Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/6c0680-7c8d-4dec-b2a8-298b5596976a/1/B7Qapo5g1oDmbBkmOp4VI6hXM-Q.roa
File: B7Qapo5g1oDmbBkmOp4VI6hXM-Q.roa (raw, json)
Hash identifier: QPX22bu8lrGVz4DhZjKtOs7g7eex/hilxfsr4fUW4YM=
Subject key identifier: 07:B4:1A:A6:8E:60:D6:80:E6:6C:19:26:3A:9E:15:23:A8:57:33:E4
Certificate issuer: /CN=1aeac0f63257b224ec17106e1bcdefd32c24778b
Certificate serial: 0194244535210B7F6AD9C21C023B6226FCD1
Authority key identifier: 1A:EA:C0:F6:32:57:B2:24:EC:17:10:6E:1B:CD:EF:D3:2C:24:77:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GurA9jJXsiTsFxBuG83v0ywkd4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/6c0680-7c8d-4dec-b2a8-298b5596976a/1/B7Qapo5g1oDmbBkmOp4VI6hXM-Q.roa
Signing time: Wed 01 Jan 2025 23:48:22 +0000
ROA not before: Wed 01 Jan 2025 23:48:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29037
IP address blocks: 194.126.195.0/24 maxlen: 24
2001:67c:1950::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:35:21:0b:7f:6a:d9:c2:1c:02:3b:62:26:fc:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aeac0f63257b224ec17106e1bcdefd32c24778b
Validity
Not Before: Jan 1 23:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07b41aa68e60d680e66c19263a9e1523a85733e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5c:4b:3d:3b:70:31:8e:8c:0e:24:1b:7d:14:
15:55:a4:d9:ce:2b:7a:9c:55:4f:3f:13:89:82:4a:
c9:82:d9:52:cc:96:1b:31:fb:8b:4c:35:78:88:ca:
e0:ce:51:ec:6a:fb:63:34:87:67:be:59:ff:e3:99:
7a:5d:73:1a:73:8f:19:16:e2:88:b0:8a:ed:ac:38:
a2:72:16:3b:00:77:8b:d8:9c:b0:7d:b2:b2:14:fb:
d9:7e:4a:07:65:04:f6:e9:db:52:40:d3:ac:38:d2:
d3:0f:ec:10:3d:18:0d:33:31:a8:03:6a:23:4b:73:
37:98:81:c0:d6:2e:50:88:5b:82:97:0d:83:15:00:
4a:45:27:8f:b7:58:5a:27:0f:e7:7f:7f:ba:3d:96:
cb:82:9e:a4:f3:b8:a8:d2:cd:b5:62:d8:08:68:77:
5c:e6:76:ae:ae:ee:e5:e1:fc:10:e0:58:7b:8d:6d:
2d:fd:56:d0:a9:d4:81:17:21:f5:e9:b5:d6:a9:0d:
e5:56:d8:a6:d9:e3:08:a9:67:b8:d2:5d:90:5e:78:
fe:75:47:b4:3c:cf:0a:88:dc:45:48:00:dc:22:c7:
70:aa:38:13:dc:7a:9e:05:42:da:c3:69:fb:16:d5:
07:d7:26:d0:8b:f1:54:39:77:48:4e:38:17:2a:ef:
98:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:B4:1A:A6:8E:60:D6:80:E6:6C:19:26:3A:9E:15:23:A8:57:33:E4
X509v3 Authority Key Identifier:
keyid:1A:EA:C0:F6:32:57:B2:24:EC:17:10:6E:1B:CD:EF:D3:2C:24:77:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GurA9jJXsiTsFxBuG83v0ywkd4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/6c0680-7c8d-4dec-b2a8-298b5596976a/1/B7Qapo5g1oDmbBkmOp4VI6hXM-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/6c0680-7c8d-4dec-b2a8-298b5596976a/1/GurA9jJXsiTsFxBuG83v0ywkd4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.195.0/24
