Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9c48a0-d3cd-44b3-9ae6-7dffce1d6e2d/1/iYCONvh_-VwWy1qAcfbIbkJR5L0.roa
File: iYCONvh_-VwWy1qAcfbIbkJR5L0.roa (raw, json)
Hash identifier: Mqum/pcnON+fvDqDFxLCGm1Sd5nnM2fK5bauzDteg4o=
Subject key identifier: 89:80:8E:36:F8:7F:F9:5C:16:CB:5A:80:71:F6:C8:6E:42:51:E4:BD
Certificate issuer: /CN=1a421ace46c5dd58a29d46cd91fb28fc39c56fee
Certificate serial: 019513D9E7D3011A9C5431C2D4DD476D710D
Authority key identifier: 1A:42:1A:CE:46:C5:DD:58:A2:9D:46:CD:91:FB:28:FC:39:C5:6F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GkIazkbF3ViinUbNkfso_DnFb-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9c48a0-d3cd-44b3-9ae6-7dffce1d6e2d/1/iYCONvh_-VwWy1qAcfbIbkJR5L0.roa
Signing time: Mon 17 Feb 2025 12:20:02 +0000
ROA not before: Mon 17 Feb 2025 12:20:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206673
IP address blocks: 80.66.92.0/22 maxlen: 24
185.174.128.0/22 maxlen: 24
185.185.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:13:d9:e7:d3:01:1a:9c:54:31:c2:d4:dd:47:6d:71:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a421ace46c5dd58a29d46cd91fb28fc39c56fee
Validity
Not Before: Feb 17 12:20:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89808e36f87ff95c16cb5a8071f6c86e4251e4bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:14:fb:b3:2d:e3:47:9b:a9:85:10:f6:66:4b:
ca:bd:26:15:df:ee:5d:72:6e:e6:4d:14:53:5e:9b:
2c:b6:72:b6:a0:a3:8b:d3:27:02:a4:5f:9e:f5:e1:
ca:4c:3d:9a:3e:f1:dc:00:0f:5f:97:09:ba:1d:45:
df:bd:5e:b5:da:f2:08:28:4e:c3:b4:5c:45:c9:b7:
fd:9d:b0:63:bb:fc:55:77:7e:96:8a:f1:5d:d6:98:
c4:d4:e5:c3:4c:cb:c5:58:53:f0:5f:e6:0d:94:2c:
74:9a:cc:3f:3b:09:40:7d:01:a4:e7:92:d6:85:a0:
82:6c:43:ce:91:5a:65:85:99:65:96:12:ee:c9:b0:
53:f4:2d:ae:2b:4b:70:aa:6e:a9:b5:60:39:34:12:
7f:f1:b3:fb:29:ae:6c:0d:44:e9:06:31:cf:6f:dc:
6b:37:8c:b5:53:c3:00:14:e1:6c:6b:ea:1f:4c:5a:
68:99:d0:92:63:20:60:ad:19:a7:87:75:f3:9d:47:
81:21:41:05:52:73:f2:c3:57:61:25:0f:f2:54:5d:
5a:09:43:ad:6c:5a:61:36:5d:94:03:a9:f8:0d:eb:
b6:d4:17:1e:c8:ba:d9:a8:8b:4d:f2:e4:79:0b:58:
19:63:4e:60:d2:2a:f1:01:f7:81:54:58:13:7f:8c:
e7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:80:8E:36:F8:7F:F9:5C:16:CB:5A:80:71:F6:C8:6E:42:51:E4:BD
X509v3 Authority Key Identifier:
keyid:1A:42:1A:CE:46:C5:DD:58:A2:9D:46:CD:91:FB:28:FC:39:C5:6F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GkIazkbF3ViinUbNkfso_DnFb-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9c48a0-d3cd-44b3-9ae6-7dffce1d6e2d/1/iYCONvh_-VwWy1qAcfbIbkJR5L0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9c48a0-d3cd-44b3-9ae6-7dffce1d6e2d/1/GkIazkbF3ViinUbNkfso_DnFb-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.66.92.0/22
