Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa
File: JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa (raw, json)
Hash identifier: /ZlOeq2y9fIyqYcQI5TRRc+qHPMMjEQDsJbQfMP47Os=
Subject key identifier: 26:A1:A3:63:32:54:1E:5C:8F:44:D2:93:EC:67:5A:7B:51:9D:25:40
Certificate issuer: /CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Certificate serial: 019427B570A14A654DEC198007437B0F8802
Authority key identifier: 23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa
Signing time: Thu 02 Jan 2025 15:49:49 +0000
ROA not before: Thu 02 Jan 2025 15:49:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39791
IP address blocks: 185.115.182.0/24 maxlen: 24
2a07:7a00::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:70:a1:4a:65:4d:ec:19:80:07:43:7b:0f:88:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23259da3b1b38ca0939f490fb9043fcd89cfd062
Validity
Not Before: Jan 2 15:49:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=26a1a36332541e5c8f44d293ec675a7b519d2540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c2:62:ff:e7:d7:02:1a:f1:fa:9a:52:11:b4:
fa:af:21:f2:85:0b:ff:04:9c:72:78:40:99:22:ce:
0b:61:ee:76:4c:47:a5:1a:90:e8:ae:d4:cc:2e:6e:
9b:3f:5c:b1:ce:db:68:d3:d7:89:14:ee:60:87:ac:
20:da:f3:33:15:a9:5a:b3:39:89:fb:bb:16:71:97:
c2:2e:0c:ab:db:43:6b:23:1b:05:65:e8:4a:88:34:
62:e3:b0:74:e3:61:22:27:c5:c1:2d:96:48:0f:2c:
a0:84:21:a0:14:ca:5e:cb:0f:06:d3:7e:38:40:c1:
85:36:57:e8:1e:de:8f:e5:a7:ac:f5:e2:35:39:2b:
d9:dd:bf:58:28:a2:20:45:24:20:b3:1c:18:af:b5:
fb:a1:2c:3c:84:83:d7:f6:3a:d5:35:4d:82:0b:b7:
f0:b3:a8:f6:e1:b2:dc:a8:3b:85:be:5c:59:b4:6e:
e1:10:f7:6e:f1:82:45:b3:1c:09:c4:60:c1:49:d7:
72:98:2a:91:0b:fa:ce:a9:a2:bf:21:fe:37:7a:fe:
b8:90:f9:4b:4f:e2:58:d7:ca:f0:65:d0:a2:34:28:
94:bd:14:da:58:7b:3e:53:48:a8:0d:52:f7:19:59:
b7:af:b2:dc:de:b0:fa:ad:ac:b3:ca:e7:8f:27:27:
91:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A1:A3:63:32:54:1E:5C:8F:44:D2:93:EC:67:5A:7B:51:9D:25:40
X509v3 Authority Key Identifier:
keyid:23:25:9D:A3:B1:B3:8C:A0:93:9F:49:0F:B9:04:3F:CD:89:CF:D0:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/JqGjYzJUHlyPRNKT7Gdae1GdJUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/91a5fd-e56c-4d87-bd75-654dd6442ce4/1/IyWdo7GzjKCTn0kPuQQ_zYnP0GI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.182.0/24
IPv6:
2a07:7a00::/48
Signature Algorithm: sha256WithRSAEncryption
