeQCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzOWE5YTFiN2UxMWZkZTc3ZTRlMWY1N2ZmMTE4NjRjZWUy
MWYxNjUwHhcNMjUwMjI0MTA0NDAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjIzNTU1ZjZmMjA2MjA4NmRmOTA2MTkyNmY2NjQyYWYwM2M5YTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi8UQAwNFbzXl6VfoOQ4gSzu9lw5R
mE+HKSkRgJWX/Y0JpPoUTaqAMfcKp7BJdxcdzvgef6mq3yFwtyFfw3vSrUvIplt7
AvHHuM0vcTSp3FBaxpTTdbnumS3rN8xBhBQ7WNtBjuYXCeIlYVB/5y6JOvriB/k+
duAnKPmUWv1/h4BOpSOmqsA7BDNSN35CodYYGSzrsmUciVVv7IoRHKtLKh8A49ep
TSbqVTzKXgtfb1siBYFWpR1oArUBWX/Wgu67GlQ3RctTpE97MNCqQ2IBtHmS1gsF
2kzXWSG80SM0kIu/3rDejV1kAGABzgPOAD17rQdUpbgUpgbV7AyfeS7gOQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBYjVV9vIGIIbfkGGSb2ZCrwPJqYMB8GA1UdIwQY
MBaAFIOamht+Ef3nfk4fV/8RhkzuIfFlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzVxYUczNFJfZWQtVGg5WF94R0dUTzRoOFdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC83NjdiZDAtYjBlZi00MTE0LWE1OGUt
ZmY4NmJmODgxNjQ4LzEvRmlOVlgyOGdZZ2h0LVFZWkp2WmtLdkE4bXBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC83NjdiZDAtYjBlZi00MTE0LWE1OGUtZmY4NmJmODgxNjQ4
LzEvZzVxYUczNFJfZWQtVGg5WF94R0dUTzRoOFdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDjWlwMA0G
CSqGSIb3DQEBCwUAA4IBAQAEk7CslPrNnNrTBpSPVfJbxptj27tf9q6JVul1mR7D
+MXfYPgnsVtEcaPKaBzuW7God9pjJOGxI+bZ6MKNrAs03wf3IKj1xLyt8l56OU5D
vzydWrc0huFHVRvTHwBkn9vNxP4B9TaNVfFHiTqcHSOL9o2S20cRqo9oIabrk9NK
BQv9pb0s1mE0Px9CeRTfp9Kg0SJ6jNmx8r3xA34H0AL0te3c14ZGzHHDJzxw9h4P
3Obbj5H7F7k+7fb9FuVvAD8GDLeg5Rlm6Ka1xliWIFxh4FpnFwPy1WaL8OuM8MUn
FqwjHV0UD2gkio8EEkGbDR+xaqhy/pTUhVgq1ppk8c2N
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:50 2025 by rpki-client on console.sobornost.net