Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/1gqy8jv-V_H7oweUasDl-ECUQ1I.roa
File: 1gqy8jv-V_H7oweUasDl-ECUQ1I.roa (raw, json)
Hash identifier: w7kEB0Eg8qOWOT1pz0wZhRGBM4Y+whIgLQrg7qaGMxo=
Subject key identifier: D6:0A:B2:F2:3B:FE:57:F1:FB:A3:07:94:6A:C0:E5:F8:40:94:43:52
Certificate issuer: /CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Certificate serial: 01961FAA89EE29574E7AF0AEC5312C4B98E8
Authority key identifier: 8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/1gqy8jv-V_H7oweUasDl-ECUQ1I.roa
Signing time: Thu 10 Apr 2025 12:26:32 +0000
ROA not before: Thu 10 Apr 2025 12:26:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204018
IP address blocks: 156.67.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1f:aa:89:ee:29:57:4e:7a:f0:ae:c5:31:2c:4b:98:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f78963b3c4f2dd187c20437df1d7d9c168cab81
Validity
Not Before: Apr 10 12:26:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d60ab2f23bfe57f1fba307946ac0e5f840944352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:eb:b8:5f:ae:d1:ef:7d:93:8c:bc:94:93:7d:
f9:27:26:ea:24:45:ce:00:2f:1f:80:26:c1:0c:75:
77:85:11:dd:e4:e0:8d:5b:94:bf:90:76:ef:04:a4:
6d:fc:62:d3:4a:7a:a5:28:fe:b0:a5:a8:ef:ec:dd:
22:55:0b:4f:df:29:6d:93:f4:15:5f:ae:96:4d:58:
51:eb:a3:2c:59:08:08:84:d8:3f:be:d5:eb:7f:5c:
1c:a2:54:13:fc:b9:1f:16:5c:ce:07:f0:d3:bb:b4:
32:1b:ef:53:d2:4a:2d:6d:a0:05:e8:df:7d:8f:8f:
0c:e6:da:c5:cc:92:16:c4:68:6a:4e:49:af:9b:26:
6c:1f:db:b4:a9:c3:64:f7:27:7d:3f:39:6d:e0:91:
0c:7e:f5:37:22:71:1c:c7:83:78:24:a4:d2:a9:74:
bf:75:19:5a:96:e9:50:e6:ad:95:90:90:43:aa:5d:
93:a9:cf:fc:be:ca:14:37:50:a5:86:e8:6d:75:be:
c8:e2:3c:1d:86:9c:75:70:af:80:b7:32:61:59:a9:
b7:2b:2c:75:bd:37:0f:7a:9c:15:11:43:17:0b:f2:
4f:05:7f:ba:cf:29:32:9f:41:88:23:28:33:0a:d6:
8e:f0:c8:92:7f:08:50:6a:ce:fd:f0:f5:c7:86:c6:
46:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:0A:B2:F2:3B:FE:57:F1:FB:A3:07:94:6A:C0:E5:F8:40:94:43:52
X509v3 Authority Key Identifier:
keyid:8F:78:96:3B:3C:4F:2D:D1:87:C2:04:37:DF:1D:7D:9C:16:8C:AB:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j3iWOzxPLdGHwgQ33x19nBaMq4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/1gqy8jv-V_H7oweUasDl-ECUQ1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dbfca1-2b94-4d0b-9dd8-1ef9f2319522/1/j3iWOzxPLdGHwgQ33x19nBaMq4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.67.240.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:c0:1a:09:ea:ef:ea:02:94:9e:9b:37:87:ee:22:3d:57:40:
