Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/bhHVWGVzpofEHNZw-dgBa6qw-J4.roa
File: bhHVWGVzpofEHNZw-dgBa6qw-J4.roa (raw, json)
Hash identifier: r+tObaXnqroWwsS1D28Z0FdfhnHZZceap8tgO6gHsaU=
Subject key identifier: 6E:11:D5:58:65:73:A6:87:C4:1C:D6:70:F9:D8:01:6B:AA:B0:F8:9E
Certificate issuer: /CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Certificate serial: 019425220B2DE1E0B45FFBB9C95B40ABD172
Authority key identifier: EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/bhHVWGVzpofEHNZw-dgBa6qw-J4.roa
Signing time: Thu 02 Jan 2025 03:49:35 +0000
ROA not before: Thu 02 Jan 2025 03:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207279
IP address blocks: 85.117.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:0b:2d:e1:e0:b4:5f:fb:b9:c9:5b:40:ab:d1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=effdb33ee5fd522faf0a247e0579bbf1eefce4b1
Validity
Not Before: Jan 2 03:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e11d5586573a687c41cd670f9d8016baab0f89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:73:d9:58:0a:7f:82:89:39:c4:01:ea:12:bf:
a7:b1:8a:dd:94:0a:35:10:34:e2:c9:92:f5:1e:2f:
75:63:da:26:1a:00:56:fa:a2:90:37:90:9c:4b:d6:
4b:0b:7f:6b:dd:ce:06:3c:6d:84:c9:1f:39:39:b6:
28:93:6c:8f:eb:e2:24:b2:ab:5c:04:e8:89:91:b9:
a5:87:9f:23:93:57:b1:2a:0c:d4:ce:aa:96:c8:00:
14:b3:e4:27:a6:e3:fe:c4:87:f2:bc:7a:9f:3b:3b:
13:e1:51:5e:83:60:da:1b:9c:b5:d9:9f:fe:44:68:
a5:6d:17:ed:88:0e:45:12:53:90:bf:b2:2b:89:ef:
fe:78:35:c4:be:b5:d0:25:9a:2b:11:2b:2f:a0:f2:
b4:ce:b3:3b:ae:35:db:a1:e6:b1:9d:0b:41:c5:3c:
03:5e:96:14:eb:19:83:7d:c1:cd:21:50:2d:a3:62:
f9:eb:9a:72:fe:ce:d6:70:ea:e2:5a:7d:09:b6:2b:
2c:c4:a1:84:75:0c:09:43:45:82:c1:80:84:62:fe:
e3:ae:61:a3:4b:c6:96:05:8b:97:63:88:f2:04:68:
18:25:d9:44:b9:1f:3c:e5:38:a3:bf:a7:9e:df:4b:
94:e9:e2:2d:76:db:f5:e1:76:b7:59:62:f7:27:e8:
f5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:11:D5:58:65:73:A6:87:C4:1C:D6:70:F9:D8:01:6B:AA:B0:F8:9E
X509v3 Authority Key Identifier:
keyid:EF:FD:B3:3E:E5:FD:52:2F:AF:0A:24:7E:05:79:BB:F1:EE:FC:E4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7_2zPuX9Ui-vCiR-BXm78e785LE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/bhHVWGVzpofEHNZw-dgBa6qw-J4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/bd24a5-eacd-46e4-b1db-ad73abd00452/1/7_2zPuX9Ui-vCiR-BXm78e785LE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.239.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:2e:9d:b5:83:ee:c2:08:31:64:56:49:7d:12:3c:16:12:3b:
