Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/8gpUYfd4xy8o_wmWfSNkNDy2_OE.roa
File: 8gpUYfd4xy8o_wmWfSNkNDy2_OE.roa (raw, json)
Hash identifier: n+5VQVseGoz16dlqFM33ratLsBElZcuYMUs0aQixM7A=
Subject key identifier: F2:0A:54:61:F7:78:C7:2F:28:FF:09:96:7D:23:64:34:3C:B6:FC:E1
Certificate issuer: /CN=d367d1635b46b3c2274b287505bbbd7d915dcaf5
Certificate serial: 019421B1DC21C68A1011605E6F86B5031E17
Authority key identifier: D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02fRY1tGs8InSyh1Bbu9fZFdyvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/8gpUYfd4xy8o_wmWfSNkNDy2_OE.roa
Signing time: Wed 01 Jan 2025 11:48:11 +0000
ROA not before: Wed 01 Jan 2025 11:48:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 23393
IP address blocks: 178.255.80.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:dc:21:c6:8a:10:11:60:5e:6f:86:b5:03:1e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d367d1635b46b3c2274b287505bbbd7d915dcaf5
Validity
Not Before: Jan 1 11:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f20a5461f778c72f28ff09967d2364343cb6fce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d0:c4:04:70:01:7b:2a:44:b4:83:8c:ff:38:
d8:0e:35:62:b2:6c:24:78:59:6f:cb:a4:76:ae:f2:
6d:5f:89:c0:1d:70:c3:0c:08:30:4a:e0:98:1c:ef:
58:c6:2a:a3:9a:af:fe:b9:15:7f:99:1d:d0:4a:9b:
b3:54:e5:34:a5:47:a4:e9:04:dd:e5:7a:02:12:4b:
6a:5f:0e:d9:9f:5b:6a:74:09:15:c1:8f:5d:85:65:
1d:2b:59:df:68:30:4c:7e:2a:ac:07:21:e6:cf:ee:
5c:81:08:1c:e0:04:9e:85:4a:b2:78:37:75:5a:78:
2c:dc:f8:50:e8:5c:43:19:88:a1:38:a9:47:08:80:
76:43:b4:dd:c2:3c:8a:28:ae:f7:49:57:ea:64:79:
e1:f0:2a:cb:f9:6b:00:0f:70:9a:7f:31:a4:cb:de:
44:9f:43:a3:d2:8c:75:0d:f2:c6:ab:31:e2:09:8a:
92:4d:57:9e:d2:c2:01:3a:14:14:86:32:3e:52:6a:
6f:dc:c4:4d:82:13:96:7c:80:fd:52:51:47:ce:b1:
1f:bc:49:15:d6:4f:99:66:56:01:77:ef:de:f9:ed:
3b:c3:b8:f8:ac:19:3e:54:5b:29:5d:d7:ee:12:05:
f3:0f:5b:2c:d1:23:50:0c:08:a3:e5:0c:c1:4b:b3:
56:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:0A:54:61:F7:78:C7:2F:28:FF:09:96:7D:23:64:34:3C:B6:FC:E1
X509v3 Authority Key Identifier:
keyid:D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02fRY1tGs8InSyh1Bbu9fZFdyvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/8gpUYfd4xy8o_wmWfSNkNDy2_OE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/02fRY1tGs8InSyh1Bbu9fZFdyvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.255.80.0/21
Signature Algorithm: sha256WithRSAEncryption
50:f5:94:30:bc:1d:b8:f4:31:24:3e:2a:30:38:6f:d8:fa:8f:
59:d7:8f:91:15:2a:cd:1f:dd:f1:b8:48:0a:04:ba:67:03:1f:
ac:a5:c4:e3:de:38:98:3f:ea:9a:98:01:7c:52:d7:23:c2:f7:
c2:a0:d9:bf:0c:2d:30:72:89:8e:08:5a:d3:63:a5:ba:c6:bc:
6e:cd:d0:7c:68:c3:46:c1:67:c2:f8:3c:4f:28:72:9a:24:cd:
57:fa:20:34:cf:1a:bb:cb:30:f1:9a:90:bd:c8:2c:21:6a:45:
d2:6a:87:d1:67:e0:d6:3b:7f:90:95:c7:50:c3:68:86:c0:ce:
55:b5:eb:f7:b4:2e:61:26:08:f1:46:c1:30:33:70:c3:8c:79:
27:eb:08:f6:bd:1c:6a:dc:46:ce:94:fa:37:fc:cb:0d:d4:27:
27:28:31:53:e0:fa:8e:41:7c:4e:9d:d4:51:ad:ae:7d:05:e8:
54:9b:34:af:3d:f5:48:71:6e:ba:15:50:50:f0:0c:7d:82:15:
05:1b:28:b6:13:a8:d8:ea:ff:92:1b:c0:f3:2a:40:47:3f:4e:
3d:90:fc:ed:37:6f:bc:67:db:ca:bb:76:15:4d:d7:71:0a:31:
c7:94:51:55:7b:4a:fe:b2:0f:90:2d:44:d2:11:dd:24:6e:3c:
5f:c8:e8:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsdwhxooQEWBeb4a1Ax4XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNjdkMTYzNWI0NmIzYzIyNzRiMjg3NTA1YmJiZDdkOTE1
ZGNhZjUwHhcNMjUwMTAxMTE0ODExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjBhNTQ2MWY3NzhjNzJmMjhmZjA5OTY3ZDIzNjQzNDNjYjZmY2UxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNDEBHABeypEtIOM/zjYDjVismwk
eFlvy6R2rvJtX4nAHXDDDAgwSuCYHO9Yxiqjmq/+uRV/mR3QSpuzVOU0pUek6QTd
5XoCEktqXw7Zn1tqdAkVwY9dhWUdK1nfaDBMfiqsByHmz+5cgQgc4ASehUqyeDd1
Wngs3PhQ6FxDGYihOKlHCIB2Q7TdwjyKKK73SVfqZHnh8CrL+WsAD3CafzGky95E
n0Oj0ox1DfLGqzHiCYqSTVee0sIBOhQUhjI+Umpv3MRNghOWfID9UlFHzrEfvEkV
1k+ZZlYBd+/e+e07w7j4rBk+VFspXdfuEgXzD1ss0SNQDAij5QzBS7NWYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPIKVGH3eMcvKP8Jln0jZDQ8tvzhMB8GA1UdIwQY
MBaAFNNn0WNbRrPCJ0sodQW7vX2RXcr1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDJmUlkxdEdzOEluU3loMUJidTlmWkZkeXZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy84YThiNGMtOGYxMi00YzhkLThiZTQt
NjliOGQ2YjUzZThjLzEvOGdwVVlmZDR4eThvX3dtV2ZTTmtORHkyX09FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy84YThiNGMtOGYxMi00YzhkLThiZTQtNjliOGQ2YjUzZThj
LzEvMDJmUlkxdEdzOEluU3loMUJidTlmWkZkeXZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDsv9QMA0G
CSqGSIb3DQEBCwUAA4IBAQBQ9ZQwvB249DEkPiowOG/Y+o9Z14+RFSrNH93xuEgK
BLpnAx+spcTj3jiYP+qamAF8UtcjwvfCoNm/DC0wcomOCFrTY6W6xrxuzdB8aMNG
wWfC+DxPKHKaJM1X+iA0zxq7yzDxmpC9yCwhakXSaofRZ+DWO3+QlcdQw2iGwM5V
tev3tC5hJgjxRsEwM3DDjHkn6wj2vRxq3EbOlPo3/MsN1CcnKDFT4PqOQXxOndRR
ra59BehUmzSvPfVIcW66FVBQ8Ax9ghUFGyi2E6jY6v+SG8DzKkBHP049kPztN2+8
Z9vKu3YVTddxCjHHlFFVe0r+sg+QLUTSEd0kbjxfyOi1
-----END CERTIFICATE-----
Generated at Sat Mar 8 04:56:28 2025 by rpki-client on console.sobornost.net