Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/74d2ea-6e60-40af-a56a-151f6ed17691/1/J4QRUDWtC58Td_JcZSbCpGyM8sY.roa
File: J4QRUDWtC58Td_JcZSbCpGyM8sY.roa (raw, json)
Hash identifier: H0Bvw5EtgtmppMkcC4FUFUt0/C7erGwYDeLbeqEvVHU=
Subject key identifier: 27:84:11:50:35:AD:0B:9F:13:77:F2:5C:65:26:C2:A4:6C:8C:F2:C6
Certificate issuer: /CN=cab11f493b31a5a2c1f23ce0e3004647a3242576
Certificate serial: 019425FDB1A2591C9209830A9D229E76E8A0
Authority key identifier: CA:B1:1F:49:3B:31:A5:A2:C1:F2:3C:E0:E3:00:46:47:A3:24:25:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yrEfSTsxpaLB8jzg4wBGR6MkJXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/74d2ea-6e60-40af-a56a-151f6ed17691/1/J4QRUDWtC58Td_JcZSbCpGyM8sY.roa
Signing time: Thu 02 Jan 2025 07:49:30 +0000
ROA not before: Thu 02 Jan 2025 07:49:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61218
IP address blocks: 185.209.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:b1:a2:59:1c:92:09:83:0a:9d:22:9e:76:e8:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cab11f493b31a5a2c1f23ce0e3004647a3242576
Validity
Not Before: Jan 2 07:49:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2784115035ad0b9f1377f25c6526c2a46c8cf2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:07:b9:ee:f1:6e:a9:3a:1e:6a:b6:94:36:1b:
3a:a9:0a:c8:a3:42:1e:21:20:99:b0:58:89:66:56:
c8:3f:68:ec:2d:57:9f:7c:d2:3c:c7:a5:18:35:4a:
fc:21:3c:64:ba:bf:64:41:9d:52:63:b7:22:a9:2b:
24:95:2c:8d:2d:85:82:d9:de:67:74:9d:b0:09:8d:
20:1a:97:b4:3e:fc:e5:0c:07:53:d7:7c:f4:27:81:
19:30:7a:58:67:9d:13:7e:92:69:9e:74:76:94:87:
91:12:1a:16:f0:33:fd:9d:45:90:4f:00:92:30:7d:
03:60:78:4e:72:32:c6:4e:ab:a0:ed:55:c6:b8:cb:
94:7a:06:88:d5:f0:6f:08:50:1d:0f:28:ab:22:45:
ba:79:e8:62:57:09:aa:29:b4:3a:4f:e0:f1:ff:eb:
e0:c7:67:83:90:1e:ca:3e:b2:ac:8e:ef:c5:be:bf:
e2:69:93:ca:7c:25:fe:dc:e2:aa:d9:79:39:08:23:
e1:72:7b:78:2a:4c:4b:90:07:33:f9:74:95:69:16:
59:4d:f1:9f:01:83:dd:80:7b:f8:9b:59:69:39:e2:
45:ad:6e:a8:72:cd:d9:29:8e:e3:1c:30:cd:5c:fe:
86:d7:90:02:95:9e:3d:59:8b:bf:06:44:ad:9b:5a:
9c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:84:11:50:35:AD:0B:9F:13:77:F2:5C:65:26:C2:A4:6C:8C:F2:C6
X509v3 Authority Key Identifier:
keyid:CA:B1:1F:49:3B:31:A5:A2:C1:F2:3C:E0:E3:00:46:47:A3:24:25:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yrEfSTsxpaLB8jzg4wBGR6MkJXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/74d2ea-6e60-40af-a56a-151f6ed17691/1/J4QRUDWtC58Td_JcZSbCpGyM8sY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/74d2ea-6e60-40af-a56a-151f6ed17691/1/yrEfSTsxpaLB8jzg4wBGR6MkJXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.43.0/24
