Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/1743df-0462-4cac-8250-dedc52a2ed8f/1/68fsEjYkrgR4by_fTbemVJ74S4g.roa
File: 68fsEjYkrgR4by_fTbemVJ74S4g.roa (raw, json)
Hash identifier: llyOhetb8mMlkTVijjj2HRYaNacwV37b8WoQhej4dKA=
Subject key identifier: EB:C7:EC:12:36:24:AE:04:78:6F:2F:DF:4D:B7:A6:54:9E:F8:4B:88
Certificate issuer: /CN=909ac4b217a08c348fb2dc9fb7422e1de918f517
Certificate serial: 01942143F11C7D99F521616E650D09E7810F
Authority key identifier: 90:9A:C4:B2:17:A0:8C:34:8F:B2:DC:9F:B7:42:2E:1D:E9:18:F5:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kJrEshegjDSPstyft0IuHekY9Rc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/1743df-0462-4cac-8250-dedc52a2ed8f/1/68fsEjYkrgR4by_fTbemVJ74S4g.roa
Signing time: Wed 01 Jan 2025 09:48:08 +0000
ROA not before: Wed 01 Jan 2025 09:48:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47215
IP address blocks: 185.134.240.0/24 maxlen: 24
2a06:ee40:22::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:f1:1c:7d:99:f5:21:61:6e:65:0d:09:e7:81:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=909ac4b217a08c348fb2dc9fb7422e1de918f517
Validity
Not Before: Jan 1 09:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ebc7ec123624ae04786f2fdf4db7a6549ef84b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d2:36:df:2b:9f:39:eb:a4:2c:2a:93:4c:91:
1c:13:b8:45:22:40:7a:9d:a7:2f:2e:35:da:13:75:
01:18:c2:fc:09:96:41:d1:3f:fd:0a:35:bb:f4:d6:
76:2c:19:c3:d6:45:53:b9:31:dd:e7:38:23:0f:7e:
db:76:43:af:52:28:47:cc:7c:52:51:56:ef:8a:41:
20:8f:20:ca:2b:f8:00:05:9a:d9:54:35:5f:26:e1:
2c:4b:ae:71:80:54:b2:f6:64:0b:43:bd:5a:57:38:
4a:da:41:9a:69:4a:b0:85:cf:a7:85:ce:13:f5:14:
c3:5c:aa:ce:8b:79:24:fb:69:e5:51:9b:ac:31:86:
bc:b8:94:01:c6:6d:ee:b5:69:92:58:e8:68:4c:64:
68:8c:27:29:9a:e2:ee:e6:c8:67:40:f0:a9:f9:16:
a5:4b:c0:35:a8:8f:a3:b5:97:93:cb:13:3d:a1:97:
c7:3b:35:fe:88:e7:ac:32:97:0b:e1:6b:51:39:82:
5d:4a:05:49:f2:a8:0c:26:e9:e8:db:52:9e:24:e6:
ca:84:7e:97:bb:58:16:21:cc:10:9c:8d:b7:2a:bc:
24:08:79:6d:d0:ef:b2:64:3e:13:01:fc:85:f3:3f:
73:98:03:df:ad:ac:62:ee:dd:6b:84:a3:b9:dc:67:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C7:EC:12:36:24:AE:04:78:6F:2F:DF:4D:B7:A6:54:9E:F8:4B:88
X509v3 Authority Key Identifier:
keyid:90:9A:C4:B2:17:A0:8C:34:8F:B2:DC:9F:B7:42:2E:1D:E9:18:F5:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kJrEshegjDSPstyft0IuHekY9Rc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1743df-0462-4cac-8250-dedc52a2ed8f/1/68fsEjYkrgR4by_fTbemVJ74S4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/1743df-0462-4cac-8250-dedc52a2ed8f/1/kJrEshegjDSPstyft0IuHekY9Rc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.240.0/24
