Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/9cbe88-3e75-42ef-b871-5ee76f0f64e2/1/UsxT3pcVojJYP9Cu4db5XHBOA_A.roa
File: UsxT3pcVojJYP9Cu4db5XHBOA_A.roa (raw, json)
Hash identifier: IuC4o8xqUNTxh+TkbcEBFveFUP/SyyaXqWJ5U0z84Vw=
Subject key identifier: 52:CC:53:DE:97:15:A2:32:58:3F:D0:AE:E1:D6:F9:5C:70:4E:03:F0
Certificate issuer: /CN=2283711bd7ab13da3d11f25bb57a4f483c1f99ac
Certificate serial: 019421B1BD47B49CA050A74732A087BEF7DE
Authority key identifier: 22:83:71:1B:D7:AB:13:DA:3D:11:F2:5B:B5:7A:4F:48:3C:1F:99:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IoNxG9erE9o9EfJbtXpPSDwfmaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/9cbe88-3e75-42ef-b871-5ee76f0f64e2/1/UsxT3pcVojJYP9Cu4db5XHBOA_A.roa
Signing time: Wed 01 Jan 2025 11:48:03 +0000
ROA not before: Wed 01 Jan 2025 11:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47947
IP address blocks: 185.139.244.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:bd:47:b4:9c:a0:50:a7:47:32:a0:87:be:f7:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2283711bd7ab13da3d11f25bb57a4f483c1f99ac
Validity
Not Before: Jan 1 11:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=52cc53de9715a232583fd0aee1d6f95c704e03f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bd:be:a0:8c:b3:d8:00:5e:61:02:f2:39:f5:
17:28:68:9e:26:97:87:b0:77:c1:f1:9b:d9:a8:56:
2f:33:47:1e:29:fa:c4:7a:35:52:dc:62:1c:35:96:
35:34:48:43:85:84:83:47:a5:e6:1e:ff:08:e3:ac:
09:b1:ea:46:f8:bc:28:ff:e3:39:3f:bd:d7:75:9b:
ce:2c:bd:bb:84:1d:93:d1:99:85:40:26:f1:12:b7:
4f:33:13:2f:19:c0:f6:6f:eb:51:b2:38:26:6a:bb:
0f:6d:ad:53:16:01:b3:87:4b:67:26:b0:dc:ba:ed:
f7:38:0f:c0:0c:cc:3c:d7:c6:4c:3d:46:1b:c2:12:
f6:4c:4d:e6:20:3e:49:0a:05:f8:81:12:80:0d:4b:
8b:37:45:d5:5d:c7:2a:90:23:47:44:ea:a3:25:e9:
97:bd:b9:8c:46:df:54:2d:0d:97:dc:8a:ff:c9:b2:
fb:7e:b9:6e:68:4c:ba:9b:c1:e7:77:30:8d:c8:c2:
15:43:52:76:09:d7:8d:10:7f:32:00:2a:58:6a:7f:
e5:45:df:fd:86:6f:4f:64:1f:33:a6:40:fe:24:4c:
49:99:ca:11:af:6a:f3:ee:09:cf:50:ec:2e:e2:c1:
61:2d:48:5b:6b:c8:80:5c:0e:c5:51:8a:73:94:eb:
2d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:CC:53:DE:97:15:A2:32:58:3F:D0:AE:E1:D6:F9:5C:70:4E:03:F0
X509v3 Authority Key Identifier:
keyid:22:83:71:1B:D7:AB:13:DA:3D:11:F2:5B:B5:7A:4F:48:3C:1F:99:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IoNxG9erE9o9EfJbtXpPSDwfmaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/9cbe88-3e75-42ef-b871-5ee76f0f64e2/1/UsxT3pcVojJYP9Cu4db5XHBOA_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/9cbe88-3e75-42ef-b871-5ee76f0f64e2/1/IoNxG9erE9o9EfJbtXpPSDwfmaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.244.0/22
