Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/a1811b-617f-469f-acde-63e1c104a8db/1/shgH4_EQdby9FFBN3Y5GUQj4Toc.roa
File: shgH4_EQdby9FFBN3Y5GUQj4Toc.roa (raw, json)
Hash identifier: +F1kGaAyVQdETpR4Si2c2G3OanhyfIaqHi8fbDMWM9U=
Subject key identifier: B2:18:07:E3:F1:10:75:BC:BD:14:50:4D:DD:8E:46:51:08:F8:4E:87
Certificate issuer: /CN=9fb41d252f120acb140d0fc84334152114b6c826
Certificate serial: 01961EF8EBE3E99C04EA23A7CD9993626F41
Authority key identifier: 9F:B4:1D:25:2F:12:0A:CB:14:0D:0F:C8:43:34:15:21:14:B6:C8:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7QdJS8SCssUDQ_IQzQVIRS2yCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/a1811b-617f-469f-acde-63e1c104a8db/1/shgH4_EQdby9FFBN3Y5GUQj4Toc.roa
Signing time: Thu 10 Apr 2025 09:12:31 +0000
ROA not before: Thu 10 Apr 2025 09:12:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8075
IP address blocks: 217.71.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1e:f8:eb:e3:e9:9c:04:ea:23:a7:cd:99:93:62:6f:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fb41d252f120acb140d0fc84334152114b6c826
Validity
Not Before: Apr 10 09:12:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b21807e3f11075bcbd14504ddd8e465108f84e87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cf:60:50:8b:ed:56:df:c3:14:9e:5b:18:4d:
21:5f:4d:19:ee:56:2f:9b:e7:01:7d:05:11:13:6e:
3d:91:74:45:36:da:1e:1e:5e:ba:cf:fd:c8:4e:9d:
23:24:91:6b:95:5c:67:35:92:d7:fb:ea:f3:12:70:
a7:1f:3a:38:c7:b8:fd:1f:74:fc:10:33:05:19:30:
f8:9d:dc:ac:08:66:fe:48:f9:bc:2f:a1:02:0a:ff:
34:25:7e:4b:f5:88:ce:cf:95:bd:c5:47:d3:20:8c:
51:23:bc:86:72:a2:c4:29:c3:3c:82:c8:ac:42:23:
01:87:58:a8:b1:11:3b:03:ff:74:42:bb:c5:fc:dd:
9c:de:a6:c6:59:17:93:49:df:51:44:00:ba:61:a8:
a4:80:c7:5e:03:04:4a:98:54:3f:90:91:32:14:e4:
61:17:46:ce:46:30:7e:9e:f5:4d:c6:50:cd:54:49:
10:e6:dd:d2:f8:d6:7d:ef:bb:fd:51:bf:8e:26:a6:
37:ef:04:33:80:c7:b5:65:5d:2d:a4:1e:d9:e8:dd:
0b:2c:bd:40:33:d7:b1:7d:05:63:fb:1b:0d:70:03:
8a:1e:b1:5b:e4:9e:c4:90:d8:60:c0:c2:be:16:53:
98:c0:b0:82:19:76:9b:d9:d9:ab:8c:a1:94:1d:bf:
63:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:18:07:E3:F1:10:75:BC:BD:14:50:4D:DD:8E:46:51:08:F8:4E:87
X509v3 Authority Key Identifier:
keyid:9F:B4:1D:25:2F:12:0A:CB:14:0D:0F:C8:43:34:15:21:14:B6:C8:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7QdJS8SCssUDQ_IQzQVIRS2yCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a1811b-617f-469f-acde-63e1c104a8db/1/shgH4_EQdby9FFBN3Y5GUQj4Toc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a1811b-617f-469f-acde-63e1c104a8db/1/n7QdJS8SCssUDQ_IQzQVIRS2yCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.71.189.0/24
