Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/f097b6-7a7f-4f16-a60e-3699707b8631/1/s26jwa2G9H6SuN7CfurmH1dMpXs.roa
File: s26jwa2G9H6SuN7CfurmH1dMpXs.roa (raw, json)
Hash identifier: BfNNZHhBoDJtbnj/NSSntdpDpXEQuqow4wfOZrk6ZXs=
Subject key identifier: B3:6E:A3:C1:AD:86:F4:7E:92:B8:DE:C2:7E:EA:E6:1F:57:4C:A5:7B
Certificate issuer: /CN=ff32cec606fb6f6fd6ae7be874826c302b695ef3
Certificate serial: 0150FF
Authority key identifier: FF:32:CE:C6:06:FB:6F:6F:D6:AE:7B:E8:74:82:6C:30:2B:69:5E:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zLOxgb7b2_WrnvodIJsMCtpXvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/f097b6-7a7f-4f16-a60e-3699707b8631/1/s26jwa2G9H6SuN7CfurmH1dMpXs.roa
Signing time: Tue 25 Jan 2022 18:23:07 +0000
ROA not before: Tue 25 Jan 2022 18:23:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 185.140.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86271 (0x150ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff32cec606fb6f6fd6ae7be874826c302b695ef3
Validity
Not Before: Jan 25 18:23:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b36ea3c1ad86f47e92b8dec27eeae61f574ca57b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:59:57:0f:85:d2:b9:48:77:ae:ee:37:80:fc:
b0:8f:63:67:03:2f:d8:25:1d:bf:af:09:a2:d4:c9:
45:fa:39:79:62:33:d0:32:b9:8f:e8:2b:34:92:ab:
8c:4b:a2:86:91:37:bc:9a:af:eb:70:b7:5c:d7:64:
06:11:e6:81:c7:6a:14:a1:9e:08:ef:70:1c:de:6f:
2d:15:c7:34:db:5c:94:c5:6f:54:db:34:e9:da:ba:
bb:d7:e2:c7:da:d9:ce:95:76:b0:0e:cd:41:42:ff:
bd:14:7f:8c:44:7e:cf:d5:56:fc:da:56:87:d1:c9:
2c:d3:50:55:24:84:cf:69:5a:e6:ea:b3:ac:01:f4:
ac:00:cd:12:b5:fd:36:67:4c:9a:2e:7a:e3:05:f4:
fb:aa:d6:80:cd:97:fa:fd:a0:ca:98:72:a5:d5:20:
d1:a5:2e:95:0b:34:de:9b:16:89:5f:45:dc:b8:55:
f6:7d:6f:57:1d:da:46:f6:e6:3d:07:a9:10:31:21:
80:45:4d:40:be:66:93:67:d6:12:c0:6d:37:57:f4:
61:18:74:10:f7:fe:71:33:90:68:96:7c:10:02:e0:
18:59:57:19:1a:ae:72:1b:5b:74:63:87:46:d8:ea:
71:cd:75:0d:bc:67:08:0d:f7:a0:0d:54:92:fd:5d:
cb:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:6E:A3:C1:AD:86:F4:7E:92:B8:DE:C2:7E:EA:E6:1F:57:4C:A5:7B
X509v3 Authority Key Identifier:
keyid:FF:32:CE:C6:06:FB:6F:6F:D6:AE:7B:E8:74:82:6C:30:2B:69:5E:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zLOxgb7b2_WrnvodIJsMCtpXvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f097b6-7a7f-4f16-a60e-3699707b8631/1/s26jwa2G9H6SuN7CfurmH1dMpXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f097b6-7a7f-4f16-a60e-3699707b8631/1/_zLOxgb7b2_WrnvodIJsMCtpXvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.174.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:e9:8c:1c:93:6b:6e:ad:1a:85:b1:25:10:22:51:37:e1:84:
