Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/g0yUXdYSuBEU7wpjF_M-dIueuPE.roa
File: g0yUXdYSuBEU7wpjF_M-dIueuPE.roa (raw, json)
Hash identifier: PIV5IbeiUmm5gi+hdOXD1voi9O/jmaGDnpkEJZ2+Rwg=
Subject key identifier: 83:4C:94:5D:D6:12:B8:11:14:EF:0A:63:17:F3:3E:74:8B:9E:B8:F1
Certificate issuer: /CN=039b01353e51a3a87e835963bd8833ed81853d77
Certificate serial: 019424B3F62A1F4DE1684D45AA93916FC74F
Authority key identifier: 03:9B:01:35:3E:51:A3:A8:7E:83:59:63:BD:88:33:ED:81:85:3D:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/g0yUXdYSuBEU7wpjF_M-dIueuPE.roa
Signing time: Thu 02 Jan 2025 01:49:21 +0000
ROA not before: Thu 02 Jan 2025 01:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35260
IP address blocks: 217.26.112.0/20 maxlen: 20
2a00:1ac0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:f6:2a:1f:4d:e1:68:4d:45:aa:93:91:6f:c7:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=039b01353e51a3a87e835963bd8833ed81853d77
Validity
Not Before: Jan 2 01:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=834c945dd612b81114ef0a6317f33e748b9eb8f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a5:0e:16:86:cd:2f:78:82:3e:01:b1:62:2d:
3a:85:81:a8:97:80:dc:c9:a4:04:22:1d:1e:5e:36:
a6:73:7c:f9:f1:ee:76:ab:32:c3:c4:aa:f7:0b:03:
7d:8d:c3:39:8f:13:f5:17:e0:7c:46:48:f3:dc:e0:
14:b6:0a:75:c5:a7:b2:00:88:51:e9:ff:53:c3:4d:
98:21:e0:86:e2:d0:61:e9:27:fe:f1:bd:ea:ac:08:
5b:bc:62:76:c2:57:65:a2:04:a2:b0:7e:a2:30:97:
24:29:cf:55:b8:03:55:16:41:08:cd:92:11:d8:0f:
cb:79:d8:92:12:f6:f9:73:72:91:e4:ec:e9:ad:59:
90:6e:ed:2a:14:e5:61:0e:e2:5e:be:f2:17:6d:e9:
0f:aa:97:4b:74:c1:ed:8c:30:18:51:86:94:ab:55:
7e:56:a5:d0:e2:62:ae:73:2f:2b:69:f6:e6:39:8f:
3c:eb:d0:2e:75:fc:58:1b:66:e1:ee:1c:29:c4:93:
1b:aa:ee:71:b5:91:58:6c:96:1b:b6:3a:5e:2c:73:
fd:df:fd:44:02:b3:d1:4f:8f:fb:79:2c:94:6e:54:
7f:df:68:fe:56:76:eb:89:b5:62:0d:2d:c4:30:26:
d3:d8:c1:00:f4:81:2e:fb:b8:e1:e8:7e:8a:32:ea:
28:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4C:94:5D:D6:12:B8:11:14:EF:0A:63:17:F3:3E:74:8B:9E:B8:F1
X509v3 Authority Key Identifier:
keyid:03:9B:01:35:3E:51:A3:A8:7E:83:59:63:BD:88:33:ED:81:85:3D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/g0yUXdYSuBEU7wpjF_M-dIueuPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.26.112.0/20
IPv6:
2a00:1ac0::/32
Signature Algorithm: sha256WithRSAEncryption
2f:e5:7b:27:0b:62:f3:7a:f9:f7:de:27:6e:5b:fb:ec:a8:3b:
75:65:47:43:c3:23:27:93:9b:fd:65:1b:5d:ee:42:7c:af:67:
