Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/PJBAejzPvEvF3ZoupzGWVEj1Og0.roa
File: PJBAejzPvEvF3ZoupzGWVEj1Og0.roa (raw, json)
Hash identifier: BFJtqcfNldj6Jrfn0Y0+mOBk6xT0n483gTjn5ogYiu8=
Subject key identifier: 3C:90:40:7A:3C:CF:BC:4B:C5:DD:9A:2E:A7:31:96:54:48:F5:3A:0D
Certificate issuer: /CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Certificate serial: 019426D9B2A1DE4D5CDF853DF500EB5C3254
Authority key identifier: 20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/PJBAejzPvEvF3ZoupzGWVEj1Og0.roa
Signing time: Thu 02 Jan 2025 11:49:48 +0000
ROA not before: Thu 02 Jan 2025 11:49:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206632
IP address blocks: 156.17.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:b2:a1:de:4d:5c:df:85:3d:f5:00:eb:5c:32:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=202f4c1a37e9313cdd2eea7750ae028d18cd5aae
Validity
Not Before: Jan 2 11:49:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3c90407a3ccfbc4bc5dd9a2ea731965448f53a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:26:0a:d6:7a:bf:78:4f:12:76:14:85:71:3f:
b8:9a:a6:f0:51:b8:7a:c6:c2:fd:a2:16:24:38:0f:
7e:5a:e4:1f:04:29:82:ec:8e:de:32:1a:88:7f:8c:
0a:65:3b:c7:ae:91:99:7a:45:7e:8e:65:72:6a:df:
78:f4:f9:d5:66:5d:e6:a9:d9:6d:4c:98:df:2b:01:
c6:7a:a0:d0:be:a6:7a:2f:14:b7:8c:c6:b3:c8:7e:
79:60:21:fb:af:e3:dd:28:47:53:d6:3b:08:8a:ce:
68:b7:3c:53:f3:b6:83:1d:53:ff:68:61:0f:9a:79:
51:79:11:1e:3a:06:b7:b6:58:8e:44:53:18:88:14:
9c:28:7d:25:0d:20:b5:c9:2b:bb:16:59:34:c2:36:
61:0e:0d:fa:56:ab:97:40:28:78:15:0c:82:c6:f8:
c9:1c:24:38:94:19:da:c7:72:08:15:9e:db:fe:4e:
b8:f2:f9:da:ff:2f:8e:da:21:31:7f:fd:6b:06:7d:
69:ac:74:cd:00:7d:3e:bc:76:07:c9:16:2c:b5:9b:
e1:68:38:9d:95:e7:3f:a5:dd:8c:b3:24:ca:29:84:
51:5e:fd:9d:2d:bd:68:b0:c0:d6:12:38:f9:3b:e0:
78:c2:66:3d:7a:bc:f9:1b:43:cb:da:59:fb:0e:91:
5f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:90:40:7A:3C:CF:BC:4B:C5:DD:9A:2E:A7:31:96:54:48:F5:3A:0D
X509v3 Authority Key Identifier:
keyid:20:2F:4C:1A:37:E9:31:3C:DD:2E:EA:77:50:AE:02:8D:18:CD:5A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IC9MGjfpMTzdLup3UK4CjRjNWq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/PJBAejzPvEvF3ZoupzGWVEj1Og0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/edb8cd-003d-483a-906a-f6b78e2b17a1/1/IC9MGjfpMTzdLup3UK4CjRjNWq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.17.201.0/24
Signature Algorithm: sha256WithRSAEncryption
95:ea:e4:3f:80:71:81:1f:d2:48:b3:6b:78:e8:fb:b6:c6:2e:
