Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/a8-LoFpzpvju-2XWs2Ak1Mj-svc.roa
File: a8-LoFpzpvju-2XWs2Ak1Mj-svc.roa (raw, json)
Hash identifier: wRN7eTSTbn3kvEiQSolKkMG8ZX0jIhoh/J7KJ9xpJnI=
Subject key identifier: 6B:CF:8B:A0:5A:73:A6:F8:EE:FB:65:D6:B3:60:24:D4:C8:FE:B2:F7
Certificate issuer: /CN=baaba2a56a0c30fdaf5934af8765c1ffd1357a48
Certificate serial: 019424457FDFE3B046B9697D3A9E2B95199F
Authority key identifier: BA:AB:A2:A5:6A:0C:30:FD:AF:59:34:AF:87:65:C1:FF:D1:35:7A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uquipWoMMP2vWTSvh2XB_9E1ekg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/a8-LoFpzpvju-2XWs2Ak1Mj-svc.roa
Signing time: Wed 01 Jan 2025 23:48:42 +0000
ROA not before: Wed 01 Jan 2025 23:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209146
IP address blocks: 5.180.56.0/24 maxlen: 24
2a09:ff40::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:7f:df:e3:b0:46:b9:69:7d:3a:9e:2b:95:19:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaba2a56a0c30fdaf5934af8765c1ffd1357a48
Validity
Not Before: Jan 1 23:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6bcf8ba05a73a6f8eefb65d6b36024d4c8feb2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:17:f5:75:3b:ad:87:b5:ec:ff:2e:c8:04:7f:
5d:31:b0:f7:73:84:5a:c3:5b:f8:77:9d:9e:41:0b:
d4:94:62:32:34:49:c8:ee:7f:db:7a:99:18:4b:25:
9d:4d:59:e8:d9:b7:4b:1d:28:c8:21:1f:23:c5:ca:
94:24:a5:8f:e5:f3:ca:ad:3d:47:43:29:cf:c7:ad:
37:11:36:21:01:3d:4a:d1:7c:ee:0f:62:52:74:35:
d2:f8:a1:b4:04:09:e7:c0:be:5e:1f:ee:b3:da:7a:
69:a9:3a:56:2e:10:0c:f3:8e:38:07:68:a2:92:a9:
84:c6:0c:97:22:0f:1b:53:e1:ce:f7:90:60:95:ab:
87:64:02:68:84:b1:46:b4:b6:c1:57:8a:bd:71:9d:
a0:53:ce:93:6d:33:42:4e:e9:10:13:08:9e:f8:2f:
f0:24:c9:75:0e:8b:11:db:9f:b7:6a:73:f6:80:c0:
0e:ef:56:4a:a5:91:8f:5d:c7:43:47:dc:0d:3d:07:
fc:43:52:32:d5:4a:0c:44:77:ee:78:4a:4f:1a:a7:
4a:ae:84:6d:5e:a0:f4:1a:c3:f7:7f:dd:a7:8a:54:
a3:c3:6d:be:cd:3a:b4:3e:9c:15:ca:57:d0:ef:89:
86:a0:de:4b:e9:e4:fb:56:be:e0:4d:36:0a:00:18:
44:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:CF:8B:A0:5A:73:A6:F8:EE:FB:65:D6:B3:60:24:D4:C8:FE:B2:F7
X509v3 Authority Key Identifier:
keyid:BA:AB:A2:A5:6A:0C:30:FD:AF:59:34:AF:87:65:C1:FF:D1:35:7A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uquipWoMMP2vWTSvh2XB_9E1ekg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/a8-LoFpzpvju-2XWs2Ak1Mj-svc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/1954a6-da23-4952-9c09-024868ffd315/1/uquipWoMMP2vWTSvh2XB_9E1ekg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.56.0/24
IPv6:
2a09:ff40::/32