IPv6:
2a06:ee40:22::/48
Signature Algorithm: sha256WithRSAEncryption
56:67:a7:3a:a5:b5:15:d6:5f:02:35:b4:e7:88:e0:79:ba:a3:
7f:35:b5:9e:57:3b:e1:95:2c:8c:57:b0:08:0f:48:19:86:7e:
52:ab:1d:2a:5c:96:38:c3:6e:1f:98:7f:f2:94:69:17:16:15:
ff:56:b5:86:d9:0f:aa:6c:34:47:43:80:67:a7:22:e1:69:81:
9e:9e:c9:d4:16:db:e8:16:e7:b6:1e:77:80:fa:b6:ec:fc:6e:
66:2b:3e:2d:ec:cb:98:e4:15:a0:e0:d0:61:95:b0:89:90:8f:
2e:9a:19:fc:17:9d:58:2c:fc:5a:92:b6:5a:36:40:63:a0:04:
d5:7c:b5:1d:72:5c:3a:6c:0e:eb:ec:b6:cf:e1:f4:45:cd:ce:
a5:3c:3b:05:72:33:d8:51:2e:40:b4:6b:79:15:3f:3a:71:fb:
49:a4:d4:f4:6f:12:15:0a:52:ac:4c:af:80:11:44:07:6e:f6:
1e:6d:19:de:9d:db:1c:88:d6:c1:18:9a:bf:e6:3b:96:f4:94:
f7:1f:5b:c1:68:a1:dc:ca:ed:71:92:f1:ae:8e:7a:a1:ec:ea:
c4:03:89:3d:9e:89:75:dc:16:7b:df:d9:f1:bb:0b:0f:94:01:
3a:a5:5f:4c:e9:8b:8c:4f:04:13:4d:00:70:f9:5c:e2:af:f2:
4a:6a:58:73
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQhQ/EcfZn1IWFuZQ0J54EPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwOWFjNGIyMTdhMDhjMzQ4ZmIyZGM5ZmI3NDIyZTFkZTkx
OGY1MTcwHhcNMjUwMTAxMDk0ODA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYmM3ZWMxMjM2MjRhZTA0Nzg2ZjJmZGY0ZGI3YTY1NDllZjg0Yjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9I23yufOeukLCqTTJEcE7hFIkB6
nacvLjXaE3UBGML8CZZB0T/9CjW79NZ2LBnD1kVTuTHd5zgjD37bdkOvUihHzHxS
UVbvikEgjyDKK/gABZrZVDVfJuEsS65xgFSy9mQLQ71aVzhK2kGaaUqwhc+nhc4T
9RTDXKrOi3kk+2nlUZusMYa8uJQBxm3utWmSWOhoTGRojCcpmuLu5shnQPCp+Ral
S8A1qI+jtZeTyxM9oZfHOzX+iOesMpcL4WtROYJdSgVJ8qgMJuno21KeJObKhH6X
u1gWIcwQnI23KrwkCHlt0O+yZD4TAfyF8z9zmAPfraxi7t1rhKO53Gd5LwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFOvH7BI2JK4EeG8v3023plSe+EuIMB8GA1UdIwQY
MBaAFJCaxLIXoIw0j7Lcn7dCLh3pGPUXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0pyRXNoZWdqRFNQc3R5ZnQwSXVIZWtZOVJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS8xNzQzZGYtMDQ2Mi00Y2FjLTgyNTAt
ZGVkYzUyYTJlZDhmLzEvNjhmc0VqWWtyZ1I0YnlfZlRiZW1WSjc0UzRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZS8xNzQzZGYtMDQ2Mi00Y2FjLTgyNTAtZGVkYzUyYTJlZDhm
LzEva0pyRXNoZWdqRFNQc3R5ZnQwSXVIZWtZOVJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuYbwMA8E
AgACMAkDBwAqBu5AACIwDQYJKoZIhvcNAQELBQADggEBAFZnpzqltRXWXwI1tOeI
4Hm6o381tZ5XO+GVLIxXsAgPSBmGflKrHSpcljjDbh+Yf/KUaRcWFf9WtYbZD6ps
NEdDgGenIuFpgZ6eydQW2+gW57Yed4D6tuz8bmYrPi3sy5jkFaDg0GGVsImQjy6a
GfwXnVgs/FqStlo2QGOgBNV8tR1yXDpsDuvsts/h9EXNzqU8OwVyM9hRLkC0a3kV
Pzpx+0mk1PRvEhUKUqxMr4ARRAdu9h5tGd6d2xyI1sEYmr/mO5b0lPcfW8FoodzK
7XGS8a6OeqHs6sQDiT2eiXXcFnvf2fG7Cw+UATqlX0zpi4xPBBNNAHD5XOKv8kpq
WHM=
-----END CERTIFICATE-----
Generated at Sun Apr 27 13:12:09 2025 by rpki-client