20:09:a6:d1:40:68:e8:a6:fc:6c:32:73:45:cc:38:38:dd:91:
06:ce:16:2e:cb:92:ad:46:3b:cd:3b:47:e7:e4:cd:f5:99:e6:
f2:c8:1f:f2:b2:d7:85:37:a4:3a:26:56:7c:f9:5d:7e:37:34:
98:6f:dd:5f:2a:f1:81:0d:67:66:8f:cf:e2:27:78:dd:de:01:
4d:d5:8d:31:9f:fd:43:21:08:66:cd:9c:cf:93:d1:59:19:6a:
1f:c2:30:fc:7e:bf:a2:50:bb:5d:06:22:0f:bf:33:eb:26:29:
ea:08:c2:e4:54:9b:29:7f:4c:8d:71:99:f2:24:61:80:fb:a1:
c2:26:0d:5f:80:79:ba:27:e0:1e:15:84:5b:77:8d:ad:14:3a:
59:f4:6f:79:73:81:97:b2:fe:4c:12:00:d2:14:d1:1c:59:6a:
0a:5f:7f:fa:59:b1:ad:f9:89:3e:db:68:e0:20:61:f6:bf:04:
07:3b:6d:e5:fd:47:10:35:0e:1e:1c:8f:b0:49:7e:66:5c:b3:
11:9b:44:f7:24:fd:0d:3e:c3:80:ce:15:f5:6e:f2:69:86:0e:
54:bd:fc:f3
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQks/YqH03haE1FqpORb8dPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzOWIwMTM1M2U1MWEzYTg3ZTgzNTk2M2JkODgzM2VkODE4
NTNkNzcwHhcNMjUwMTAyMDE0OTIxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzRjOTQ1ZGQ2MTJiODExMTRlZjBhNjMxN2YzM2U3NDhiOWViOGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6UOFobNL3iCPgGxYi06hYGol4Dc
yaQEIh0eXjamc3z58e52qzLDxKr3CwN9jcM5jxP1F+B8Rkjz3OAUtgp1xaeyAIhR
6f9Tw02YIeCG4tBh6Sf+8b3qrAhbvGJ2wldlogSisH6iMJckKc9VuANVFkEIzZIR
2A/LediSEvb5c3KR5OzprVmQbu0qFOVhDuJevvIXbekPqpdLdMHtjDAYUYaUq1V+
VqXQ4mKucy8rafbmOY8869AudfxYG2bh7hwpxJMbqu5xtZFYbJYbtjpeLHP93/1E
ArPRT4/7eSyUblR/32j+VnbribViDS3EMCbT2MEA9IEu+7jh6H6KMuooGwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFINMlF3WErgRFO8KYxfzPnSLnrjxMB8GA1UdIwQY
MBaAFAObATU+UaOofoNZY72IM+2BhT13MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTVzQk5UNVJvNmgtZzFsanZZZ3o3WUdGUFhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8yY2Y4OGYtMmM2YS00YjQ4LWEyNWUt
NGE4YjZiNDA4MmIxLzEvZzB5VVhkWVN1QkVVN3dwakZfTS1kSXVldVBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8yY2Y4OGYtMmM2YS00YjQ4LWEyNWUtNGE4YjZiNDA4MmIx
LzEvQTVzQk5UNVJvNmgtZzFsanZZZ3o3WUdGUFhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQE2RpwMA0E
AgACMAcDBQAqABrAMA0GCSqGSIb3DQEBCwUAA4IBAQAv5XsnC2Lzevn33iduW/vs
qDt1ZUdDwyMnk5v9ZRtd7kJ8r2cgCabRQGjopvxsMnNFzDg43ZEGzhYuy5KtRjvN
O0fn5M31mebyyB/ysteFN6Q6JlZ8+V1+NzSYb91fKvGBDWdmj8/iJ3jd3gFN1Y0x
n/1DIQhmzZzPk9FZGWofwjD8fr+iULtdBiIPvzPrJinqCMLkVJspf0yNcZnyJGGA
+6HCJg1fgHm6J+AeFYRbd42tFDpZ9G95c4GXsv5MEgDSFNEcWWoKX3/6WbGt+Yk+
22jgIGH2vwQHO23l/UcQNQ4eHI+wSX5mXLMRm0T3JP0NPsOAzhX1bvJphg5Uvfzz
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:54 2025 by rpki-client on console.sobornost.net