Signature Algorithm: sha256WithRSAEncryption
6f:4c:9c:0c:b9:28:2f:92:c2:13:0e:90:4a:ab:b2:d3:17:4a:
1b:e9:2c:45:d1:3a:81:37:9e:9b:6b:2d:32:51:35:6e:28:eb:
37:48:17:2c:24:1c:67:f1:b1:dc:aa:f4:e7:a7:94:d2:8c:f9:
6e:eb:1c:b9:09:ea:0b:1c:80:d0:7a:ad:97:21:99:2d:9c:56:
a4:2f:d4:91:58:fb:c4:d6:cf:2d:9c:7b:97:81:f8:ce:f5:f8:
64:07:23:95:31:59:b6:1d:63:f7:0c:16:58:6a:b4:e3:6a:c9:
74:56:2e:ac:93:d2:46:74:44:69:40:c9:84:25:1d:5a:81:af:
c6:79:86:0b:e0:c8:91:3a:81:51:fa:95:31:78:70:70:c8:31:
00:29:0d:17:d7:c2:2b:99:f3:2a:50:6e:97:13:b0:f0:96:90:
90:39:05:a7:45:20:54:40:f7:cc:9f:b8:b2:22:0c:f9:86:4f:
c6:e1:af:9f:2c:93:df:58:b4:be:89:69:8b:28:89:22:d8:b4:
17:3d:bb:af:1f:8c:2c:5d:7d:88:de:5e:b2:00:b3:e2:e2:2c:
c3:52:6b:ec:99:de:ce:39:be:17:3d:6b:4f:cc:81:97:1d:8b:
9d:34:67:80:eb:39:90:fe:9e:e8:e2:3e:26:de:31:cd:6a:11:
ac:d3:ef:b3
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQkRX/f47BGuWl9Op4rlRmfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhYWJhMmE1NmEwYzMwZmRhZjU5MzRhZjg3NjVjMWZmZDEz
NTdhNDgwHhcNMjUwMTAxMjM0ODQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YmNmOGJhMDVhNzNhNmY4ZWVmYjY1ZDZiMzYwMjRkNGM4ZmViMmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhf1dTuth7Xs/y7IBH9dMbD3c4Ra
w1v4d52eQQvUlGIyNEnI7n/bepkYSyWdTVno2bdLHSjIIR8jxcqUJKWP5fPKrT1H
QynPx603ETYhAT1K0XzuD2JSdDXS+KG0BAnnwL5eH+6z2nppqTpWLhAM8444B2ii
kqmExgyXIg8bU+HO95BglauHZAJohLFGtLbBV4q9cZ2gU86TbTNCTukQEwie+C/w
JMl1DosR25+3anP2gMAO71ZKpZGPXcdDR9wNPQf8Q1Iy1UoMRHfueEpPGqdKroRt
XqD0GsP3f92nilSjw22+zTq0PpwVylfQ74mGoN5L6eT7Vr7gTTYKABhEPQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGvPi6Bac6b47vtl1rNgJNTI/rL3MB8GA1UdIwQY
MBaAFLqroqVqDDD9r1k0r4dlwf/RNXpIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXF1aXBXb01NUDJ2V1RTdmgyWEJfOUUxZWtnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi8xOTU0YTYtZGEyMy00OTUyLTljMDkt
MDI0ODY4ZmZkMzE1LzEvYTgtTG9GcHpwdmp1LTJYV3MyQWsxTWotc3ZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi8xOTU0YTYtZGEyMy00OTUyLTljMDktMDI0ODY4ZmZkMzE1
LzEvdXF1aXBXb01NUDJ2V1RTdmgyWEJfOUUxZWtnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQABbQ4MA0E
AgACMAcDBQAqCf9AMA0GCSqGSIb3DQEBCwUAA4IBAQBvTJwMuSgvksITDpBKq7LT
F0ob6SxF0TqBN56bay0yUTVuKOs3SBcsJBxn8bHcqvTnp5TSjPlu6xy5CeoLHIDQ
eq2XIZktnFakL9SRWPvE1s8tnHuXgfjO9fhkByOVMVm2HWP3DBZYarTjasl0Vi6s
k9JGdERpQMmEJR1aga/GeYYL4MiROoFR+pUxeHBwyDEAKQ0X18IrmfMqUG6XE7Dw
lpCQOQWnRSBUQPfMn7iyIgz5hk/G4a+fLJPfWLS+iWmLKIki2LQXPbuvH4wsXX2I
3l6yALPi4izDUmvsmd7OOb4XPWtPzIGXHYudNGeA6zmQ/p7o4j4m3jHNahGs0++z
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:05 2025 by rpki-client on console.sobornost.net