Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/7j6bG7_YdSr6Y19IR2zhq0TXX5s.roa
File: 7j6bG7_YdSr6Y19IR2zhq0TXX5s.roa (raw, json)
Hash identifier: iyRklEIGnBKMGPTWXMxj+TNA/gm1otxr7P6qH053kbo=
Subject key identifier: EE:3E:9B:1B:BF:D8:75:2A:FA:63:5F:48:47:6C:E1:AB:44:D7:5F:9B
Certificate issuer: /CN=97242dba26ed882b380dabebab3c5f3942006ecc
Certificate serial: 019426D8C555FCB34FDD8CDAED2F5960545B
Authority key identifier: 97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/7j6bG7_YdSr6Y19IR2zhq0TXX5s.roa
Signing time: Thu 02 Jan 2025 11:48:47 +0000
ROA not before: Thu 02 Jan 2025 11:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 109.68.248.0/24 maxlen: 24
185.68.58.0/24 maxlen: 24
185.68.59.0/24 maxlen: 24
185.255.32.0/23 maxlen: 23
185.255.34.0/24 maxlen: 24
185.255.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:c5:55:fc:b3:4f:dd:8c:da:ed:2f:59:60:54:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97242dba26ed882b380dabebab3c5f3942006ecc
Validity
Not Before: Jan 2 11:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ee3e9b1bbfd8752afa635f48476ce1ab44d75f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:be:77:94:8d:2b:74:1a:9f:c8:db:7f:54:bb:
38:f2:cd:7d:81:b7:4b:50:e9:da:47:f2:af:a6:34:
ca:10:86:21:36:bc:05:11:1a:0e:b6:8f:a3:33:cd:
0e:78:6f:f4:2c:8c:0c:95:4f:e1:00:89:92:5f:fa:
be:3f:b3:81:c2:ec:0b:19:23:d6:0e:61:b1:69:24:
c6:20:c6:61:7b:06:3e:a7:94:4b:45:6d:f4:9a:e0:
ab:7f:af:88:f6:bd:c8:6c:5c:63:b2:78:5f:82:9b:
fc:8f:e0:29:08:b6:87:5c:2c:36:c5:39:08:32:84:
51:9f:57:86:7e:58:e5:45:72:1e:a8:da:dd:3d:0d:
b9:24:8a:ba:ea:2a:83:be:7a:ef:94:f4:2e:7e:1f:
2a:d0:04:eb:89:9a:5f:1c:9e:9f:de:70:f8:b3:58:
93:a9:0d:f0:6e:5a:b9:48:05:04:9a:f1:a6:4f:7f:
f1:2f:1a:0f:f1:52:55:0f:1c:dd:74:80:f0:95:2e:
23:3e:27:50:ff:98:a9:38:84:80:ab:22:ce:37:1b:
39:2f:f5:95:a6:60:f0:7c:c1:9d:75:e3:0f:de:9d:
fc:28:52:9d:d8:a1:88:95:6d:39:b0:70:5f:1e:d0:
a4:55:b6:9c:a7:d0:78:99:7e:93:49:81:0c:16:0c:
2d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:3E:9B:1B:BF:D8:75:2A:FA:63:5F:48:47:6C:E1:AB:44:D7:5F:9B
X509v3 Authority Key Identifier:
keyid:97:24:2D:BA:26:ED:88:2B:38:0D:AB:EB:AB:3C:5F:39:42:00:6E:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lyQtuibtiCs4DavrqzxfOUIAbsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/7j6bG7_YdSr6Y19IR2zhq0TXX5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/4cb687-87fd-4af0-a36b-607272d737cb/1/lyQtuibtiCs4DavrqzxfOUIAbsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.68.248.0/24
185.68.58.0/23
185.255.32.0/22