Signature Algorithm: sha256WithRSAEncryption
71:50:73:18:df:28:ea:2e:01:3e:73:aa:da:02:7d:3e:97:c1:
f9:8a:4b:45:91:08:3d:78:7a:84:d5:78:42:99:f8:63:3c:c9:
f0:88:6e:c5:40:8b:1f:9a:31:40:00:0e:a0:32:9f:fc:46:25:
88:0d:eb:05:09:b8:c2:e9:20:b2:0e:f4:cc:bc:72:19:0f:a9:
9c:2d:22:ac:f1:0f:cc:60:71:86:cd:34:59:08:11:f7:6d:01:
18:10:38:2e:c6:83:71:89:ac:98:23:31:8e:0c:07:5b:db:7b:
5c:fb:b0:13:b9:01:4e:50:51:27:e8:f4:d0:cb:50:74:d4:87:
a8:5b:2d:74:ce:4e:20:d9:ef:bc:a4:60:1f:4e:ec:8b:6d:8f:
83:d4:f0:78:fb:44:ec:75:51:a5:12:ba:50:d1:49:1f:a0:5d:
fa:4a:c6:eb:95:67:f6:27:28:97:89:a5:8c:22:36:d7:12:08:
d7:0b:19:97:d5:00:36:16:65:67:9a:cb:c0:24:e3:31:52:0c:
88:69:06:21:b0:73:5b:df:5d:ce:77:ea:a4:4f:a4:05:9d:89:
98:d3:6c:7b:17:51:38:4d:50:a1:a1:78:37:dd:76:75:11:a7:
4a:ab:e3:fc:d1:25:41:31:a5:de:67:05:8f:3c:76:1d:f7:0f:
a4:05:b5:ee
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZYe+Ovj6ZwE6iOnzZmTYm9BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmYjQxZDI1MmYxMjBhY2IxNDBkMGZjODQzMzQxNTIxMTRi
NmM4MjYwHhcNMjUwNDEwMDkxMjMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjE4MDdlM2YxMTA3NWJjYmQxNDUwNGRkZDhlNDY1MTA4Zjg0ZTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwM9gUIvtVt/DFJ5bGE0hX00Z7lYv
m+cBfQURE249kXRFNtoeHl66z/3ITp0jJJFrlVxnNZLX++rzEnCnHzo4x7j9H3T8
EDMFGTD4ndysCGb+SPm8L6ECCv80JX5L9YjOz5W9xUfTIIxRI7yGcqLEKcM8gsis
QiMBh1iosRE7A/90QrvF/N2c3qbGWReTSd9RRAC6YaikgMdeAwRKmFQ/kJEyFORh
F0bORjB+nvVNxlDNVEkQ5t3S+NZ977v9Ub+OJqY37wQzgMe1ZV0tpB7Z6N0LLL1A
M9exfQVj+xsNcAOKHrFb5J7EkNhgwMK+FlOYwLCCGXab2dmrjKGUHb9j4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLIYB+PxEHW8vRRQTd2ORlEI+E6HMB8GA1UdIwQY
MBaAFJ+0HSUvEgrLFA0PyEM0FSEUtsgmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbjdRZEpTOFNDc3NVRFFfSVF6UVZJUlMyeUNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9hMTgxMWItNjE3Zi00NjlmLWFjZGUt
NjNlMWMxMDRhOGRiLzEvc2hnSDRfRVFkYnk5RkZCTjNZNUdVUWo0VG9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9hMTgxMWItNjE3Zi00NjlmLWFjZGUtNjNlMWMxMDRhOGRi
LzEvbjdRZEpTOFNDc3NVRFFfSVF6UVZJUlMyeUNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2Ue9MA0G
CSqGSIb3DQEBCwUAA4IBAQBxUHMY3yjqLgE+c6raAn0+l8H5iktFkQg9eHqE1XhC
mfhjPMnwiG7FQIsfmjFAAA6gMp/8RiWIDesFCbjC6SCyDvTMvHIZD6mcLSKs8Q/M
YHGGzTRZCBH3bQEYEDguxoNxiayYIzGODAdb23tc+7ATuQFOUFEn6PTQy1B01Ieo
Wy10zk4g2e+8pGAfTuyLbY+D1PB4+0TsdVGlErpQ0UkfoF36SsbrlWf2JyiXiaWM
IjbXEgjXCxmX1QA2FmVnmsvAJOMxUgyIaQYhsHNb313Od+qkT6QFnYmY02x7F1E4
TVChoXg33XZ1EadKq+P80SVBMaXeZwWPPHYd9w+kBbXu
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:15 2025 by rpki-client on console.sobornost.net