Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/a0gi81K4PU-mZZPSh82aNeLjsVI.roa
File: a0gi81K4PU-mZZPSh82aNeLjsVI.roa (raw, json)
Hash identifier: Id1bqvDurbpWKdNvf29qBzclAu3m5HKcR5Kg3lRHGKE=
Subject key identifier: 6B:48:22:F3:52:B8:3D:4F:A6:65:93:D2:87:CD:9A:35:E2:E3:B1:52
Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40
Certificate serial: 019422FC3116EF273BDE4868CF512FA02D48
Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/a0gi81K4PU-mZZPSh82aNeLjsVI.roa
Signing time: Wed 01 Jan 2025 17:49:00 +0000
ROA not before: Wed 01 Jan 2025 17:49:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199788
IP address blocks: 185.57.40.0/22 maxlen: 22
2a01:5ba0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:31:16:ef:27:3b:de:48:68:cf:51:2f:a0:2d:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40
Validity
Not Before: Jan 1 17:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6b4822f352b83d4fa66593d287cd9a35e2e3b152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b2:ba:20:13:54:30:18:54:96:72:b4:04:0f:
7d:96:24:f3:15:71:74:cf:bf:18:03:87:73:67:17:
28:30:2e:98:b7:33:c9:86:b6:a7:d9:74:48:f9:7b:
c7:94:2d:92:66:b4:22:2b:26:83:7a:7a:f0:f8:29:
64:c6:ff:36:8b:41:f6:d0:27:ff:0a:59:0b:ad:01:
f4:f0:de:1c:d4:e0:ed:35:4f:16:3a:46:a5:79:21:
c1:57:73:61:3e:f4:6f:b3:92:8a:d4:90:3b:61:0a:
fb:b3:fc:67:54:ea:9c:f2:86:e5:8d:25:0a:19:d2:
08:cf:91:e8:9f:1f:b7:57:6b:6b:ba:e5:3d:d0:81:
aa:ba:e7:59:cf:6f:25:96:c8:25:1b:6c:5b:31:35:
0f:0b:3d:79:37:a4:d9:99:3d:fa:cb:d7:aa:00:44:
23:53:40:68:bb:3d:23:c0:ab:d1:42:09:40:a4:56:
5b:20:55:9c:3e:88:0b:0b:35:0f:5f:df:87:e1:cc:
1d:1e:c5:88:63:64:bc:46:49:e2:16:4b:87:ae:78:
54:85:e7:97:69:ef:69:84:66:38:ac:c1:18:41:0e:
9b:4e:36:e7:e4:94:fa:e1:ac:00:15:45:df:8a:6e:
43:e3:eb:5a:e5:b9:a2:d0:19:0b:69:14:db:4b:e7:
58:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:48:22:F3:52:B8:3D:4F:A6:65:93:D2:87:CD:9A:35:E2:E3:B1:52
X509v3 Authority Key Identifier:
keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/a0gi81K4PU-mZZPSh82aNeLjsVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.40.0/22
IPv6:
2a01:5ba0::/32
Signature Algorithm: sha256WithRSAEncryption
26:4b:f5:9e:0a:01:ea:95:c1:a3:4f:ae:2c:ae:84:2e:59:40:
d0:f2:1b:da:f8:ba:39:d3:18:62:57:b3:80:d7:3f:93:0c:17:
c0:91:f2:e8:8d:f8:78:c9:b4:55:9f:bc:00:10:15:db:96:89:
de:c7:6c:13:e9:87:25:8e:7e:1e:5e:9c:cb:af:6b:67:f6:2c:
9f:b2:a4:d0:ab:6a:33:8f:9a:e8:ca:12:d8:7b:7a:eb:6b:ba:
5a:88:fc:f6:5e:31:5e:ff:7a:eb:2f:cd:7e:27:6f:a6:78:78:
14:9e:e4:16:28:d6:fc:07:33:97:f5:16:27:e0:a0:91:e6:16:
96:af:38:44:b6:3a:3d:5b:cb:0e:0d:5a:19:88:14:ac:a2:e7:
09:1a:63:31:c4:1d:8a:0a:0c:7d:4e:5d:1c:71:7f:c5:4d:64:
96:d8:c6:52:67:ee:1f:0d:ba:41:7c:b5:db:76:a3:7b:f7:3d:
35:ef:69:8d:6f:65:8e:e0:18:80:75:84:f7:7a:27:0b:82:5a:
e8:ed:91:db:ab:24:22:b5:1a:d8:6c:d5:1b:0d:1a:b9:43:ed:
0d:6b:ad:34:e0:b3:45:9d:3c:b6:c0:c7:5b:31:16:d2:9b:c5:
ca:72:25:ef:a3:96:78:06:7e:64:6c:df:06:8e:6b:19:13:78:
b6:5d:9e:e0
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQi/DEW7yc73khoz1EvoC1IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiYmYyM2ZmOTg2NzY4MzYyNTQ5NDYyZmUwOTJjNjMxNWVh
Y2NhNDAwHhcNMjUwMTAxMTc0OTAwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjQ4MjJmMzUyYjgzZDRmYTY2NTkzZDI4N2NkOWEzNWUyZTNiMTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLK6IBNUMBhUlnK0BA99liTzFXF0
z78YA4dzZxcoMC6YtzPJhran2XRI+XvHlC2SZrQiKyaDenrw+Clkxv82i0H20Cf/
ClkLrQH08N4c1ODtNU8WOkaleSHBV3NhPvRvs5KK1JA7YQr7s/xnVOqc8obljSUK
GdIIz5Honx+3V2truuU90IGquudZz28llsglG2xbMTUPCz15N6TZmT36y9eqAEQj
U0Bouz0jwKvRQglApFZbIFWcPogLCzUPX9+H4cwdHsWIY2S8RkniFkuHrnhUheeX
ae9phGY4rMEYQQ6bTjbn5JT64awAFUXfim5D4+ta5bmi0BkLaRTbS+dYfQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGtIIvNSuD1PpmWT0ofNmjXi47FSMB8GA1UdIwQY
MBaAFMu/I/+YZ2g2JUlGL+CSxjFerMpAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTc4al81aG5hRFlsU1VZdjRKTEdNVjZzeWtBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8xYTdiZTUtM2NmMi00MGM1LWJhNjct
ODU0MTgyZjA5ZWY1LzEvYTBnaTgxSzRQVS1tWlpQU2g4MmFOZUxqc1ZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy8xYTdiZTUtM2NmMi00MGM1LWJhNjctODU0MTgyZjA5ZWY1
LzEveTc4al81aG5hRFlsU1VZdjRKTEdNVjZzeWtBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTkoMA0E
AgACMAcDBQAqAVugMA0GCSqGSIb3DQEBCwUAA4IBAQAmS/WeCgHqlcGjT64sroQu
WUDQ8hva+Lo50xhiV7OA1z+TDBfAkfLojfh4ybRVn7wAEBXblonex2wT6Ycljn4e
XpzLr2tn9iyfsqTQq2ozj5royhLYe3rra7paiPz2XjFe/3rrL81+J2+meHgUnuQW
KNb8BzOX9RYn4KCR5haWrzhEtjo9W8sODVoZiBSsoucJGmMxxB2KCgx9Tl0ccX/F
TWSW2MZSZ+4fDbpBfLXbdqN79z0172mNb2WO4BiAdYT3eicLglro7ZHbqyQitRrY
bNUbDRq5Q+0Na6004LNFnTy2wMdbMRbSm8XKciXvo5Z4Bn5kbN8GjmsZE3i2XZ7g
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net