Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/LQ_Z9j56w5amV7ElvfT8NbFpybI.roa
File: LQ_Z9j56w5amV7ElvfT8NbFpybI.roa (raw, json)
Hash identifier: rEmGmWkp76ZWrDWlbYeprcWmjX55aWCzRDAI8/NyCME=
Subject key identifier: 2D:0F:D9:F6:3E:7A:C3:96:A6:57:B1:25:BD:F4:FC:35:B1:69:C9:B2
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01942067DD961E8C109C67E63FD06D907090
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/LQ_Z9j56w5amV7ElvfT8NbFpybI.roa
Signing time: Wed 01 Jan 2025 05:47:45 +0000
ROA not before: Wed 01 Jan 2025 05:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199707
IP address blocks: 185.115.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:dd:96:1e:8c:10:9c:67:e6:3f:d0:6d:90:70:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 1 05:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d0fd9f63e7ac396a657b125bdf4fc35b169c9b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:35:a2:b3:ca:b1:41:95:a3:14:f1:14:11:59:
6e:2c:40:97:77:8a:07:71:11:fb:58:de:fc:a2:5f:
99:1d:57:95:e4:d1:99:b3:6f:bc:7c:26:c2:4f:32:
41:74:3d:d9:6f:28:c7:61:a7:fa:96:75:5e:d1:69:
5d:63:26:c6:a8:9c:81:26:2a:81:15:1d:3e:05:c4:
ed:7c:de:3b:6d:eb:f3:9a:14:ca:a7:64:f6:f6:e3:
bb:5a:ab:f7:9c:6a:5f:29:45:44:1d:f9:50:27:48:
53:dd:ab:c0:a1:1a:38:ed:de:e8:a1:6d:2b:0e:cc:
d0:b0:ea:0b:90:10:de:6f:d4:fe:8c:06:d4:07:4e:
ed:61:b9:80:9f:91:88:02:be:ac:12:d4:0a:89:59:
b4:90:49:21:92:34:3f:5b:94:7b:1c:ed:d9:b3:d8:
3e:f7:cc:c8:7c:56:31:2b:f1:b2:51:93:82:2f:73:
3a:cf:1a:88:ba:5a:01:76:bf:74:6a:7b:3f:6d:45:
a1:53:d2:40:dc:67:fa:15:b4:5c:5f:d3:64:03:cd:
41:83:75:e7:de:1c:3b:37:05:c5:49:0c:ae:75:92:
50:8d:eb:1b:87:57:1e:00:ea:c9:05:2a:0b:54:e6:
4e:74:2c:61:66:75:f1:6a:f1:97:5f:b0:5b:8e:f7:
1d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:0F:D9:F6:3E:7A:C3:96:A6:57:B1:25:BD:F4:FC:35:B1:69:C9:B2
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/LQ_Z9j56w5amV7ElvfT8NbFpybI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.207.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:d4:ff:b4:94:22:1e:0d:e6:af:b9:fe:60:cd:47:47:47:54:
2e:80:96:19:08:d4:84:da:8a:d9:f1:1b:d1:1b:61:02:08:4a:
fb:15:9b:7b:f6:66:4d:c9:b1:d4:f6:1d:dd:aa:87:ab:a9:24:
9d:08:a0:64:da:12:82:2a:ea:10:9e:75:df:07:ed:9c:38:2c:
f5:89:f5:56:30:a9:fe:9c:23:cb:91:6a:a2:64:00:bf:f4:5e:
cc:1c:3d:45:3e:23:66:7f:fb:4d:ab:a8:7e:f6:f3:ec:71:ab:
70:12:37:bf:37:77:e2:d5:15:25:09:cd:d7:33:67:c2:8a:37:
1b:32:4b:90:a0:e1:24:8e:a0:ae:af:65:23:93:ff:00:60:da:
02:ad:a8:c0:2a:47:63:37:cb:be:72:59:6a:e9:75:b2:a8:3a:
7b:92:20:58:8a:7b:37:21:e5:fa:2e:f7:ab:e0:c7:eb:c9:0e:
f8:c6:9f:2e:02:0d:6b:27:fc:03:be:51:b6:64:31:0a:a2:e6:
ae:42:8d:f6:fd:66:d3:5a:4b:58:ca:ee:e0:61:27:82:3c:65:
ba:da:7b:d8:a1:39:73:f8:39:e5:c0:5d:fe:48:b0:57:5a:ce:
e5:fe:e5:10:ae:0c:65:58:28:a2:de:f0:fc:ee:99:68:e4:3b:
cb:af:9a:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQgZ92WHowQnGfmP9BtkHCQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTA3YWI2OTIxZWY4Y2IyZGVjYTNlYjc2NjQ3OGNmZjNl
NWZjNmQwHhcNMjUwMTAxMDU0NzQ1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDBmZDlmNjNlN2FjMzk2YTY1N2IxMjViZGY0ZmMzNWIxNjljOWIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjWis8qxQZWjFPEUEVluLECXd4oH
cRH7WN78ol+ZHVeV5NGZs2+8fCbCTzJBdD3ZbyjHYaf6lnVe0WldYybGqJyBJiqB
FR0+BcTtfN47bevzmhTKp2T29uO7Wqv3nGpfKUVEHflQJ0hT3avAoRo47d7ooW0r
DszQsOoLkBDeb9T+jAbUB07tYbmAn5GIAr6sEtQKiVm0kEkhkjQ/W5R7HO3Zs9g+
98zIfFYxK/GyUZOCL3M6zxqIuloBdr90ans/bUWhU9JA3Gf6FbRcX9NkA81Bg3Xn
3hw7NwXFSQyudZJQjesbh1ceAOrJBSoLVOZOdCxhZnXxavGXX7BbjvcdQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC0P2fY+esOWplexJb30/DWxacmyMB8GA1UdIwQY
MBaAFCgQeraSHvjLLeyj63ZkeM/z5fxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzIt
YzBmYjNlZjc2NDBlLzEvTFFfWjlqNTZ3NWFtVjdFbHZmVDhOYkZweWJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzItYzBmYjNlZjc2NDBl
LzEvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXPPMA0G
CSqGSIb3DQEBCwUAA4IBAQAr1P+0lCIeDeavuf5gzUdHR1QugJYZCNSE2orZ8RvR
G2ECCEr7FZt79mZNybHU9h3dqoerqSSdCKBk2hKCKuoQnnXfB+2cOCz1ifVWMKn+
nCPLkWqiZAC/9F7MHD1FPiNmf/tNq6h+9vPscatwEje/N3fi1RUlCc3XM2fCijcb
MkuQoOEkjqCur2Ujk/8AYNoCrajAKkdjN8u+cllq6XWyqDp7kiBYins3IeX6Lver
4MfryQ74xp8uAg1rJ/wDvlG2ZDEKouauQo32/WbTWktYyu7gYSeCPGW62nvYoTlz
+DnlwF3+SLBXWs7l/uUQrgxlWCii3vD87plo5DvLr5oj
-----END CERTIFICATE-----
Generated at Sun Apr 6 09:43:28 2025 by rpki-client