Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/ce5ca6-f939-4fd7-b9f8-0a1ef0ec0578/1/RcUSQ0Z3GKFYWJ4WRE1UedcK5Aw.roa
File: RcUSQ0Z3GKFYWJ4WRE1UedcK5Aw.roa (raw, json)
Hash identifier: hdoD+wycfWRw3rbXWOc6rZDgH+1OEob47XUZHRAtJR0=
Subject key identifier: 45:C5:12:43:46:77:18:A1:58:58:9E:16:44:4D:54:79:D7:0A:E4:0C
Certificate issuer: /CN=e6688ae96323c1fcfab54b294557397b49b03bc7
Certificate serial: 019425FD07EB097DF76175BD6BF9B7146964
Authority key identifier: E6:68:8A:E9:63:23:C1:FC:FA:B5:4B:29:45:57:39:7B:49:B0:3B:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5miK6WMjwfz6tUspRVc5e0mwO8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/ce5ca6-f939-4fd7-b9f8-0a1ef0ec0578/1/RcUSQ0Z3GKFYWJ4WRE1UedcK5Aw.roa
Signing time: Thu 02 Jan 2025 07:48:47 +0000
ROA not before: Thu 02 Jan 2025 07:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57468
IP address blocks: 185.146.40.0/22 maxlen: 22
185.146.40.0/24 maxlen: 24
185.146.43.0/24 maxlen: 24
2a07:4d40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:07:eb:09:7d:f7:61:75:bd:6b:f9:b7:14:69:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6688ae96323c1fcfab54b294557397b49b03bc7
Validity
Not Before: Jan 2 07:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=45c51243467718a158589e16444d5479d70ae40c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ec:11:b9:68:e4:2a:b8:5f:ad:a0:3a:d8:a9:
37:09:52:15:3b:7b:82:01:fa:37:c4:99:e5:e3:a1:
5a:3d:35:9a:aa:74:56:a9:7e:1a:40:f4:2d:63:95:
0e:a5:3f:0d:6b:82:d2:32:3c:75:cf:fb:8b:6c:a4:
00:91:39:c0:4b:aa:64:ff:01:e6:42:24:dc:f2:14:
2b:81:94:9b:b6:b9:2c:a2:5a:35:4e:3b:0a:35:06:
c2:e6:08:fb:33:a7:9d:e2:e1:4e:b8:c6:4f:0f:31:
be:da:69:48:9c:f3:5a:8d:b7:ad:51:94:9c:40:01:
72:25:23:c2:75:52:d6:f4:c0:26:6a:83:ae:6e:bf:
c3:a2:11:26:c2:34:1c:af:1b:15:b6:de:a1:02:1d:
f5:85:05:60:ac:85:ae:e2:ee:77:a5:98:54:b0:0a:
cb:c7:67:88:7b:bb:f2:f1:cf:aa:ba:75:9c:8c:52:
25:1c:e7:94:84:8b:f6:8a:c6:80:30:90:28:21:86:
24:48:0b:87:e2:c3:9b:43:10:e0:df:d4:18:9e:e7:
bc:74:50:a3:f3:be:88:3e:ec:38:11:6d:91:0c:84:
eb:d3:b8:ad:a6:ea:a8:f5:19:ad:3f:4b:12:76:48:
65:3c:b5:13:06:7d:22:70:57:a0:49:7b:cd:e8:b7:
03:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:C5:12:43:46:77:18:A1:58:58:9E:16:44:4D:54:79:D7:0A:E4:0C
X509v3 Authority Key Identifier:
keyid:E6:68:8A:E9:63:23:C1:FC:FA:B5:4B:29:45:57:39:7B:49:B0:3B:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5miK6WMjwfz6tUspRVc5e0mwO8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ce5ca6-f939-4fd7-b9f8-0a1ef0ec0578/1/RcUSQ0Z3GKFYWJ4WRE1UedcK5Aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ce5ca6-f939-4fd7-b9f8-0a1ef0ec0578/1/5miK6WMjwfz6tUspRVc5e0mwO8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.40.0/22
