Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1922c9-4949-4055-a66e-15d32709bd0f/1/fbMdnuR0es_HjgTaYkDoz6AE4eQ.roa
File: fbMdnuR0es_HjgTaYkDoz6AE4eQ.roa (raw, json)
Hash identifier: b27haQtyNO61SdNpnuLEVI2t6aVsy/NGgbKBT4i0JIQ=
Subject key identifier: 7D:B3:1D:9E:E4:74:7A:CF:C7:8E:04:DA:62:40:E8:CF:A0:04:E1:E4
Certificate issuer: /CN=1a5a22dbc8dbd2d7248deaff47e3390f77fb4b0b
Certificate serial: 019423D76F25431DC49A9E883D151A955EAC
Authority key identifier: 1A:5A:22:DB:C8:DB:D2:D7:24:8D:EA:FF:47:E3:39:0F:77:FB:4B:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gloi28jb0tckjer_R-M5D3f7Sws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1922c9-4949-4055-a66e-15d32709bd0f/1/fbMdnuR0es_HjgTaYkDoz6AE4eQ.roa
Signing time: Wed 01 Jan 2025 21:48:28 +0000
ROA not before: Wed 01 Jan 2025 21:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61207
IP address blocks: 80.73.48.0/20 maxlen: 20
95.130.64.0/21 maxlen: 21
2a04:8080::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:6f:25:43:1d:c4:9a:9e:88:3d:15:1a:95:5e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a5a22dbc8dbd2d7248deaff47e3390f77fb4b0b
Validity
Not Before: Jan 1 21:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7db31d9ee4747acfc78e04da6240e8cfa004e1e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:fa:b8:f6:43:31:75:35:5e:de:aa:47:66:66:
20:25:57:1f:2c:e4:8d:62:bc:37:60:f7:a5:4b:a4:
43:50:5d:ef:f9:76:09:92:79:33:8b:fb:e7:bb:99:
69:85:56:f4:f5:57:d8:12:ba:15:e8:b9:cd:e5:65:
09:7d:b5:34:e7:77:81:95:f4:b8:2e:ad:c9:8d:9a:
b9:41:48:67:b9:2c:73:04:81:4c:e3:2e:80:56:67:
c8:e6:27:69:b2:e6:62:05:10:7a:b3:b9:04:56:c5:
c6:44:b3:2e:f9:7c:82:2c:5b:af:81:a6:a7:1b:71:
29:5a:50:92:32:25:ab:7b:94:1b:04:67:e9:de:e4:
d1:c0:20:e2:60:46:18:74:6e:ae:eb:4d:03:44:39:
bc:d9:f4:1c:7c:a8:4f:5c:fb:e5:c4:b3:51:5b:a1:
26:e6:96:08:c3:fc:6f:e3:b0:cf:f5:39:f3:d4:e4:
24:a6:24:db:19:cf:1e:c2:9e:29:63:43:41:b3:9b:
e1:d2:37:fd:5f:a3:81:77:75:bc:70:5e:7d:b6:d4:
43:b0:cd:b8:0d:6d:b8:29:11:58:e0:32:6c:79:f5:
17:b3:52:23:d1:1f:8c:4a:9c:88:18:d0:7a:d7:be:
2a:e3:d2:d4:3a:a9:74:3a:84:40:e9:57:46:16:e2:
14:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:B3:1D:9E:E4:74:7A:CF:C7:8E:04:DA:62:40:E8:CF:A0:04:E1:E4
X509v3 Authority Key Identifier:
keyid:1A:5A:22:DB:C8:DB:D2:D7:24:8D:EA:FF:47:E3:39:0F:77:FB:4B:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gloi28jb0tckjer_R-M5D3f7Sws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1922c9-4949-4055-a66e-15d32709bd0f/1/fbMdnuR0es_HjgTaYkDoz6AE4eQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1922c9-4949-4055-a66e-15d32709bd0f/1/Gloi28jb0tckjer_R-M5D3f7Sws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.73.48.0/20
