Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/GnOgt2Zpp9axfGj5NOdGMq3qB1o.roa
File: GnOgt2Zpp9axfGj5NOdGMq3qB1o.roa (raw, json)
Hash identifier: xw5e8NNx97AjIQpx/W2pOHvzyer0Hz54CK55xogl9EM=
Subject key identifier: 1A:73:A0:B7:66:69:A7:D6:B1:7C:68:F9:34:E7:46:32:AD:EA:07:5A
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01941FFA561E149C761D9FFA0112C9D621A8
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/GnOgt2Zpp9axfGj5NOdGMq3qB1o.roa
Signing time: Wed 01 Jan 2025 03:48:07 +0000
ROA not before: Wed 01 Jan 2025 03:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62367
IP address blocks: 87.107.134.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:56:1e:14:9c:76:1d:9f:fa:01:12:c9:d6:21:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 03:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1a73a0b76669a7d6b17c68f934e74632adea075a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:87:a4:61:b7:9d:67:f0:07:32:f5:62:b5:80:
58:ff:53:78:f8:08:ba:86:8b:4a:6a:0b:a7:65:49:
b9:da:79:c9:90:2d:20:3a:5b:d3:0a:d0:1d:28:d5:
48:2d:bd:40:ae:14:bb:98:9a:76:da:7d:a3:f4:c5:
d7:02:74:47:67:f3:ff:a4:ab:23:cc:77:4c:61:71:
46:c1:24:9e:87:7c:c5:2b:9c:29:75:cd:7f:f8:54:
2a:9f:c0:d7:b7:0f:1e:f8:f7:67:e1:9b:62:6b:0b:
fb:c7:45:59:62:c6:22:08:48:73:23:93:51:ea:87:
99:49:95:c1:cc:7b:f2:d0:82:71:e1:91:e8:39:87:
0c:d8:70:96:2e:38:1a:9c:66:d3:b8:f0:d3:06:fe:
60:c6:d6:3b:9c:09:71:96:2b:10:11:6a:4d:01:c9:
47:c7:53:48:54:d0:2b:e7:33:5d:71:63:58:2c:36:
4d:c3:66:85:4f:87:bc:97:16:0f:8c:1e:0d:2c:e1:
d9:31:38:df:ef:1c:a0:57:ef:f9:0b:45:01:ab:f7:
f9:df:57:78:48:b3:a8:81:15:ee:fc:03:22:74:1c:
09:24:68:54:bd:28:f4:11:93:3d:78:2e:57:f6:ee:
c5:df:ac:a3:71:8b:75:81:3e:c5:42:92:01:2b:66:
95:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:73:A0:B7:66:69:A7:D6:B1:7C:68:F9:34:E7:46:32:AD:EA:07:5A
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/GnOgt2Zpp9axfGj5NOdGMq3qB1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.134.0/23
Signature Algorithm: sha256WithRSAEncryption
43:e5:ee:f4:18:6e:d1:1d:e9:a2:b4:c3:ea:73:f8:b9:57:6f:
8e:83:d8:00:af:50:f4:3b:0b:c6:d2:47:c6:45:45:ae:a7:55:
72:9a:be:d7:83:9d:2a:f6:3b:d7:98:2b:ac:98:5a:1b:f4:18:
d1:c8:d3:5b:a0:43:63:20:3a:f2:dd:42:d3:af:6c:12:9a:78:
52:aa:a4:4f:2a:48:3d:b1:dd:37:38:45:55:56:bd:89:92:ef:
af:a5:c8:a3:d3:2b:16:43:de:0f:e3:00:92:4d:a1:88:6e:58:
09:2b:99:1e:db:b4:ea:26:39:e9:ef:12:74:0a:66:41:fc:65:
b6:a5:ce:12:f9:fe:e0:b2:21:9e:c7:d1:7b:3b:8f:87:94:d3:
8a:c4:02:96:11:35:4a:16:29:17:84:db:3c:08:e7:9b:b5:f5:
f4:78:42:fc:a7:4e:ed:32:f7:58:2b:27:02:a7:84:cd:45:90:
df:d2:84:a2:75:ab:51:e8:39:11:2a:d8:e0:24:bc:f9:1a:2f:
d8:fb:25:6d:59:09:11:7d:98:1e:cc:d6:3a:bc:e0:32:83:01:
10:3a:6a:19:9e:1a:7e:2a:36:55:82:c6:ba:11:15:8c:fa:d5:
9a:db:4c:e6:66:96:4e:7d:9f:5f:50:71:f2:07:f7:81:0d:1a:
0f:24:b1:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQf+lYeFJx2HZ/6ARLJ1iGoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwNzc1ZDk0NzFiODVkOTYzZmVmNmQyODM1OTBlMmQ5NDJk
ZDVjMjEwHhcNMjUwMTAxMDM0ODA3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTczYTBiNzY2NjlhN2Q2YjE3YzY4ZjkzNGU3NDYzMmFkZWEwNzVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoekYbedZ/AHMvVitYBY/1N4+Ai6
hotKagunZUm52nnJkC0gOlvTCtAdKNVILb1ArhS7mJp22n2j9MXXAnRHZ/P/pKsj
zHdMYXFGwSSeh3zFK5wpdc1/+FQqn8DXtw8e+Pdn4Ztiawv7x0VZYsYiCEhzI5NR
6oeZSZXBzHvy0IJx4ZHoOYcM2HCWLjganGbTuPDTBv5gxtY7nAlxlisQEWpNAclH
x1NIVNAr5zNdcWNYLDZNw2aFT4e8lxYPjB4NLOHZMTjf7xygV+/5C0UBq/f531d4
SLOogRXu/AMidBwJJGhUvSj0EZM9eC5X9u7F36yjcYt1gT7FQpIBK2aV6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBpzoLdmaafWsXxo+TTnRjKt6gdaMB8GA1UdIwQY
MBaAFAB3XZRxuF2WP+9tKDWQ4tlC3VwhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQt
NzZiMzNlNGNlODIxLzEvR25PZ3QyWnBwOWF4ZkdqNU5PZEdNcTNxQjFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi82Mzc2MGMtZTIxYi00YmFmLWE5YTQtNzZiMzNlNGNlODIx
LzEvQUhkZGxIRzRYWllfNzIwb05aRGkyVUxkWENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBV2uGMA0G
CSqGSIb3DQEBCwUAA4IBAQBD5e70GG7RHemitMPqc/i5V2+Og9gAr1D0OwvG0kfG
RUWup1Vymr7Xg50q9jvXmCusmFob9BjRyNNboENjIDry3ULTr2wSmnhSqqRPKkg9
sd03OEVVVr2Jku+vpcij0ysWQ94P4wCSTaGIblgJK5ke27TqJjnp7xJ0CmZB/GW2
pc4S+f7gsiGex9F7O4+HlNOKxAKWETVKFikXhNs8COebtfX0eEL8p07tMvdYKycC
p4TNRZDf0oSidatR6DkRKtjgJLz5Gi/Y+yVtWQkRfZgezNY6vOAygwEQOmoZnhp+
KjZVgsa6ERWM+tWa20zmZpZOfZ9fUHHyB/eBDRoPJLHq
-----END CERTIFICATE-----
Generated at Mon Apr 7 16:44:54 2025 by rpki-client