Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d0fea6-22a1-4aa5-b50d-a114939cdaa5/1/QHN1mo-chw8woBmyHxpHaobOHVY.roa
File: QHN1mo-chw8woBmyHxpHaobOHVY.roa (raw, json)
Hash identifier: xauKLlFs3GtWKAmak4uwPaBujz4eKBRABiwipmCaZzM=
Subject key identifier: 40:73:75:9A:8F:9C:87:0F:30:A0:19:B2:1F:1A:47:6A:86:CE:1D:56
Certificate issuer: /CN=5af1d525d9e1c8fee7f51c929984321912fff34c
Certificate serial: 0194266BCD51E1CA350D21628DCFFB5F317E
Authority key identifier: 5A:F1:D5:25:D9:E1:C8:FE:E7:F5:1C:92:99:84:32:19:12:FF:F3:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WvHVJdnhyP7n9RySmYQyGRL_80w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d0fea6-22a1-4aa5-b50d-a114939cdaa5/1/QHN1mo-chw8woBmyHxpHaobOHVY.roa
Signing time: Thu 02 Jan 2025 09:49:46 +0000
ROA not before: Thu 02 Jan 2025 09:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47866
IP address blocks: 185.85.244.0/22 maxlen: 22
185.85.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:cd:51:e1:ca:35:0d:21:62:8d:cf:fb:5f:31:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5af1d525d9e1c8fee7f51c929984321912fff34c
Validity
Not Before: Jan 2 09:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4073759a8f9c870f30a019b21f1a476a86ce1d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:df:a0:89:07:8f:59:41:d0:fa:81:6d:31:58:
4a:fa:a5:28:53:12:83:24:09:bf:c5:12:e3:c5:57:
4b:a2:bc:8b:0f:b4:4e:8a:a6:6c:a2:f0:80:a6:ce:
06:e1:92:13:f9:98:7f:99:56:2b:c3:05:b8:c9:ce:
12:fd:c7:44:66:8a:60:32:74:81:42:9c:9c:e1:95:
9c:ae:8b:3e:0e:56:a5:c1:ea:08:49:89:6c:ac:54:
f9:7c:f8:eb:04:76:8d:8d:3d:71:10:61:77:a0:cf:
01:2c:1b:01:5e:04:5a:7c:c3:e6:fb:29:ac:04:04:
2c:0c:14:2e:46:db:1f:3d:c6:46:14:93:52:b0:8c:
7d:4a:c1:cf:e0:75:8c:f4:bc:57:b2:aa:3a:e0:17:
e2:07:ff:36:16:bb:87:59:40:4d:bd:c9:88:46:67:
10:b8:77:89:e5:71:ca:18:56:cd:7e:cc:d7:aa:9e:
44:b6:fb:23:89:cf:c4:d6:7d:48:03:ec:82:14:7c:
19:c5:b7:23:be:92:c0:f2:03:ea:81:df:67:36:e9:
71:55:ec:c8:25:72:1e:20:bf:0e:7b:b6:c0:91:ac:
f2:c9:b9:a4:e9:81:a1:d7:42:0c:e0:3d:98:cb:9d:
62:45:26:12:5b:ab:8e:f5:90:d9:d9:c3:0b:90:09:
69:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:73:75:9A:8F:9C:87:0F:30:A0:19:B2:1F:1A:47:6A:86:CE:1D:56
X509v3 Authority Key Identifier:
keyid:5A:F1:D5:25:D9:E1:C8:FE:E7:F5:1C:92:99:84:32:19:12:FF:F3:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WvHVJdnhyP7n9RySmYQyGRL_80w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d0fea6-22a1-4aa5-b50d-a114939cdaa5/1/QHN1mo-chw8woBmyHxpHaobOHVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d0fea6-22a1-4aa5-b50d-a114939cdaa5/1/WvHVJdnhyP7n9RySmYQyGRL_80w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.244.0/22
