Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/5OG6iGTbUMv4yreuCzltBDVdDTU.roa
File: 5OG6iGTbUMv4yreuCzltBDVdDTU.roa (raw, json)
Hash identifier: B8Cg7jxvmm1JBGJPeKqbsREjncwII7bdGdlW3Ml3/PA=
Subject key identifier: E4:E1:BA:88:64:DB:50:CB:F8:CA:B7:AE:0B:39:6D:04:35:5D:0D:35
Certificate issuer: /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial: 019427487FF1EBB241B9B08285FA6A36FC3B
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/5OG6iGTbUMv4yreuCzltBDVdDTU.roa
Signing time: Thu 02 Jan 2025 13:50:50 +0000
ROA not before: Thu 02 Jan 2025 13:50:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8315
IP address blocks: 185.116.72.0/22 maxlen: 24
2a0d:5040::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:7f:f1:eb:b2:41:b9:b0:82:85:fa:6a:36:fc:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
Validity
Not Before: Jan 2 13:50:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e4e1ba8864db50cbf8cab7ae0b396d04355d0d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:07:a0:86:d6:66:44:b0:65:5f:ae:e2:ed:dc:
e4:4e:73:36:37:f4:77:7d:1f:ab:3f:fc:93:89:0c:
70:72:6b:ab:32:32:aa:1c:05:33:1d:14:b9:93:7b:
68:02:3c:5c:3e:c9:6b:dd:35:e2:47:3b:a5:15:ed:
d0:0c:e9:b5:d3:bd:13:a8:5e:e6:60:a7:88:3d:f7:
ac:2d:78:e9:92:67:a7:ab:44:d8:b2:cd:8c:2c:2d:
9b:53:db:5e:02:95:65:ea:f8:e5:38:91:bc:f0:56:
40:13:48:b5:9e:7c:b1:e6:1f:9d:29:ae:01:7a:9e:
01:55:43:6a:35:cb:d9:97:78:bd:cf:fe:e5:85:53:
71:fb:9c:59:5c:c1:d9:d7:56:e3:e7:55:97:4f:01:
4f:e8:89:9c:80:37:14:98:d8:2d:ac:71:d7:08:57:
af:0c:45:bb:a6:9b:30:a1:7d:51:b3:ae:fc:dc:71:
16:52:dc:39:b9:39:35:5a:f2:a0:9d:e5:fe:00:33:
12:dc:29:11:13:09:d6:bb:1a:f2:6d:fc:b0:18:fc:
0f:f8:75:5c:7e:5f:75:30:30:a7:10:78:79:43:1b:
8e:fe:c2:ca:fd:c6:1a:69:1f:c5:8b:0f:5a:79:80:
06:7d:2d:c4:82:7e:be:56:48:71:d9:6d:d0:24:16:
ce:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E1:BA:88:64:DB:50:CB:F8:CA:B7:AE:0B:39:6D:04:35:5D:0D:35
X509v3 Authority Key Identifier:
keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/5OG6iGTbUMv4yreuCzltBDVdDTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.72.0/22
IPv6:
2a0d:5040::/29
Signature Algorithm: sha256WithRSAEncryption
67:65:33:d4:dc:c8:8f:c8:c3:78:d6:71:8e:6e:a8:52:ac:48:
7c:bf:29:6e:11:33:71:4b:60:6a:7f:d8:2f:af:b0:1d:36:d9:
6a:db:6e:37:55:79:cb:4a:53:1d:ad:9c:88:8a:6b:fa:eb:c3:
e3:c3:c6:8a:f9:82:7b:53:92:10:74:60:ae:24:15:ba:d3:b3:
0a:b2:bd:b7:39:88:c5:8c:4b:8b:b8:09:07:66:cf:cc:87:c4:
0f:b9:b7:36:cf:6f:29:99:ea:34:5d:7e:58:ff:12:4a:93:2e:
2e:e1:ee:2e:d6:39:e2:ff:7c:bf:32:9a:2b:c1:28:f6:7e:af:
f6:07:9a:ab:f8:53:9f:9e:2b:0a:64:86:5a:c6:28:8d:99:a6:
bd:a0:a6:67:b4:80:73:50:30:fe:49:24:73:ac:6c:34:de:ea:
08:21:5f:c0:7a:1a:36:5e:47:39:1e:17:50:48:d5:9f:98:5b:
6c:4a:65:89:0a:1b:cd:da:69:9f:f6:eb:cc:90:e3:45:bf:8e:
47:a1:e5:16:6c:17:91:37:27:09:d6:92:59:b6:5f:38:53:65:
4b:0f:a2:78:9c:10:8b:5f:2c:6b:0a:e1:60:e7:3c:7a:35:9d:
10:3e:51:ab:23:d3:5d:fe:32:04:19:45:bf:46:eb:54:69:49:
19:c1:ee:e1
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQnSH/x67JBubCChfpqNvw7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiYzk1MDA5ODQzNjI4MWNlZTU0MmExZTc0NTQ2NTUxZTFl
NTUyODMwHhcNMjUwMTAyMTM1MDUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNGUxYmE4ODY0ZGI1MGNiZjhjYWI3YWUwYjM5NmQwNDM1NWQwZDM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQeghtZmRLBlX67i7dzkTnM2N/R3
fR+rP/yTiQxwcmurMjKqHAUzHRS5k3toAjxcPslr3TXiRzulFe3QDOm1070TqF7m
YKeIPfesLXjpkmenq0TYss2MLC2bU9teApVl6vjlOJG88FZAE0i1nnyx5h+dKa4B
ep4BVUNqNcvZl3i9z/7lhVNx+5xZXMHZ11bj51WXTwFP6ImcgDcUmNgtrHHXCFev
DEW7ppswoX1Rs6783HEWUtw5uTk1WvKgneX+ADMS3CkREwnWuxrybfywGPwP+HVc
fl91MDCnEHh5QxuO/sLK/cYaaR/Fiw9aeYAGfS3Egn6+Vkhx2W3QJBbOCQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFOThuohk21DL+Mq3rgs5bQQ1XQ01MB8GA1UdIwQY
MBaAFNvJUAmENigc7lQqHnRUZVHh5VKDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDkt
ZjQ3ZTE2OTI2NmMyLzEvNU9HNmlHVGJVTXY0eXJldUN6bHRCRFZkRFRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi81YWE0NDgtNjQzZi00YWVlLTkwZDktZjQ3ZTE2OTI2NmMy
LzEvMjhsUUNZUTJLQnp1VkNvZWRGUmxVZUhsVW9NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXRIMA0E
AgACMAcDBQMqDVBAMA0GCSqGSIb3DQEBCwUAA4IBAQBnZTPU3MiPyMN41nGObqhS
rEh8vyluETNxS2Bqf9gvr7AdNtlq2243VXnLSlMdrZyIimv668Pjw8aK+YJ7U5IQ
dGCuJBW607MKsr23OYjFjEuLuAkHZs/Mh8QPubc2z28pmeo0XX5Y/xJKky4u4e4u
1jni/3y/MporwSj2fq/2B5qr+FOfnisKZIZaxiiNmaa9oKZntIBzUDD+SSRzrGw0
3uoIIV/Aeho2Xkc5HhdQSNWfmFtsSmWJChvN2mmf9uvMkONFv45HoeUWbBeRNycJ
1pJZtl84U2VLD6J4nBCLXyxrCuFg5zx6NZ0QPlGrI9Nd/jIEGUW/RutUaUkZwe7h
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:42 2025 by rpki-client on console.sobornost.net