29:3e:b7:e3:59:c1:57:b7:81:7d:22:cb:45:8c:96:3b:fe:52:
00:24:fe:27:60:4c:72:c8:52:da:b8:bc:24:34:22:88:94:a6:
41:99:20:8f:ff:59:d2:23:cd:eb:c8:53:7b:c2:50:84:4a:3f:
80:9e:19:1a:75:5b:37:5d:2e:fd:b8:b5:83:fa:68:44:76:62:
12:db:eb:b4:70:c9:d1:f7:45:9d:b3:80:50:7e:9e:46:53:08:
97:29:7f:54:1d:35:d4:1c:6d:30:82:52:a0:13:4a:72:cd:d2:
5a:c7:34:fa:58:b6:ba:85:e6:48:d9:d0:67:d6:0e:16:47:f2:
99:79:5c:7e:a1:f6:80:f3:a4:ae:cc:4d:f9:96:b4:82:ad:a9:
9d:34:ab:7d:be:62:4b:1a:a1:25:78:cd:50:26:8b:01:89:dd:
66:00:a1:d0:09:45:6c:84:63:f6:fe:ee:79:bd:65:f7:b9:31:
5c:92:12:1c:a5:e6:62:0d:09:6b:3f:d1:53:0d:da:8a:3e:25:
fd:2a:f2:9e:db:1c:4a:99:e7:01:55:02:1c:59:32:0a:7a:31:
8f:27:77:67:27:91:d6:56:fa:db:bc:3a:2d:e1:0f:9e:69:6d:
63:07:34:d2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2bKh3k1c34U99QDrXDJUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwMmY0YzFhMzdlOTMxM2NkZDJlZWE3NzUwYWUwMjhkMThj
ZDVhYWUwHhcNMjUwMTAyMTE0OTQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzkwNDA3YTNjY2ZiYzRiYzVkZDlhMmVhNzMxOTY1NDQ4ZjUzYTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCYK1nq/eE8SdhSFcT+4mqbwUbh6
xsL9ohYkOA9+WuQfBCmC7I7eMhqIf4wKZTvHrpGZekV+jmVyat949PnVZl3mqdlt
TJjfKwHGeqDQvqZ6LxS3jMazyH55YCH7r+PdKEdT1jsIis5otzxT87aDHVP/aGEP
mnlReREeOga3tliORFMYiBScKH0lDSC1ySu7Flk0wjZhDg36VquXQCh4FQyCxvjJ
HCQ4lBnax3IIFZ7b/k648vna/y+O2iExf/1rBn1prHTNAH0+vHYHyRYstZvhaDid
lec/pd2MsyTKKYRRXv2dLb1osMDWEjj5O+B4wmY9erz5G0PL2ln7DpFfCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDyQQHo8z7xLxd2aLqcxllRI9ToNMB8GA1UdIwQY
MBaAFCAvTBo36TE83S7qd1CuAo0YzVquMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUM5TUdqZnBNVHpkTHVwM1VLNENqUmpOV3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lZGI4Y2QtMDAzZC00ODNhLTkwNmEt
ZjZiNzhlMmIxN2ExLzEvUEpCQWVqelB2RXZGM1pvdXB6R1dWRWoxT2cwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9lZGI4Y2QtMDAzZC00ODNhLTkwNmEtZjZiNzhlMmIxN2Ex
LzEvSUM5TUdqZnBNVHpkTHVwM1VLNENqUmpOV3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnBHJMA0G
CSqGSIb3DQEBCwUAA4IBAQCV6uQ/gHGBH9JIs2t46Pu2xi4pPrfjWcFXt4F9IstF
jJY7/lIAJP4nYExyyFLauLwkNCKIlKZBmSCP/1nSI83ryFN7wlCESj+AnhkadVs3
XS79uLWD+mhEdmIS2+u0cMnR90Wds4BQfp5GUwiXKX9UHTXUHG0wglKgE0pyzdJa
xzT6WLa6heZI2dBn1g4WR/KZeVx+ofaA86SuzE35lrSCramdNKt9vmJLGqEleM1Q
JosBid1mAKHQCUVshGP2/u55vWX3uTFckhIcpeZiDQlrP9FTDdqKPiX9KvKe2xxK
mecBVQIcWTIKejGPJ3dnJ5HWVvrbvDot4Q+eaW1jBzTS
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:07 2025 by rpki-client on console.sobornost.net