185.174.128.0/22
185.185.148.0/22
Signature Algorithm: sha256WithRSAEncryption
49:f0:e5:5b:24:da:a9:41:bb:26:f3:49:e6:ff:e4:a8:39:00:
95:bf:f8:34:30:5e:98:c2:a4:62:e6:02:67:fe:fd:9b:ad:79:
50:c7:a5:ea:3a:92:db:5b:a0:1e:a3:30:34:27:d3:21:f2:25:
98:c1:c8:9c:08:24:8e:eb:1f:7b:a6:f3:fc:7b:27:8a:31:f4:
35:42:fc:1c:5b:ba:93:4c:d2:f8:3f:64:22:d1:8a:88:77:a3:
65:16:ee:87:1c:db:08:73:1e:e3:57:bd:0b:39:b2:a9:c5:77:
3d:be:d9:db:d8:57:8c:e8:70:36:71:50:a8:4f:56:3c:8a:65:
3d:a5:ef:d5:53:1c:52:0f:7d:a0:75:dd:5f:5e:aa:e3:20:6d:
a5:f2:d6:bf:40:b5:12:de:17:76:59:f8:55:0f:bb:26:c3:fb:
78:8f:70:24:e6:6d:14:d1:d8:11:cd:1a:0f:30:85:b2:b4:a8:
a1:18:c1:e0:21:27:40:5f:db:94:90:7b:bf:eb:f2:85:67:e9:
13:11:26:7e:ee:1b:18:7c:44:7f:1c:32:ab:b3:5a:d4:3e:ce:
92:31:27:68:87:04:1b:cf:1b:db:93:5b:ae:14:f8:1d:3a:87:
52:50:3d:57:66:4c:77:31:b0:56:f8:ee:91:81:e8:39:e8:54:
fe:89:66:dc
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZUT2efTARqcVDHC1N1HbXENMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhNDIxYWNlNDZjNWRkNThhMjlkNDZjZDkxZmIyOGZjMzlj
NTZmZWUwHhcNMjUwMjE3MTIyMDAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTgwOGUzNmY4N2ZmOTVjMTZjYjVhODA3MWY2Yzg2ZTQyNTFlNGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxT7sy3jR5uphRD2ZkvKvSYV3+5d
cm7mTRRTXpsstnK2oKOL0ycCpF+e9eHKTD2aPvHcAA9flwm6HUXfvV612vIIKE7D
tFxFybf9nbBju/xVd36WivFd1pjE1OXDTMvFWFPwX+YNlCx0msw/OwlAfQGk55LW
haCCbEPOkVplhZlllhLuybBT9C2uK0twqm6ptWA5NBJ/8bP7Ka5sDUTpBjHPb9xr
N4y1U8MAFOFsa+ofTFpomdCSYyBgrRmnh3XznUeBIUEFUnPyw1dhJQ/yVF1aCUOt
bFphNl2UA6n4Deu21BceyLrZqItN8uR5C1gZY05g0irxAfeBVFgTf4zn2wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFImAjjb4f/lcFstagHH2yG5CUeS9MB8GA1UdIwQY
MBaAFBpCGs5Gxd1Yop1GzZH7KPw5xW/uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2tJYXprYkYzVmlpblViTmtmc29fRG5GYi00LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi85YzQ4YTAtZDNjZC00NGIzLTlhZTYt
N2RmZmNlMWQ2ZTJkLzEvaVlDT052aF8tVndXeTFxQWNmYklia0pSNUwwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi85YzQ4YTAtZDNjZC00NGIzLTlhZTYtN2RmZmNlMWQ2ZTJk
LzEvR2tJYXprYkYzVmlpblViTmtmc29fRG5GYi00LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCUEJcAwQC
ua6AAwQCubmUMA0GCSqGSIb3DQEBCwUAA4IBAQBJ8OVbJNqpQbsm80nm/+SoOQCV
v/g0MF6YwqRi5gJn/v2brXlQx6XqOpLbW6AeozA0J9Mh8iWYwcicCCSO6x97pvP8
eyeKMfQ1QvwcW7qTTNL4P2Qi0YqId6NlFu6HHNsIcx7jV70LObKpxXc9vtnb2FeM
6HA2cVCoT1Y8imU9pe/VUxxSD32gdd1fXqrjIG2l8ta/QLUS3hd2WfhVD7smw/t4
j3Ak5m0U0dgRzRoPMIWytKihGMHgISdAX9uUkHu/6/KFZ+kTESZ+7hsYfER/HDKr
s1rUPs6SMSdohwQbzxvbk1uuFPgdOodSUD1XZkx3MbBW+O6Rgeg56FT+iWbc
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:21 2025 by rpki-client on console.sobornost.net