Signature Algorithm: sha256WithRSAEncryption
88:3e:1c:23:85:54:7b:4d:63:b2:e8:57:1a:42:ac:7c:64:2a:
75:85:5f:86:5c:8d:82:2e:02:cf:b4:0e:b7:d1:61:5a:f1:4e:
f1:50:37:27:0a:b9:aa:e6:03:7e:cd:09:ab:b4:31:fc:59:7f:
ad:3d:78:83:48:d2:84:9b:57:50:29:ef:36:07:e5:6e:da:31:
80:2f:3a:f8:bf:08:56:f4:85:fa:2e:24:cd:18:76:75:25:f3:
ad:0e:8b:64:2e:ba:e0:39:cd:97:89:b8:62:ec:8a:42:9b:64:
e9:bc:41:e3:8b:b9:56:c7:1f:c3:a3:07:76:ac:53:2c:c1:73:
7f:9b:d5:34:3c:d0:d2:3e:f6:0c:71:05:de:2a:da:43:a6:cb:
93:b3:e2:5f:3c:d1:b6:8f:fa:50:f2:d6:97:32:0d:6c:8b:1b:
f0:92:17:ce:ae:2b:a1:d7:37:79:c7:97:51:c1:4b:c9:c1:23:
f4:32:17:0a:00:85:1c:dc:b4:a7:ca:c8:20:0b:ef:f1:07:69:
49:d8:60:66:4a:fb:a6:a0:aa:e4:34:0e:43:33:11:6c:da:0f:
02:09:75:84:90:46:9d:d4:3c:4c:bf:6f:96:37:a8:ce:81:1b:
29:38:74:fb:65:39:07:f7:ed:aa:23:d4:e1:7b:29:93:3b:2e:
33:c8:f9:ad
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQma81R4co1DSFijc/7XzF+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhZjFkNTI1ZDllMWM4ZmVlN2Y1MWM5Mjk5ODQzMjE5MTJm
ZmYzNGMwHhcNMjUwMTAyMDk0OTQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDczNzU5YThmOWM4NzBmMzBhMDE5YjIxZjFhNDc2YTg2Y2UxZDU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlN+giQePWUHQ+oFtMVhK+qUoUxKD
JAm/xRLjxVdLoryLD7ROiqZsovCAps4G4ZIT+Zh/mVYrwwW4yc4S/cdEZopgMnSB
Qpyc4ZWcros+DlalweoISYlsrFT5fPjrBHaNjT1xEGF3oM8BLBsBXgRafMPm+yms
BAQsDBQuRtsfPcZGFJNSsIx9SsHP4HWM9LxXsqo64BfiB/82FruHWUBNvcmIRmcQ
uHeJ5XHKGFbNfszXqp5Etvsjic/E1n1IA+yCFHwZxbcjvpLA8gPqgd9nNulxVezI
JXIeIL8Oe7bAkazyybmk6YGh10IM4D2Yy51iRSYSW6uO9ZDZ2cMLkAlpiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEBzdZqPnIcPMKAZsh8aR2qGzh1WMB8GA1UdIwQY
MBaAFFrx1SXZ4cj+5/UckpmEMhkS//NMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3ZIVkpkbmh5UDduOVJ5U21ZUXlHUkxfODB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMGZlYTYtMjJhMS00YWE1LWI1MGQt
YTExNDkzOWNkYWE1LzEvUUhOMW1vLWNodzh3b0JteUh4cEhhb2JPSFZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMGZlYTYtMjJhMS00YWE1LWI1MGQtYTExNDkzOWNkYWE1
LzEvV3ZIVkpkbmh5UDduOVJ5U21ZUXlHUkxfODB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVX0MA0G
CSqGSIb3DQEBCwUAA4IBAQCIPhwjhVR7TWOy6FcaQqx8ZCp1hV+GXI2CLgLPtA63
0WFa8U7xUDcnCrmq5gN+zQmrtDH8WX+tPXiDSNKEm1dQKe82B+Vu2jGALzr4vwhW
9IX6LiTNGHZ1JfOtDotkLrrgOc2Xibhi7IpCm2TpvEHji7lWxx/Dowd2rFMswXN/
m9U0PNDSPvYMcQXeKtpDpsuTs+JfPNG2j/pQ8taXMg1sixvwkhfOriuh1zd5x5dR
wUvJwSP0MhcKAIUc3LSnysggC+/xB2lJ2GBmSvumoKrkNA5DMxFs2g8CCXWEkEad
1DxMv2+WN6jOgRspOHT7ZTkH9+2qI9TheymTOy4zyPmt
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:16 2025 by rpki-client on console.sobornost.net