Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/6b2ERBxknPAevOnYxSvxzu95eG8.roa
File: 6b2ERBxknPAevOnYxSvxzu95eG8.roa (raw, json)
Hash identifier: 3kiDbks8aSmKxwaOLs+GDp7zBcCi628ZZOq/BNMJfnI=
Subject key identifier: E9:BD:84:44:1C:64:9C:F0:1E:BC:E9:D8:C5:2B:F1:CE:EF:79:78:6F
Certificate issuer: /CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Certificate serial: 0194221FCFCFB3954FC6EE24E6AAD323DDB8
Authority key identifier: 4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/6b2ERBxknPAevOnYxSvxzu95eG8.roa
Signing time: Wed 01 Jan 2025 13:48:17 +0000
ROA not before: Wed 01 Jan 2025 13:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205766
IP address blocks: 185.26.156.0/24 maxlen: 24
2a00:d0c0:200::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:cf:cf:b3:95:4f:c6:ee:24:e6:aa:d3:23:dd:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f895ff0e99a77c017e8a383292cb5c6f8261120
Validity
Not Before: Jan 1 13:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e9bd84441c649cf01ebce9d8c52bf1ceef79786f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:74:bd:b9:60:f3:97:8b:b2:9b:f9:fd:84:61:
44:2d:27:61:c7:fb:f5:89:b2:08:17:a2:d9:88:f5:
d2:87:f5:8b:3e:c3:5f:df:ba:76:fb:e9:6c:99:64:
6c:cd:38:ea:1d:02:fd:04:44:c2:82:bf:7f:ac:24:
c3:a5:c9:7c:fd:40:68:62:78:d5:0e:08:50:56:93:
f9:5b:c4:83:4e:5c:df:6c:19:7e:6d:ea:59:03:2b:
01:9b:62:09:77:6c:6f:f0:06:ea:0f:b2:30:43:71:
ee:7c:ef:0f:08:b8:55:d8:42:bf:fa:2f:aa:64:64:
1b:d9:0b:c8:0c:7e:3d:8e:3a:99:99:c6:eb:c4:2f:
d4:35:08:59:76:68:2e:7a:08:6b:b6:20:96:85:ae:
f3:9b:91:81:c0:99:58:ca:4e:d1:9e:bd:19:9e:65:
67:af:06:4d:5f:45:ac:99:53:5a:ea:2a:c8:3a:57:
44:b6:3d:70:ea:87:41:cd:5a:6a:df:c0:e4:9e:ff:
35:7b:5e:58:81:bb:40:1a:96:b6:8c:b6:f8:55:80:
35:c4:4f:13:43:d0:71:17:55:88:75:28:ba:94:52:
0e:f7:51:7f:20:04:5f:7c:67:46:9f:b1:40:8e:35:
af:fa:93:10:e3:96:c6:0a:e3:91:dd:23:f4:63:e5:
81:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:BD:84:44:1C:64:9C:F0:1E:BC:E9:D8:C5:2B:F1:CE:EF:79:78:6F
X509v3 Authority Key Identifier:
keyid:4F:89:5F:F0:E9:9A:77:C0:17:E8:A3:83:29:2C:B5:C6:F8:26:11:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4lf8Omad8AX6KODKSy1xvgmESA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/6b2ERBxknPAevOnYxSvxzu95eG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3328da-aa4e-445b-9da9-d053745c2acc/1/T4lf8Omad8AX6KODKSy1xvgmESA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.26.156.0/24
IPv6:
2a00:d0c0:200::/48
Signature Algorithm: sha256WithRSAEncryption