Signature Algorithm: sha256WithRSAEncryption
23:70:95:53:a7:68:a1:09:92:23:82:ae:f5:f0:b0:29:b8:01:
7b:26:64:5f:fc:57:42:d1:0b:cc:51:28:14:1f:67:8b:ef:76:
54:e4:06:1e:5b:75:27:2e:fb:7f:64:40:75:d0:f4:05:8c:76:
7f:ca:59:1f:25:f1:08:ce:1e:c1:e4:73:45:69:c7:a7:06:0c:
28:87:b6:cb:11:a2:7e:b8:01:7a:3e:85:0d:48:35:ff:f0:ad:
a6:18:be:a4:69:50:29:0d:9d:ab:45:6f:3d:37:85:fb:34:9b:
30:f2:6b:12:2a:04:52:30:89:41:bc:38:df:8f:2e:7e:d2:88:
f2:e1:a3:3b:64:cc:84:4b:03:3b:03:2a:1b:e1:80:8e:2e:60:
8d:31:cd:7d:94:47:00:d4:90:1c:74:6c:2c:e8:c7:ef:b4:8e:
94:dc:9d:bc:77:b7:8e:38:93:64:58:43:9d:7f:d7:cc:52:77:
fb:46:99:e0:8e:30:73:ca:03:be:e6:2f:95:59:b6:3f:e8:51:
cf:31:26:2f:ad:ad:a9:80:20:49:09:fe:ec:3d:74:db:46:b5:
8d:2e:3d:38:1f:f6:8a:31:10:72:36:19:29:e0:bb:77:7b:99:
d1:e3:e9:e6:a4:9d:a6:40:4b:e8:0a:8a:a9:d3:4a:fc:ed:d9:
85:3a:54:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhsb1HtJygUKdHMqCHvvfeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyODM3MTFiZDdhYjEzZGEzZDExZjI1YmI1N2E0ZjQ4M2Mx
Zjk5YWMwHhcNMjUwMTAxMTE0ODAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmNjNTNkZTk3MTVhMjMyNTgzZmQwYWVlMWQ2Zjk1YzcwNGUwM2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0r2+oIyz2ABeYQLyOfUXKGieJpeH
sHfB8ZvZqFYvM0ceKfrEejVS3GIcNZY1NEhDhYSDR6XmHv8I46wJsepG+Lwo/+M5
P73XdZvOLL27hB2T0ZmFQCbxErdPMxMvGcD2b+tRsjgmarsPba1TFgGzh0tnJrDc
uu33OA/ADMw818ZMPUYbwhL2TE3mID5JCgX4gRKADUuLN0XVXccqkCNHROqjJemX
vbmMRt9ULQ2X3Ir/ybL7frluaEy6m8HndzCNyMIVQ1J2CdeNEH8yACpYan/lRd/9
hm9PZB8zpkD+JExJmcoRr2rz7gnPUOwu4sFhLUhba8iAXA7FUYpzlOstzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFLMU96XFaIyWD/QruHW+VxwTgPwMB8GA1UdIwQY
MBaAFCKDcRvXqxPaPRHyW7V6T0g8H5msMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSW9OeEc5ZXJFOW85RWZKYnRYcFBTRHdmbWF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS85Y2JlODgtM2U3NS00MmVmLWI4NzEt
NWVlNzZmMGY2NGUyLzEvVXN4VDNwY1ZvakpZUDlDdTRkYjVYSEJPQV9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS85Y2JlODgtM2U3NS00MmVmLWI4NzEtNWVlNzZmMGY2NGUy
LzEvSW9OeEc5ZXJFOW85RWZKYnRYcFBTRHdmbWF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYv0MA0G
CSqGSIb3DQEBCwUAA4IBAQAjcJVTp2ihCZIjgq718LApuAF7JmRf/FdC0QvMUSgU
H2eL73ZU5AYeW3UnLvt/ZEB10PQFjHZ/ylkfJfEIzh7B5HNFacenBgwoh7bLEaJ+
uAF6PoUNSDX/8K2mGL6kaVApDZ2rRW89N4X7NJsw8msSKgRSMIlBvDjfjy5+0ojy
4aM7ZMyESwM7Ayob4YCOLmCNMc19lEcA1JAcdGws6MfvtI6U3J28d7eOOJNkWEOd
f9fMUnf7RpngjjBzygO+5i+VWbY/6FHPMSYvra2pgCBJCf7sPXTbRrWNLj04H/aK
MRByNhkp4Lt3e5nR4+nmpJ2mQEvoCoqp00r87dmFOlSE
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:21 2025 by rpki-client on console.sobornost.net