57:b5:09:7b:bb:30:71:de:ea:b2:e3:c8:61:fd:c9:ef:51:b3:
18:1b:95:65:b3:26:13:09:bb:d0:c4:66:33:14:dd:29:f2:23:
b6:55:4c:45:46:57:2c:8b:d1:d7:aa:7c:8d:9b:94:21:5c:1d:
77:bd:4c:d1:fb:04:d1:c6:8d:a2:82:a5:45:7a:dc:97:1b:f4:
f2:17:5c:8f:55:14:b9:16:f8:ab:68:a0:c7:b4:1c:7f:89:45:
30:be:b4:82:f7:cb:16:21:5a:ba:97:76:17:ef:8b:5e:be:bf:
41:33:eb:59:dd:b8:9d:9e:78:91:ac:6f:2e:f9:bc:2c:72:fe:
d8:a2:b7:ce:a2:65:26:77:4f:7c:73:8a:11:c1:98:6f:f6:e9:
8d:21:83:b7:fb:5c:d7:eb:1c:86:6a:f6:4b:fe:e6:92:ca:41:
8f:9e:36:ec:7f:78:d1:d6:2d:99:04:47:b9:4e:d3:da:a7:f5:
00:7f:5a:3e:7e:b4:42:cc:54:10:e0:32:d4:53:24:8e:a9:4e:
57:ac:4c:ae:53:df:38:d2:31:6d:10:b0:cd:ac:df:c0:ca:dd:
6d:6a:be:df:8d:38:0e:bd:49:bf:7a:20:32:4f:ac:dc:8f:02:
90:91:9f:a3:83:56:76:14:57:64:75:1c:d5:81:c0:c9:2b:31:
92:f2:95:6d
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQntXChSmVN7BmAB0N7D4gCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMjU5ZGEzYjFiMzhjYTA5MzlmNDkwZmI5MDQzZmNkODlj
ZmQwNjIwHhcNMjUwMTAyMTU0OTQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNmExYTM2MzMyNTQxZTVjOGY0NGQyOTNlYzY3NWE3YjUxOWQyNTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusJi/+fXAhrx+ppSEbT6ryHyhQv/
BJxyeECZIs4LYe52TEelGpDortTMLm6bP1yxztto09eJFO5gh6wg2vMzFalaszmJ
+7sWcZfCLgyr20NrIxsFZehKiDRi47B042EiJ8XBLZZIDyyghCGgFMpeyw8G0344
QMGFNlfoHt6P5aes9eI1OSvZ3b9YKKIgRSQgsxwYr7X7oSw8hIPX9jrVNU2CC7fw
s6j24bLcqDuFvlxZtG7hEPdu8YJFsxwJxGDBSddymCqRC/rOqaK/If43ev64kPlL
T+JY18rwZdCiNCiUvRTaWHs+U0ioDVL3GVm3r7Lc3rD6rayzyuePJyeROwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFCaho2MyVB5cj0TSk+xnWntRnSVAMB8GA1UdIwQY
MBaAFCMlnaOxs4ygk59JD7kEP82Jz9BiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUt
NjU0ZGQ2NDQyY2U0LzEvSnFHall6SlVIbHlQUk5LVDdHZGFlMUdkSlVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy85MWE1ZmQtZTU2Yy00ZDg3LWJkNzUtNjU0ZGQ2NDQyY2U0
LzEvSXlXZG83R3pqS0NUbjBrUHVRUV96WW5QMEdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuXO2MA8E
AgACMAkDBwAqB3oAAAAwDQYJKoZIhvcNAQELBQADggEBAFe1CXu7MHHe6rLjyGH9
ye9RsxgblWWzJhMJu9DEZjMU3SnyI7ZVTEVGVyyL0deqfI2blCFcHXe9TNH7BNHG
jaKCpUV63Jcb9PIXXI9VFLkW+KtooMe0HH+JRTC+tIL3yxYhWrqXdhfvi16+v0Ez
61nduJ2eeJGsby75vCxy/tiit86iZSZ3T3xzihHBmG/26Y0hg7f7XNfrHIZq9kv+
5pLKQY+eNux/eNHWLZkER7lO09qn9QB/Wj5+tELMVBDgMtRTJI6pTlesTK5T3zjS
MW0QsM2s38DK3W1qvt+NOA69Sb96IDJPrNyPApCRn6ODVnYUV2R1HNWBwMkrMZLy
lW0=
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:57:41 2025 by rpki-client