Signature Algorithm: sha256WithRSAEncryption
14:18:f6:53:28:7d:bc:a1:51:8a:2a:04:65:ae:e5:95:da:45:
02:c0:5c:46:47:0c:e1:38:3e:e1:f1:0c:d5:63:3f:2f:5a:e7:
15:46:56:c2:b7:75:ed:fe:37:5f:67:2c:f9:30:81:1e:dc:15:
0b:c5:3f:19:e5:65:5a:25:71:fc:9c:44:d8:5f:40:36:e2:10:
97:75:51:09:0c:ca:d1:12:dd:d9:5e:41:97:d5:04:41:92:29:
6c:5d:34:d6:e0:1a:90:59:15:3d:09:88:3e:bd:20:d3:56:f4:
7a:e9:3a:e0:89:3d:f2:31:d5:84:9f:5d:32:57:af:3a:a9:7c:
75:9f:ba:b9:26:d6:72:5c:cf:30:06:35:8c:8b:ce:c0:4f:85:
c6:1c:21:ab:1f:2b:35:84:38:02:f8:f8:88:3a:60:06:10:ae:
a3:a2:24:c6:87:32:88:33:2f:33:7c:42:bf:ad:14:d9:87:52:
98:b5:83:da:7f:b7:86:c7:54:ae:d6:f4:ab:6f:ab:eb:37:a1:
79:95:a7:dd:74:01:f5:5e:1b:c0:4c:49:f4:8e:24:e5:f7:00:
2e:98:85:cc:6d:28:77:28:03:32:ef:60:25:6c:b0:d1:cc:19:
cb:c3:fb:94:c3:cb:a2:dc:8d:8d:4f:01:6f:f6:42:6c:0e:16:
c2:4f:12:47
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZQm2MVV/LNP3Yza7S9ZYFRbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3MjQyZGJhMjZlZDg4MmIzODBkYWJlYmFiM2M1ZjM5NDIw
MDZlY2MwHhcNMjUwMTAyMTE0ODQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTNlOWIxYmJmZDg3NTJhZmE2MzVmNDg0NzZjZTFhYjQ0ZDc1ZjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvL53lI0rdBqfyNt/VLs48s19gbdL
UOnaR/KvpjTKEIYhNrwFERoOto+jM80OeG/0LIwMlU/hAImSX/q+P7OBwuwLGSPW
DmGxaSTGIMZhewY+p5RLRW30muCrf6+I9r3IbFxjsnhfgpv8j+ApCLaHXCw2xTkI
MoRRn1eGfljlRXIeqNrdPQ25JIq66iqDvnrvlPQufh8q0ATriZpfHJ6f3nD4s1iT
qQ3wblq5SAUEmvGmT3/xLxoP8VJVDxzddIDwlS4jPidQ/5ipOISAqyLONxs5L/WV
pmDwfMGddeMP3p38KFKd2KGIlW05sHBfHtCkVbacp9B4mX6TSYEMFgwtiwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFO4+mxu/2HUq+mNfSEds4atE11+bMB8GA1UdIwQY
MBaAFJckLbom7YgrOA2r66s8XzlCAG7MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHlRdHVpYnRpQ3M0RGF2cnF6eGZPVUlBYnN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy80Y2I2ODctODdmZC00YWYwLWEzNmIt
NjA3MjcyZDczN2NiLzEvN2o2Ykc3X1lkU3I2WTE5SVIyemhxMFRYWDVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy80Y2I2ODctODdmZC00YWYwLWEzNmItNjA3MjcyZDczN2Ni
LzEvbHlRdHVpYnRpQ3M0RGF2cnF6eGZPVUlBYnN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAbUT4AwQB
uUQ6AwQCuf8gMA0GCSqGSIb3DQEBCwUAA4IBAQAUGPZTKH28oVGKKgRlruWV2kUC
wFxGRwzhOD7h8QzVYz8vWucVRlbCt3Xt/jdfZyz5MIEe3BULxT8Z5WVaJXH8nETY
X0A24hCXdVEJDMrREt3ZXkGX1QRBkilsXTTW4BqQWRU9CYg+vSDTVvR66TrgiT3y
MdWEn10yV686qXx1n7q5JtZyXM8wBjWMi87AT4XGHCGrHys1hDgC+PiIOmAGEK6j
oiTGhzKIMy8zfEK/rRTZh1KYtYPaf7eGx1Su1vSrb6vrN6F5lafddAH1XhvATEn0
jiTl9wAumIXMbSh3KAMy72AlbLDRzBnLw/uUw8ui3I2NTwFv9kJsDhbCTxJH
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:48:37 2025 by rpki-client