Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/GM7eupF4HdcNB9Lqhvd-Mzu1pj4.roa
File: GM7eupF4HdcNB9Lqhvd-Mzu1pj4.roa (raw, json)
Hash identifier: K4uptj4SJr+xIAL7L8c/x23BKviV98GYi0xty05Ju2w=
Subject key identifier: 18:CE:DE:BA:91:78:1D:D7:0D:07:D2:EA:86:F7:7E:33:3B:B5:A6:3E
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 019423698812198A40D7A1A0ACCA78BB5DD3
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/GM7eupF4HdcNB9Lqhvd-Mzu1pj4.roa
Signing time: Wed 01 Jan 2025 19:48:26 +0000
ROA not before: Wed 01 Jan 2025 19:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20616
IP address blocks: 89.34.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:88:12:19:8a:40:d7:a1:a0:ac:ca:78:bb:5d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 19:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=18cedeba91781dd70d07d2ea86f77e333bb5a63e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e3:12:dc:52:cc:e2:fc:d8:bf:4f:a2:73:de:
41:41:2f:f1:fd:3f:89:20:50:ea:2e:0e:8a:07:24:
56:2a:07:08:3b:ee:f0:f8:bf:35:57:79:b4:3a:25:
96:7d:16:ca:a1:81:e1:0e:f2:1a:43:4f:b9:b7:67:
2d:94:c6:90:5f:47:7a:0f:7d:81:87:46:1f:01:d2:
a6:b0:0d:f9:e1:65:d1:c2:5f:0e:8c:f6:13:ee:3d:
e0:aa:47:e2:3e:22:14:89:11:7a:76:7e:1b:42:cd:
68:a6:62:37:11:51:57:6d:1c:f2:a0:77:69:ae:02:
9c:ac:52:c8:57:2c:08:1b:1d:aa:7f:4d:68:a7:1f:
ed:3e:bf:c6:ae:32:a0:b6:40:fc:65:3c:b9:9f:a7:
ce:c2:c6:f6:d6:32:81:b4:b5:79:8f:ba:c4:b6:f7:
e1:7c:ed:d1:9d:56:f0:cc:cd:9a:2f:f0:8b:7f:e4:
92:38:86:16:27:fe:fe:ac:d6:a2:6c:f5:3c:64:c1:
35:f8:ff:48:40:6e:49:c1:4d:ce:ea:a6:70:6c:e3:
d1:d0:55:ab:f5:0b:1d:f9:25:63:9f:ea:16:40:03:
25:f7:c5:ee:fc:0b:e0:9f:c9:e3:bd:55:a1:3a:94:
b0:63:75:0e:a7:91:b3:79:c1:4e:9f:c8:9d:c8:8e:
54:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CE:DE:BA:91:78:1D:D7:0D:07:D2:EA:86:F7:7E:33:3B:B5:A6:3E
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/GM7eupF4HdcNB9Lqhvd-Mzu1pj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.34.107.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:a9:a9:d8:b2:f2:d3:79:63:51:02:fb:d5:58:5d:d5:bd:10:
d7:76:22:68:f5:db:28:e4:96:67:e9:fc:97:12:08:a4:b9:f4:
72:36:c2:14:88:0f:8b:b1:89:b0:42:4a:d2:91:78:a1:2e:4b:
39:9b:59:81:92:1c:cf:ee:a3:66:78:76:c4:86:c3:bf:5e:3a:
09:e0:03:72:4f:18:06:54:d5:16:69:16:08:cc:b3:e9:5e:76:
ef:06:3f:59:1c:62:59:3c:cd:c0:70:c7:e9:69:62:b4:8b:16:
ea:50:9a:20:c9:3c:3c:06:7e:ee:8e:9a:69:b7:c1:05:e8:d0:
f1:3c:f5:a7:18:2f:c7:0e:d3:88:5d:43:82:fb:f6:88:35:e0:
2d:a9:85:85:f8:81:f9:97:85:dd:5c:c4:57:18:3d:b6:a7:72:
7b:cf:71:55:bb:4e:f7:2d:3d:30:06:bd:54:25:a5:b2:cf:fc:
67:4f:16:a1:7b:33:3a:63:95:a7:62:5c:ea:51:a9:42:2b:04:
b3:a7:ec:45:25:e1:32:0e:0f:39:47:25:75:60:65:19:6c:51:
36:e2:18:45:ad:b1:94:4f:e6:b3:c1:be:ac:33:d8:e1:cb:ec:
58:08:b5:af:ef:4f:bd:bb:26:6c:d5:5f:e4:45:ba:70:b3:90:
8b:9d:b1:21
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZQjaYgSGYpA16GgrMp4u13TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy
MTliNTkwHhcNMjUwMTAxMTk0ODI2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOGNlZGViYTkxNzgxZGQ3MGQwN2QyZWE4NmY3N2UzMzNiYjVhNjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+MS3FLM4vzYv0+ic95BQS/x/T+J
IFDqLg6KByRWKgcIO+7w+L81V3m0OiWWfRbKoYHhDvIaQ0+5t2ctlMaQX0d6D32B
h0YfAdKmsA354WXRwl8OjPYT7j3gqkfiPiIUiRF6dn4bQs1opmI3EVFXbRzyoHdp
rgKcrFLIVywIGx2qf01opx/tPr/GrjKgtkD8ZTy5n6fOwsb21jKBtLV5j7rEtvfh
fO3RnVbwzM2aL/CLf+SSOIYWJ/7+rNaibPU8ZME1+P9IQG5JwU3O6qZwbOPR0FWr
9Qsd+SVjn+oWQAMl98Xu/Avgn8njvVWhOpSwY3UOp5GzecFOn8idyI5USwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFBjO3rqReB3XDQfS6ob3fjM7taY+MB8GA1UdIwQY
MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl
LTkyZTI1ZmUxNjMzMS8xL0dNN2V1cEY0SGRjTkI5THFodmQtTXp1MXBqNC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz
MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZImsw
DQYJKoZIhvcNAQELBQADggEBAMypqdiy8tN5Y1EC+9VYXdW9ENd2Imj12yjklmfp
/JcSCKS59HI2whSID4uxibBCStKReKEuSzmbWYGSHM/uo2Z4dsSGw79eOgngA3JP
GAZU1RZpFgjMs+ledu8GP1kcYlk8zcBwx+lpYrSLFupQmiDJPDwGfu6Ommm3wQXo
0PE89acYL8cO04hdQ4L79og14C2phYX4gfmXhd1cxFcYPbancnvPcVW7TvctPTAG
vVQlpbLP/GdPFqF7MzpjladiXOpRqUIrBLOn7EUl4TIODzlHJXVgZRlsUTbiGEWt
sZRP5rPBvqwz2OHL7FgIta/vT727JmzVX+RFunCzkIudsSE=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:26 2025 by rpki-client