95.130.64.0/21
IPv6:
2a04:8080::/29
Signature Algorithm: sha256WithRSAEncryption
10:d2:1d:4f:99:e2:bb:a2:b1:7f:5f:be:36:46:f0:9c:3b:b2:
52:83:f4:8d:6a:ae:93:00:96:86:3e:c3:89:80:fd:22:a3:4c:
2c:c3:7f:7f:cd:9e:8c:fe:b6:9b:54:8b:cc:2e:50:f4:1d:fd:
79:b1:20:ce:6e:05:e4:da:eb:d3:04:45:b1:2d:d9:16:b4:b7:
cd:31:05:4d:7f:77:c2:46:55:b5:bd:43:ed:c4:11:a5:77:31:
0d:3d:9f:a7:99:bd:41:46:a6:3c:93:ad:71:85:c0:65:fd:d4:
5a:29:c3:be:df:27:8c:3c:4f:3e:21:b9:96:73:4e:32:81:66:
68:6f:0c:ed:7c:da:ea:6f:4f:b0:31:9b:f5:95:84:ae:24:05:
da:a7:e4:b7:2b:bb:67:96:cb:8f:94:25:b1:f7:d7:dc:c2:30:
e5:5f:c1:fa:75:06:2e:dc:08:e2:f6:9d:e5:90:89:f8:21:4f:
a1:c7:8a:fe:c8:a5:79:a5:9f:87:d2:c6:7e:33:9a:c3:02:fd:
ca:c7:1d:f3:7e:fa:1d:dd:a2:50:19:1a:1c:3f:fd:47:a7:16:
4f:22:3a:f5:ff:e8:c5:d9:67:9c:7e:41:df:6f:ba:db:c0:45:
a7:65:5e:43:e9:ab:ef:57:e9:63:4f:63:b9:a0:a4:36:c9:8d:
f4:6c:29:40
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAZQj128lQx3Emp6IPRUalV6sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhNWEyMmRiYzhkYmQyZDcyNDhkZWFmZjQ3ZTMzOTBmNzdm
YjRiMGIwHhcNMjUwMTAxMjE0ODI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGIzMWQ5ZWU0NzQ3YWNmYzc4ZTA0ZGE2MjQwZThjZmEwMDRlMWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5/q49kMxdTVe3qpHZmYgJVcfLOSN
Yrw3YPelS6RDUF3v+XYJknkzi/vnu5lphVb09VfYEroV6LnN5WUJfbU053eBlfS4
Lq3JjZq5QUhnuSxzBIFM4y6AVmfI5idpsuZiBRB6s7kEVsXGRLMu+XyCLFuvgaan
G3EpWlCSMiWre5QbBGfp3uTRwCDiYEYYdG6u600DRDm82fQcfKhPXPvlxLNRW6Em
5pYIw/xv47DP9Tnz1OQkpiTbGc8ewp4pY0NBs5vh0jf9X6OBd3W8cF59ttRDsM24
DW24KRFY4DJsefUXs1Ij0R+MSpyIGNB6174q49LUOql0OoRA6VdGFuIU/wIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFH2zHZ7kdHrPx44E2mJA6M+gBOHkMB8GA1UdIwQY
MBaAFBpaItvI29LXJI3q/0fjOQ93+0sLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2xvaTI4amIwdGNramVyX1ItTTVEM2Y3U3dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8xOTIyYzktNDk0OS00MDU1LWE2NmUt
MTVkMzI3MDliZDBmLzEvZmJNZG51UjBlc19IamdUYVlrRG96NkFFNGVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS8xOTIyYzktNDk0OS00MDU1LWE2NmUtMTVkMzI3MDliZDBm
LzEvR2xvaTI4amIwdGNramVyX1ItTTVEM2Y3U3dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQEUEkwAwQD
X4JAMA0EAgACMAcDBQMqBICAMA0GCSqGSIb3DQEBCwUAA4IBAQAQ0h1PmeK7orF/
X742RvCcO7JSg/SNaq6TAJaGPsOJgP0io0wsw39/zZ6M/rabVIvMLlD0Hf15sSDO
bgXk2uvTBEWxLdkWtLfNMQVNf3fCRlW1vUPtxBGldzENPZ+nmb1BRqY8k61xhcBl
/dRaKcO+3yeMPE8+IbmWc04ygWZobwztfNrqb0+wMZv1lYSuJAXap+S3K7tnlsuP
lCWx99fcwjDlX8H6dQYu3Aji9p3lkIn4IU+hx4r+yKV5pZ+H0sZ+M5rDAv3Kxx3z
fvod3aJQGRocP/1HpxZPIjr1/+jF2WecfkHfb7rbwEWnZV5D6avvV+ljT2O5oKQ2
yY30bClA
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:00 2025 by rpki-client on console.sobornost.net