Signature Algorithm: sha256WithRSAEncryption
11:37:eb:80:5e:11:d5:cb:52:d2:0c:f4:4a:19:c8:d2:5d:b3:
93:6a:35:35:44:1f:0f:f6:7e:fa:70:11:f7:d3:9c:a0:9e:9d:
a8:41:aa:f1:ec:ea:d5:d9:de:33:a6:86:71:26:47:e8:af:b9:
db:9f:c1:00:5a:ba:b6:c9:29:83:d0:19:9d:5b:57:5d:db:91:
58:36:aa:41:ab:ff:88:ac:15:df:ca:fc:78:dc:ed:fd:0d:6b:
e6:ab:de:64:78:ff:14:22:41:dc:e2:27:ac:72:fb:da:dd:4c:
75:a8:e0:d1:6c:1b:d4:92:d4:35:0e:ba:03:b9:a8:03:b7:b3:
56:56:49:ff:c7:bb:08:d8:9e:d6:a5:7e:7d:98:7b:ed:aa:81:
2f:0a:ed:c4:17:5d:69:d5:d0:20:c9:28:bb:e3:a4:a0:fd:d8:
98:cd:8c:86:6b:b3:35:1e:5a:2d:2b:aa:42:38:23:cc:fd:1c:
67:0c:f8:a0:92:c4:0d:46:3a:ed:81:bf:57:fa:25:48:49:02:
fa:67:87:05:16:66:a7:08:75:76:3f:e5:67:7b:46:da:5b:4f:
98:a4:d6:5d:10:63:80:c7:6b:4b:62:d2:dd:bb:53:f8:57:b3:
40:35:e4:bd:12:9e:41:51:af:52:b4:20:0e:f0:42:5d:b9:e8:
be:c7:c2:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQl/bGiWRySCYMKnSKeduigMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhYjExZjQ5M2IzMWE1YTJjMWYyM2NlMGUzMDA0NjQ3YTMy
NDI1NzYwHhcNMjUwMTAyMDc0OTMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzg0MTE1MDM1YWQwYjlmMTM3N2YyNWM2NTI2YzJhNDZjOGNmMmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwe57vFuqToearaUNhs6qQrIo0Ie
ISCZsFiJZlbIP2jsLVeffNI8x6UYNUr8ITxkur9kQZ1SY7ciqSsklSyNLYWC2d5n
dJ2wCY0gGpe0PvzlDAdT13z0J4EZMHpYZ50TfpJpnnR2lIeREhoW8DP9nUWQTwCS
MH0DYHhOcjLGTqug7VXGuMuUegaI1fBvCFAdDyirIkW6eehiVwmqKbQ6T+Dx/+vg
x2eDkB7KPrKsju/Fvr/iaZPKfCX+3OKq2Xk5CCPhcnt4KkxLkAcz+XSVaRZZTfGf
AYPdgHv4m1lpOeJFrW6ocs3ZKY7jHDDNXP6G15AClZ49WYu/BkStm1qcpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCeEEVA1rQufE3fyXGUmwqRsjPLGMB8GA1UdIwQY
MBaAFMqxH0k7MaWiwfI84OMARkejJCV2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXJFZlNUc3hwYUxCOGp6ZzR3QkdSNk1rSlhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi83NGQyZWEtNmU2MC00MGFmLWE1NmEt
MTUxZjZlZDE3NjkxLzEvSjRRUlVEV3RDNThUZF9KY1pTYkNwR3lNOHNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi83NGQyZWEtNmU2MC00MGFmLWE1NmEtMTUxZjZlZDE3Njkx
LzEveXJFZlNUc3hwYUxCOGp6ZzR3QkdSNk1rSlhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudErMA0G
CSqGSIb3DQEBCwUAA4IBAQARN+uAXhHVy1LSDPRKGcjSXbOTajU1RB8P9n76cBH3
05ygnp2oQarx7OrV2d4zpoZxJkfor7nbn8EAWrq2ySmD0BmdW1dd25FYNqpBq/+I
rBXfyvx43O39DWvmq95keP8UIkHc4iescvva3Ux1qODRbBvUktQ1DroDuagDt7NW
Vkn/x7sI2J7WpX59mHvtqoEvCu3EF11p1dAgySi746Sg/diYzYyGa7M1HlotK6pC
OCPM/RxnDPigksQNRjrtgb9X+iVISQL6Z4cFFmanCHV2P+Vne0baW0+YpNZdEGOA
x2tLYtLdu1P4V7NANeS9Ep5BUa9StCAO8EJduei+x8LD
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:38:54 2025 by rpki-client