cc:94:a0:bc:d1:30:7a:ca:17:cd:57:f8:0d:d5:f9:6d:61:4b:
09:86:d4:3c:01:6c:98:44:49:b6:56:e3:7f:f5:2f:46:97:d2:
e1:8b:25:31:5f:0b:67:00:94:8f:3c:4a:01:cb:38:f3:52:de:
3d:d3:4d:81:cf:55:81:6d:9b:d9:bf:f5:f0:7c:ad:9a:64:98:
f8:2e:82:bd:97:29:71:01:a5:ba:aa:9f:7e:5d:0b:85:93:07:
87:4e:03:22:d5:ba:cd:2b:60:4c:a2:b5:15:5c:b9:21:c1:b7:
20:9f:d7:39:57:1d:d5:c3:52:0f:d6:48:d3:68:9f:70:9e:b1:
c5:86:06:95:77:15:a4:a9:95:9e:61:f7:a2:eb:90:f5:70:d1:
9f:49:22:18:5a:1f:84:f0:8b:8b:47:78:7c:5a:b3:11:55:8b:
7d:df:c6:6c:b3:50:df:0b:19:51:55:31:9f:e9:bf:16:b3:1c:
90:e4:f0:28:a2:e2:87:d6:7b:2c:6a:23:81:fb:6b:27:39:5b:
ef:44:95:54:f5:1d:aa:c6:65:54:20:8e:ca:ce:be:81:75:41:
27:bf:c5:ad:aa:f0:e5:c5:34:a3:6d:27:02:08:d6:00:53:18:
95:c4:f1:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZYfqonuKVdOevCuxTEsS5joMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmNzg5NjNiM2M0ZjJkZDE4N2MyMDQzN2RmMWQ3ZDljMTY4
Y2FiODEwHhcNMjUwNDEwMTIyNjMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNjBhYjJmMjNiZmU1N2YxZmJhMzA3OTQ2YWMwZTVmODQwOTQ0MzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8+u4X67R732TjLyUk335JybqJEXO
AC8fgCbBDHV3hRHd5OCNW5S/kHbvBKRt/GLTSnqlKP6wpajv7N0iVQtP3yltk/QV
X66WTVhR66MsWQgIhNg/vtXrf1wcolQT/LkfFlzOB/DTu7QyG+9T0kotbaAF6N99
j48M5trFzJIWxGhqTkmvmyZsH9u0qcNk9yd9Pzlt4JEMfvU3InEcx4N4JKTSqXS/
dRlalulQ5q2VkJBDql2Tqc/8vsoUN1Clhuhtdb7I4jwdhpx1cK+AtzJhWam3Kyx1
vTcPepwVEUMXC/JPBX+6zykyn0GIIygzCtaO8MiSfwhQas798PXHhsZGqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNYKsvI7/lfx+6MHlGrA5fhAlENSMB8GA1UdIwQY
MBaAFI94ljs8Ty3Rh8IEN98dfZwWjKuBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvajNpV096eFBMZEdId2dRMzN4MTluQmFNcTRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9kYmZjYTEtMmI5NC00ZDBiLTlkZDgt
MWVmOWYyMzE5NTIyLzEvMWdxeThqdi1WX0g3b3dlVWFzRGwtRUNVUTFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9kYmZjYTEtMmI5NC00ZDBiLTlkZDgtMWVmOWYyMzE5NTIy
LzEvajNpV096eFBMZEdId2dRMzN4MTluQmFNcTRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnEPwMA0G
CSqGSIb3DQEBCwUAA4IBAQCuwBoJ6u/qApSemzeH7iI9V0DMlKC80TB6yhfNV/gN
1fltYUsJhtQ8AWyYREm2VuN/9S9Gl9LhiyUxXwtnAJSPPEoByzjzUt49002Bz1WB
bZvZv/XwfK2aZJj4LoK9lylxAaW6qp9+XQuFkweHTgMi1brNK2BMorUVXLkhwbcg
n9c5Vx3Vw1IP1kjTaJ9wnrHFhgaVdxWkqZWeYfei65D1cNGfSSIYWh+E8IuLR3h8
WrMRVYt938Zss1DfCxlRVTGf6b8WsxyQ5PAoouKH1nssaiOB+2snOVvvRJVU9R2q
xmVUII7Kzr6BdUEnv8WtqvDlxTSjbScCCNYAUxiVxPFP
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:04 2025 by rpki-client on console.sobornost.net