61:2d:2c:be:17:b1:5e:ec:ec:f0:2d:f9:29:5a:e6:6b:db:07:
17:87:0e:ea:e7:17:e1:69:d4:59:53:b9:9e:f8:be:d9:03:4e:
7a:09:38:2d:c9:9e:77:13:89:43:65:be:c2:39:87:cf:07:dc:
4f:85:6a:12:a4:8d:21:77:65:2d:c4:3a:a2:c4:55:8f:2f:e8:
0c:92:0d:e1:ff:b7:7b:1d:ac:40:e9:92:5c:04:64:60:80:c1:
76:32:61:0c:83:c8:c3:44:df:4f:20:d1:87:ac:94:ba:ef:82:
68:fb:3e:53:2b:18:aa:0b:54:60:49:67:be:f7:58:1a:24:d8:
02:75:a9:c5:55:d6:53:a9:c3:db:28:e1:04:87:1c:4c:40:ef:
3c:b4:28:b6:22:0d:56:f8:50:db:69:d6:b8:6f:9f:ca:93:dc:
88:ad:81:2b:e1:2a:a6:36:90:2c:bb:ae:96:82:00:eb:e7:df:
37:26:03:f1:f4:da:32:fb:29:b7:74:48:68:3d:93:50:6b:ee:
7d:e2:2a:15:aa:14:e2:44:f9:28:76:2a:aa:70:2e:1b:b8:2c:
2d:55:a1:a3:1b:92:a1:9e:14:8a:20:f8:f9:51:06:b0:65:a9:
35:a4:66:81:31:04:e0:c2:38:88:9c:f6:89:7e:aa:ce:67:3c:
48:cc:fc:ac
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQiH8/Ps5VPxu4k5qrTI924MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmODk1ZmYwZTk5YTc3YzAxN2U4YTM4MzI5MmNiNWM2Zjgy
NjExMjAwHhcNMjUwMTAxMTM0ODE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOWJkODQ0NDFjNjQ5Y2YwMWViY2U5ZDhjNTJiZjFjZWVmNzk3ODZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3S9uWDzl4uym/n9hGFELSdhx/v1
ibIIF6LZiPXSh/WLPsNf37p2++lsmWRszTjqHQL9BETCgr9/rCTDpcl8/UBoYnjV
DghQVpP5W8SDTlzfbBl+bepZAysBm2IJd2xv8AbqD7IwQ3HufO8PCLhV2EK/+i+q
ZGQb2QvIDH49jjqZmcbrxC/UNQhZdmgueghrtiCWha7zm5GBwJlYyk7Rnr0ZnmVn
rwZNX0WsmVNa6irIOldEtj1w6odBzVpq38Dknv81e15YgbtAGpa2jLb4VYA1xE8T
Q9BxF1WIdSi6lFIO91F/IARffGdGn7FAjjWv+pMQ45bGCuOR3SP0Y+WBAQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOm9hEQcZJzwHrzp2MUr8c7veXhvMB8GA1UdIwQY
MBaAFE+JX/DpmnfAF+ijgykstcb4JhEgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDRsZjhPbWFkOEFYNktPREtTeTF4dmdtRVNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8zMzI4ZGEtYWE0ZS00NDViLTlkYTkt
ZDA1Mzc0NWMyYWNjLzEvNmIyRVJCeGtuUEFldk9uWXhTdnh6dTk1ZUc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8zMzI4ZGEtYWE0ZS00NDViLTlkYTktZDA1Mzc0NWMyYWNj
LzEvVDRsZjhPbWFkOEFYNktPREtTeTF4dmdtRVNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuRqcMA8E
AgACMAkDBwAqANDAAgAwDQYJKoZIhvcNAQELBQADggEBAGEtLL4XsV7s7PAt+Sla
5mvbBxeHDurnF+Fp1FlTuZ74vtkDTnoJOC3JnncTiUNlvsI5h88H3E+FahKkjSF3
ZS3EOqLEVY8v6AySDeH/t3sdrEDpklwEZGCAwXYyYQyDyMNE308g0YeslLrvgmj7
PlMrGKoLVGBJZ773WBok2AJ1qcVV1lOpw9so4QSHHExA7zy0KLYiDVb4UNtp1rhv
n8qT3IitgSvhKqY2kCy7rpaCAOvn3zcmA/H02jL7Kbd0SGg9k1Br7n3iKhWqFOJE
+Sh2KqpwLhu4LC1VoaMbkqGeFIog+PlRBrBlqTWkZoExBODCOIic9ol+qs5nPEjM
/Kw=
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:58 2025 by rpki-client