1c:16:4c:51:7c:a2:ef:0b:9b:92:ed:79:13:af:21:82:4b:6b:
90:4d:9e:08:c1:93:4e:b6:82:c3:07:a0:22:92:60:2d:f5:dd:
a6:49:fe:38:a0:01:2c:e4:22:72:67:9b:05:2a:f5:30:43:2c:
3f:35:c4:96:26:49:2e:07:a7:d8:ca:0f:b9:65:52:84:64:4d:
95:38:df:b9:6b:83:c9:c6:30:9c:bb:13:c0:37:db:81:86:59:
4a:62:73:0e:51:81:e1:d7:6a:63:44:0e:10:ae:ee:c8:a1:d4:
da:27:b1:8a:62:2f:3b:5d:fa:d2:ad:d2:4c:dc:53:59:fc:b6:
41:23:b9:f6:8d:eb:21:d4:f0:e2:3e:92:12:88:f8:18:42:59:
0a:6f:d9:aa:d0:19:07:13:15:5f:00:78:ce:3d:70:dc:5b:5e:
fb:07:78:33:a6:67:81:70:b3:19:a1:b4:fd:55:89:91:e2:ee:
75:4c:41:f4:fa:8c:c9:82:cd:aa:2d:af:6c:eb:03:ab:51:87:
20:57:54:be:a1:0c:19:9e:63:e8:64:db:2d:0f:43:d7:2e:f4:
b8:ff:76:a6:82:80:5b:81:56:65:b4:b6:9d:94:a0:b3:ca:0a:
b7:73:9b:80
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIgst4eC0X/u5yVtAq9FyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmZmRiMzNlZTVmZDUyMmZhZjBhMjQ3ZTA1NzliYmYxZWVm
Y2U0YjEwHhcNMjUwMTAyMDM0OTM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTExZDU1ODY1NzNhNjg3YzQxY2Q2NzBmOWQ4MDE2YmFhYjBmODllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq3PZWAp/gok5xAHqEr+nsYrdlAo1
EDTiyZL1Hi91Y9omGgBW+qKQN5CcS9ZLC39r3c4GPG2EyR85ObYok2yP6+Iksqtc
BOiJkbmlh58jk1exKgzUzqqWyAAUs+QnpuP+xIfyvHqfOzsT4VFeg2DaG5y12Z/+
RGilbRftiA5FElOQv7Irie/+eDXEvrXQJZorESsvoPK0zrM7rjXboeaxnQtBxTwD
XpYU6xmDfcHNIVAto2L565py/s7WcOriWn0JtissxKGEdQwJQ0WCwYCEYv7jrmGj
S8aWBYuXY4jyBGgYJdlEuR885Tijv6ee30uU6eItdtv14Xa3WWL3J+j1fwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG4R1Vhlc6aHxBzWcPnYAWuqsPieMB8GA1UdIwQY
MBaAFO/9sz7l/VIvrwokfgV5u/Hu/OSxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN18yelB1WDlVaS12Q2lSLUJYbTc4ZTc4NUxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9iZDI0YTUtZWFjZC00NmU0LWIxZGIt
YWQ3M2FiZDAwNDUyLzEvYmhIVldHVnpwb2ZFSE5ady1kZ0JhNnF3LUo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9iZDI0YTUtZWFjZC00NmU0LWIxZGItYWQ3M2FiZDAwNDUy
LzEvN18yelB1WDlVaS12Q2lSLUJYbTc4ZTc4NUxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVXXvMA0G
CSqGSIb3DQEBCwUAA4IBAQBvLp21g+7CCDFkVkl9EjwWEjscFkxRfKLvC5uS7XkT
ryGCS2uQTZ4IwZNOtoLDB6AikmAt9d2mSf44oAEs5CJyZ5sFKvUwQyw/NcSWJkku
B6fYyg+5ZVKEZE2VON+5a4PJxjCcuxPAN9uBhllKYnMOUYHh12pjRA4Qru7IodTa
J7GKYi87XfrSrdJM3FNZ/LZBI7n2jesh1PDiPpISiPgYQlkKb9mq0BkHExVfAHjO
PXDcW177B3gzpmeBcLMZobT9VYmR4u51TEH0+ozJgs2qLa9s6wOrUYcgV1S+oQwZ
nmPoZNstD0PXLvS4/3amgoBbgVZltLadlKCzygq3c5uA
-----END CERTIFICATE-----
Generated at Thu Apr 17 13:50:17 2025 by rpki-client