IPv6:
2a07:4d40::/29
Signature Algorithm: sha256WithRSAEncryption
1d:75:65:a1:58:a7:09:ab:ed:53:80:90:f5:8b:4f:04:8f:31:
7b:bd:b2:2f:14:d3:7b:ab:f6:ea:3d:a1:cf:6c:f7:4a:58:23:
65:54:c4:66:12:4d:1c:32:38:00:99:c3:83:3d:a6:fc:1c:bf:
7b:74:48:77:bd:44:8e:e1:03:70:a0:ba:b5:8b:f5:34:d9:09:
5d:a9:ca:3a:4b:6a:cf:9b:7a:96:e1:d9:5c:08:0a:a4:67:16:
61:bf:c8:b0:51:c7:d7:0e:4c:b1:de:da:07:e9:75:34:68:bc:
25:44:2b:ca:23:6e:51:11:8c:20:1b:02:f2:5c:f7:c3:49:15:
ef:c6:50:88:6e:c3:bb:a7:8d:5d:8e:55:8d:c2:52:95:e6:5d:
b7:63:4a:ea:20:71:94:f9:77:f3:f9:92:f9:56:18:4e:97:15:
5c:af:f9:7d:61:9a:9a:6f:0a:c8:9b:46:49:0c:45:d2:ef:08:
79:5c:8e:19:2d:da:ae:e2:1d:31:75:d2:45:da:00:0a:79:14:
40:d5:1d:3a:4d:80:d6:7d:b5:5e:e3:e4:35:b0:01:89:1b:d7:
a3:c0:50:8d:95:bc:78:dd:c8:ac:59:d6:50:6f:76:c2:50:7d:
60:cc:4a:0a:0f:75:49:21:30:67:38:10:b7:f4:83:61:35:f5:
ed:95:9c:55
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQl/QfrCX33YXW9a/m3FGlkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2Njg4YWU5NjMyM2MxZmNmYWI1NGIyOTQ1NTczOTdiNDli
MDNiYzcwHhcNMjUwMTAyMDc0ODQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NWM1MTI0MzQ2NzcxOGExNTg1ODllMTY0NDRkNTQ3OWQ3MGFlNDBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+wRuWjkKrhfraA62Kk3CVIVO3uC
Afo3xJnl46FaPTWaqnRWqX4aQPQtY5UOpT8Na4LSMjx1z/uLbKQAkTnAS6pk/wHm
QiTc8hQrgZSbtrksolo1TjsKNQbC5gj7M6ed4uFOuMZPDzG+2mlInPNajbetUZSc
QAFyJSPCdVLW9MAmaoOubr/DohEmwjQcrxsVtt6hAh31hQVgrIWu4u53pZhUsArL
x2eIe7vy8c+qunWcjFIlHOeUhIv2isaAMJAoIYYkSAuH4sObQxDg39QYnue8dFCj
876IPuw4EW2RDITr07itpuqo9RmtP0sSdkhlPLUTBn0icFegSXvN6LcDjQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEXFEkNGdxihWFieFkRNVHnXCuQMMB8GA1UdIwQY
MBaAFOZoiuljI8H8+rVLKUVXOXtJsDvHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNW1pSzZXTWp3Zno2dFVzcFJWYzVlMG13TzhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9jZTVjYTYtZjkzOS00ZmQ3LWI5Zjgt
MGExZWYwZWMwNTc4LzEvUmNVU1EwWjNHS0ZZV0o0V1JFMVVlZGNLNUF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9jZTVjYTYtZjkzOS00ZmQ3LWI5ZjgtMGExZWYwZWMwNTc4
LzEvNW1pSzZXTWp3Zno2dFVzcFJWYzVlMG13TzhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZIoMA0E
AgACMAcDBQMqB01AMA0GCSqGSIb3DQEBCwUAA4IBAQAddWWhWKcJq+1TgJD1i08E
jzF7vbIvFNN7q/bqPaHPbPdKWCNlVMRmEk0cMjgAmcODPab8HL97dEh3vUSO4QNw
oLq1i/U02Qldqco6S2rPm3qW4dlcCAqkZxZhv8iwUcfXDkyx3toH6XU0aLwlRCvK
I25REYwgGwLyXPfDSRXvxlCIbsO7p41djlWNwlKV5l23Y0rqIHGU+Xfz+ZL5VhhO
lxVcr/l9YZqabwrIm0ZJDEXS7wh5XI4ZLdqu4h0xddJF2gAKeRRA1R06TYDWfbVe
4+Q1sAGJG9ejwFCNlbx43cisWdZQb3bCUH1gzEoKD3VJITBnOBC39INhNfXtlZxV
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:32 2025 by rpki-client on console.sobornost.net