42:17:8d:64:e0:72:ec:19:37:37:0d:1c:ec:5a:16:3e:6e:10:
33:45:a3:ea:c1:da:1c:35:6c:21:c8:cf:4c:7f:2e:16:af:a9:
03:31:d0:b3:bf:6c:9a:67:7b:21:29:ff:3a:3b:b3:57:4e:c1:
53:31:3b:9d:23:10:66:9e:78:36:14:83:cd:aa:ad:56:0b:02:
1a:59:a2:69:eb:ec:ff:aa:70:92:25:0b:c3:92:c1:06:04:d1:
4b:16:3d:4b:11:26:85:39:a1:a8:da:4e:53:7f:4a:63:68:37:
63:87:29:56:db:a9:32:ed:be:a0:33:a9:70:6a:ce:d7:a2:10:
5a:bd:10:96:d3:b6:ce:06:3d:ae:f7:a5:73:aa:95:7e:84:4d:
5f:8e:43:f4:6e:80:7f:e6:f5:8c:b4:0f:2b:80:b0:a1:b0:60:
f5:a2:17:71:ad:af:60:53:c1:bb:d1:f1:ef:ee:33:3d:97:a3:
3f:27:5f:d8:48:68:6d:75:47:a5:78:62:c3:9d:01:4f:d5:76:
aa:88:1a:f2:a5:f5:96:17:bb:04:b6:f4:7c:e6:da:f3:30:eb:
98:50:12:a3:da:d4:f6:05:9a:f8:ad:7e:7a:c5:01:28:6e:2e:
6a:99:3a:33
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAVD/MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGZm
MzJjZWM2MDZmYjZmNmZkNmFlN2JlODc0ODI2YzMwMmI2OTVlZjMwHhcNMjIwMTI1
MTgyMzA3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhiMzZlYTNjMWFkODZm
NDdlOTJiOGRlYzI3ZWVhZTYxZjU3NGNhNTdiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAz1lXD4XSuUh3ru43gPywj2NnAy/YJR2/rwmi1MlF+jl5YjPQ
MrmP6Cs0kquMS6KGkTe8mq/rcLdc12QGEeaBx2oUoZ4I73Ac3m8tFcc021yUxW9U
2zTp2rq71+LH2tnOlXawDs1BQv+9FH+MRH7P1Vb82laH0cks01BVJITPaVrm6rOs
AfSsAM0Stf02Z0yaLnrjBfT7qtaAzZf6/aDKmHKl1SDRpS6VCzTemxaJX0XcuFX2
fW9XHdpG9uY9B6kQMSGARU1AvmaTZ9YSwG03V/RhGHQQ9/5xM5BolnwQAuAYWVcZ
Gq5yG1t0Y4dG2OpxzXUNvGcIDfegDVSS/V3L1QIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFLNuo8GthvR+krjewn7q5h9XTKV7MB8GA1UdIwQYMBaAFP8yzsYG+29v1q57
6HSCbDAraV7zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
X3pMT3hnYjdiMl9Xcm52b2RJSnNNQ3RwWHZNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85YS9mMDk3YjYtN2E3Zi00ZjE2LWE2MGUtMzY5OTcwN2I4NjMxLzEv
czI2andhMkc5SDZTdU43Q2Z1cm1IMWRNcFhzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9m
MDk3YjYtN2E3Zi00ZjE2LWE2MGUtMzY5OTcwN2I4NjMxLzEvX3pMT3hnYjdiMl9X
cm52b2RJSnNNQ3RwWHZNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYyuMA0GCSqGSIb3DQEBCwUAA4IB
AQAq6Ywck2turRqFsSUQIlE34YRCF41k4HLsGTc3DRzsWhY+bhAzRaPqwdocNWwh
yM9Mfy4Wr6kDMdCzv2yaZ3shKf86O7NXTsFTMTudIxBmnng2FIPNqq1WCwIaWaJp
6+z/qnCSJQvDksEGBNFLFj1LESaFOaGo2k5Tf0pjaDdjhylW26ky7b6gM6lwas7X
ohBavRCW07bOBj2u96VzqpV+hE1fjkP0boB/5vWMtA8rgLChsGD1ohdxra9gU8G7
0fHv7jM9l6M/J1/YSGhtdUeleGLDnQFP1XaqiBrypfWWF7sEtvR85trzMOuYUBKj
2tT2BZr4rX56xQEobi5qmToz
-----END CERTIFICATE-----
Generated at Thu Apr 17 22:37:17 2025 by rpki-client