Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/bHa5FimsimJ7r5ToFYrryDiB-9M.roa
File: bHa5FimsimJ7r5ToFYrryDiB-9M.roa (raw, json)
Hash identifier: fOdUqsDSfmPIMyaQ7PWVxrcyqzptZELP3xikWCnwSh0=
Subject key identifier: 6C:76:B9:16:29:AC:8A:62:7B:AF:94:E8:15:8A:EB:C8:38:81:FB:D3
Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb
Certificate serial: 019427B5DE7237B13ECEFB93B1011FD577DA
Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/bHa5FimsimJ7r5ToFYrryDiB-9M.roa
Signing time: Thu 02 Jan 2025 15:50:17 +0000
ROA not before: Thu 02 Jan 2025 15:50:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204382
IP address blocks: 185.250.176.0/22 maxlen: 22
2a0c:1040::/29 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:de:72:37:b1:3e:ce:fb:93:b1:01:1f:d5:77:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb
Validity
Not Before: Jan 2 15:50:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c76b91629ac8a627baf94e8158aebc83881fbd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a7:1e:39:88:a9:77:0d:f2:d0:52:b3:62:eb:
24:53:4c:df:6e:99:fa:3f:6f:f6:6a:f4:2e:61:07:
ff:2e:b7:24:15:b0:1c:51:8c:e3:d8:b8:02:78:06:
be:c1:86:f0:18:26:17:74:98:bc:5d:4c:94:52:ad:
f4:b6:30:d3:a9:91:92:1b:ed:8a:5d:94:49:1e:42:
38:49:33:ea:b2:c7:46:5b:b9:4c:2a:d6:e3:a6:9c:
bb:9d:8e:8d:6f:00:6b:b9:ad:69:0c:ab:b6:c1:8d:
55:d9:21:de:08:4d:b8:3a:b7:c4:7b:d5:9a:95:63:
e1:c3:8d:11:69:9a:2b:96:9a:bf:a7:34:c8:07:36:
66:bf:54:d1:b1:36:5a:d6:0a:ef:9c:58:af:e1:53:
83:8e:0f:e1:40:30:7d:82:1b:3f:14:7f:9a:36:b0:
ab:17:13:65:f7:a1:48:e9:8a:e6:be:84:20:ae:3d:
3b:db:ba:de:e8:06:a9:dd:60:7e:1b:e7:60:2f:73:
73:69:e3:2b:25:d1:63:3c:51:e5:10:0f:da:fe:1a:
98:74:2b:e5:7d:1b:a6:0a:06:56:c1:41:b3:d3:69:
5d:49:a5:2b:b2:e2:7c:e3:d7:43:26:7d:c2:fe:c4:
d5:f8:ab:11:c1:e7:af:e7:90:69:82:18:8a:3e:85:
a4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:76:B9:16:29:AC:8A:62:7B:AF:94:E8:15:8A:EB:C8:38:81:FB:D3
X509v3 Authority Key Identifier:
keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/bHa5FimsimJ7r5ToFYrryDiB-9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.250.176.0/22
IPv6:
2a0c:1040::/29
Signature Algorithm: sha256WithRSAEncryption
6c:a6:8b:0e:66:5c:43:1c:00:b7:8b:5b:8a:2e:97:bf:77:48:
11:9f:b7:61:d0:0a:9d:58:ed:ab:d7:5a:55:32:3c:9f:ee:e8:
28:bb:c1:a1:18:67:6c:dd:12:8c:d4:88:43:44:99:c9:1e:ce:
43:81:49:2b:2b:8b:7d:f4:37:8a:33:dd:07:91:37:e8:e1:64:
15:57:15:4d:0e:49:b1:5a:32:2e:cf:57:1a:49:04:8a:3b:2e:
24:a1:44:cb:48:13:19:11:f5:84:fd:30:7e:f4:e4:9f:ae:fa:
97:73:3e:f2:be:81:79:0c:b0:64:e2:bf:f7:f2:76:7b:11:95:
6b:c1:38:dc:e2:a4:a1:88:94:79:77:18:1c:7f:51:cf:a1:d5:
b2:2f:e2:33:3c:6c:8d:cf:03:ff:d8:20:78:31:57:66:2d:37:
eb:db:25:d9:5e:cc:3a:fa:74:07:dc:0f:5a:d8:85:3c:fd:81:
06:46:21:77:35:c3:89:d6:37:e0:bf:69:83:aa:09:61:8b:06:
3c:20:dd:c3:51:6b:db:13:76:7b:7c:c7:b9:0b:42:a4:14:a8:
e0:e3:21:9c:e0:02:d5:96:7c:80:0c:55:5b:1e:ef:85:9e:3e:
bf:71:fd:4f:48:f7:1d:d5:19:f4:bd:07:e6:69:cf:9c:70:46:
0f:df:44:e9
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQntd5yN7E+zvuTsQEf1XfaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyMjZhOTk3NDEwMmJhNTgyMjE3MTg4YmU2ZDQ5ZDg3NzZk
M2JlYmIwHhcNMjUwMTAyMTU1MDE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Yzc2YjkxNjI5YWM4YTYyN2JhZjk0ZTgxNThhZWJjODM4ODFmYmQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2aceOYipdw3y0FKzYuskU0zfbpn6
P2/2avQuYQf/LrckFbAcUYzj2LgCeAa+wYbwGCYXdJi8XUyUUq30tjDTqZGSG+2K
XZRJHkI4STPqssdGW7lMKtbjppy7nY6NbwBrua1pDKu2wY1V2SHeCE24OrfEe9Wa
lWPhw40RaZorlpq/pzTIBzZmv1TRsTZa1grvnFiv4VODjg/hQDB9ghs/FH+aNrCr
FxNl96FI6YrmvoQgrj0727re6Aap3WB+G+dgL3NzaeMrJdFjPFHlEA/a/hqYdCvl
fRumCgZWwUGz02ldSaUrsuJ849dDJn3C/sTV+KsRweev55BpghiKPoWkWQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGx2uRYprIpie6+U6BWK68g4gfvTMB8GA1UdIwQY
MBaAFIImqZdBArpYIhcYi+bUnYd20767MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2lhcGwwRUN1bGdpRnhpTDV0U2RoM2JUdnJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8zNTQ3N2YtODBkMC00ZWE0LWJiZGUt
NzY3YjcyZWI0MDdiLzEvYkhhNUZpbXNpbUo3cjVUb0ZZcnJ5RGlCLTlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS8zNTQ3N2YtODBkMC00ZWE0LWJiZGUtNzY3YjcyZWI0MDdi
LzEvZ2lhcGwwRUN1bGdpRnhpTDV0U2RoM2JUdnJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCufqwMA0E
AgACMAcDBQMqDBBAMA0GCSqGSIb3DQEBCwUAA4IBAQBsposOZlxDHAC3i1uKLpe/
d0gRn7dh0AqdWO2r11pVMjyf7ugou8GhGGds3RKM1IhDRJnJHs5DgUkrK4t99DeK
M90HkTfo4WQVVxVNDkmxWjIuz1caSQSKOy4koUTLSBMZEfWE/TB+9OSfrvqXcz7y
voF5DLBk4r/38nZ7EZVrwTjc4qShiJR5dxgcf1HPodWyL+IzPGyNzwP/2CB4MVdm
LTfr2yXZXsw6+nQH3A9a2IU8/YEGRiF3NcOJ1jfgv2mDqglhiwY8IN3DUWvbE3Z7
fMe5C0KkFKjg4yGc4ALVlnyADFVbHu+Fnj6/cf1PSPcd1Rn0vQfmac+ccEYP30Tp
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:45 2025 by rpki-client on console.sobornost.net