IPv6:
2001:67c:1950::/48
Signature Algorithm: sha256WithRSAEncryption
03:b9:65:95:ac:02:19:6f:1f:ff:4e:99:54:3f:36:90:c3:0b:
16:47:8c:35:7a:d5:56:af:30:3c:92:ce:dc:fe:0b:34:b0:1c:
64:92:5b:2a:72:7c:79:0c:3e:0a:14:ef:cd:c0:8f:e1:52:42:
ed:a4:6f:e5:a0:80:9d:9f:96:72:30:1e:7d:d2:80:2e:0d:36:
fd:09:73:50:9c:3c:fd:2d:15:d0:08:49:2b:e0:75:9e:5e:ea:
83:0a:4c:5c:fe:84:72:82:bc:46:5f:09:49:67:73:a9:54:cf:
11:f2:41:12:61:b1:39:18:50:a7:8c:d2:8f:cb:86:25:96:27:
b6:d6:f7:97:fd:34:9e:aa:9b:22:6f:e1:5a:d1:3e:cb:b6:fd:
7d:af:d7:28:af:ca:59:12:3a:06:e1:bf:70:ae:6d:e2:da:49:
ce:b6:e4:d3:00:ba:4a:13:ae:2d:2a:1f:d0:02:e6:3e:62:bb:
08:00:53:30:d3:01:bb:3a:59:2a:a8:fb:5d:f9:ce:b2:bc:2e:
36:f4:06:bc:78:61:ac:ae:b9:5f:2a:74:88:65:0e:9f:e9:07:
cf:e8:23:d7:a0:28:45:e9:4b:9e:20:80:b0:51:66:2b:06:71:
cf:2b:32:61:62:34:d7:8e:db:66:28:7b:61:b2:1c:79:dc:00:
f8:9b:90:d5
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQkRTUhC39q2cIcAjtiJvzRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhZWFjMGY2MzI1N2IyMjRlYzE3MTA2ZTFiY2RlZmQzMmMy
NDc3OGIwHhcNMjUwMTAxMjM0ODIyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2I0MWFhNjhlNjBkNjgwZTY2YzE5MjYzYTllMTUyM2E4NTczM2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFxLPTtwMY6MDiQbfRQVVaTZzit6
nFVPPxOJgkrJgtlSzJYbMfuLTDV4iMrgzlHsavtjNIdnvln/45l6XXMac48ZFuKI
sIrtrDiichY7AHeL2JywfbKyFPvZfkoHZQT26dtSQNOsONLTD+wQPRgNMzGoA2oj
S3M3mIHA1i5QiFuClw2DFQBKRSePt1haJw/nf3+6PZbLgp6k87io0s21YtgIaHdc
5nauru7l4fwQ4Fh7jW0t/VbQqdSBFyH16bXWqQ3lVtim2eMIqWe40l2QXnj+dUe0
PM8KiNxFSADcIsdwqjgT3HqeBULaw2n7FtUH1ybQi/FUOXdITjgXKu+YWwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFAe0GqaOYNaA5mwZJjqeFSOoVzPkMB8GA1UdIwQY
MBaAFBrqwPYyV7Ik7BcQbhvN79MsJHeLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3VyQTlqSlhzaVRzRnhCdUc4M3YweXdrZDRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni82YzA2ODAtN2M4ZC00ZGVjLWIyYTgt
Mjk4YjU1OTY5NzZhLzEvQjdRYXBvNWcxb0RtYkJrbU9wNFZJNmhYTS1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni82YzA2ODAtN2M4ZC00ZGVjLWIyYTgtMjk4YjU1OTY5NzZh
LzEvR3VyQTlqSlhzaVRzRnhCdUc4M3YweXdrZDRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwn7DMA8E
AgACMAkDBwAgAQZ8GVAwDQYJKoZIhvcNAQELBQADggEBAAO5ZZWsAhlvH/9OmVQ/
NpDDCxZHjDV61VavMDySztz+CzSwHGSSWypyfHkMPgoU783Aj+FSQu2kb+WggJ2f
lnIwHn3SgC4NNv0Jc1CcPP0tFdAISSvgdZ5e6oMKTFz+hHKCvEZfCUlnc6lUzxHy
QRJhsTkYUKeM0o/LhiWWJ7bW95f9NJ6qmyJv4VrRPsu2/X2v1yivylkSOgbhv3Cu
beLaSc625NMAukoTri0qH9AC5j5iuwgAUzDTAbs6WSqo+135zrK8Ljb0Brx4Yayu
uV8qdIhlDp/pB8/oI9egKEXpS54ggLBRZisGcc8rMmFiNNeO22Yoe2GyHHncAPib
kNU=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:42 2025 by rpki-client on console.sobornost.net