Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa
File: fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa (raw, json)
Hash identifier: NJGE7uKTYs1I+EUOo5wFk+oBfIXQxyDxL9xtb3Bt434=
Subject key identifier: 7D:32:B2:5A:97:99:07:31:C8:A4:73:80:3F:F1:D6:77:22:D9:F6:09
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 019424450041953493D665C8D315CB3A3E5F
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa
Signing time: Wed 01 Jan 2025 23:48:09 +0000
ROA not before: Wed 01 Jan 2025 23:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59909
IP address blocks: 45.90.76.0/22 maxlen: 24
2a0c:b5c0::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:00:41:95:34:93:d6:65:c8:d3:15:cb:3a:3e:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Jan 1 23:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d32b25a97990731c8a473803ff1d67722d9f609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a7:78:43:15:af:15:f6:c9:e6:05:3d:2f:25:
d5:3e:e5:bc:51:0d:d2:fd:49:63:d0:c0:bc:f9:c8:
dc:0b:98:eb:8e:59:ce:fe:21:5d:9b:67:f3:a7:7c:
76:a3:5a:a3:4a:32:11:85:23:bb:dd:8b:55:77:86:
ad:34:55:7f:c9:e7:44:88:79:6f:aa:c4:37:4a:09:
bd:39:5b:08:da:d6:84:73:2f:1e:e8:0d:87:9c:ad:
25:63:53:c2:16:36:a2:80:d6:80:97:38:84:fe:37:
54:10:e0:6e:40:12:64:f0:fc:97:f2:87:68:59:06:
8b:6b:d9:ac:03:86:67:d4:0e:97:54:bb:3e:cc:f1:
47:8c:03:ec:19:7c:72:6e:f3:23:c9:1d:e1:62:a2:
db:4d:66:db:14:dd:23:21:a2:80:27:2f:45:53:20:
09:fa:46:49:09:b8:df:b0:9c:96:35:66:de:b9:75:
81:e4:a4:e0:e3:fb:0f:87:af:2d:cb:3b:1e:4c:f2:
1c:df:88:7e:ea:95:8a:26:37:ae:96:a1:d3:2b:ca:
28:47:80:84:e8:03:9f:96:4f:09:80:ed:04:9f:7e:
7d:11:d5:c9:48:b7:0a:62:3d:aa:66:b8:b5:aa:ad:
9a:2d:f2:90:92:9f:20:5d:07:b0:63:a8:d5:4f:5f:
3c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:32:B2:5A:97:99:07:31:C8:A4:73:80:3F:F1:D6:77:22:D9:F6:09
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/fTKyWpeZBzHIpHOAP_HWdyLZ9gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.76.0/22
IPv6:
2a0c:b5c0::/29
Signature Algorithm: sha256WithRSAEncryption
96:c8:79:32:d2:b4:89:17:db:3f:cc:a6:10:17:52:02:b0:42:
37:03:08:bb:7f:26:0b:df:4b:dd:73:f0:de:19:7f:45:21:f1:
26:8c:a6:f7:33:08:42:16:3f:73:fc:2e:ad:5c:3e:34:82:88:
3d:cc:67:35:f4:70:82:a2:5a:91:fd:9d:2f:3b:2a:2c:48:2f:
99:c2:39:c9:f3:14:c9:3a:5a:f7:f0:82:5a:9b:72:73:1c:91:
d8:d2:ea:95:bb:13:d0:d7:7c:9e:20:29:38:9a:7b:73:2f:b8:
54:45:d8:e9:12:8a:95:9a:e0:62:3d:88:e7:39:f0:4d:c8:53:
f2:2d:35:a2:5c:0e:6e:7c:97:cb:28:97:89:a6:fe:8a:1f:d0:
8a:42:4d:6e:68:35:a2:ea:4a:4b:ad:8e:2b:cd:8f:dd:62:60:
a4:fc:69:3a:97:0e:41:0a:af:b7:67:21:47:ff:95:41:5b:98:
73:46:6b:97:48:71:a1:f5:fb:11:21:a3:44:03:c7:14:96:64:
08:06:f7:8b:87:2a:8f:ff:6a:9b:22:5b:d5:c1:ce:a8:cf:7f:
15:c9:bd:cf:b0:76:2f:d4:31:82:94:f8:59:49:dd:20:e9:ae:
7a:aa:0a:be:32:2c:ea:11:00:39:2c:01:68:cb:e7:ff:6d:5b:
24:96:1e:e6
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQkRQBBlTST1mXI0xXLOj5fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi
ZTg5NTgwHhcNMjUwMTAxMjM0ODA5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDMyYjI1YTk3OTkwNzMxYzhhNDczODAzZmYxZDY3NzIyZDlmNjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqd4QxWvFfbJ5gU9LyXVPuW8UQ3S
/Ulj0MC8+cjcC5jrjlnO/iFdm2fzp3x2o1qjSjIRhSO73YtVd4atNFV/yedEiHlv
qsQ3Sgm9OVsI2taEcy8e6A2HnK0lY1PCFjaigNaAlziE/jdUEOBuQBJk8PyX8odo
WQaLa9msA4Zn1A6XVLs+zPFHjAPsGXxybvMjyR3hYqLbTWbbFN0jIaKAJy9FUyAJ
+kZJCbjfsJyWNWbeuXWB5KTg4/sPh68tyzseTPIc34h+6pWKJjeulqHTK8ooR4CE
6AOflk8JgO0En359EdXJSLcKYj2qZri1qq2aLfKQkp8gXQewY6jVT188oQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFH0yslqXmQcxyKRzgD/x1nci2fYJMB8GA1UdIwQY
MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt
ZjYwYWYyYTgyMDYwLzEvZlRLeVdwZVpCekhJcEhPQVBfSFdkeUxaOWdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw
LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLVpMMA0E
AgACMAcDBQMqDLXAMA0GCSqGSIb3DQEBCwUAA4IBAQCWyHky0rSJF9s/zKYQF1IC
sEI3Awi7fyYL30vdc/DeGX9FIfEmjKb3MwhCFj9z/C6tXD40gog9zGc19HCColqR
/Z0vOyosSC+ZwjnJ8xTJOlr38IJam3JzHJHY0uqVuxPQ13yeICk4mntzL7hURdjp
EoqVmuBiPYjnOfBNyFPyLTWiXA5ufJfLKJeJpv6KH9CKQk1uaDWi6kpLrY4rzY/d
YmCk/Gk6lw5BCq+3ZyFH/5VBW5hzRmuXSHGh9fsRIaNEA8cUlmQIBveLhyqP/2qb
IlvVwc6oz38Vyb3PsHYv1DGClPhZSd0g6a56qgq+MizqEQA5LAFoy+f/bVsklh7m
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:28 2025 by rpki-client on console.sobornost.net