Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/05b3d1-116f-4d60-a176-56bbe38f7407/1/Sk4x_HD1LPLgRyf7btPjY4ncmxU.roa
File: Sk4x_HD1LPLgRyf7btPjY4ncmxU.roa (raw, json)
Hash identifier: +rugmwU9Eq5brIUvEJKCQXzHVBLNVvEt2u6gto3U47Q=
Subject key identifier: 4A:4E:31:FC:70:F5:2C:F2:E0:47:27:FB:6E:D3:E3:63:89:DC:9B:15
Certificate issuer: /CN=ff4705a363dc1d8d0ea51c9b9a1ecbd3807bd054
Certificate serial: 019422FB1639CD8998FA1F7BD4CDCF0A9770
Authority key identifier: FF:47:05:A3:63:DC:1D:8D:0E:A5:1C:9B:9A:1E:CB:D3:80:7B:D0:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0cFo2PcHY0OpRybmh7L04B70FQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/05b3d1-116f-4d60-a176-56bbe38f7407/1/Sk4x_HD1LPLgRyf7btPjY4ncmxU.roa
Signing time: Wed 01 Jan 2025 17:47:48 +0000
ROA not before: Wed 01 Jan 2025 17:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207044
IP address blocks: 185.12.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:16:39:cd:89:98:fa:1f:7b:d4:cd:cf:0a:97:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff4705a363dc1d8d0ea51c9b9a1ecbd3807bd054
Validity
Not Before: Jan 1 17:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4a4e31fc70f52cf2e04727fb6ed3e36389dc9b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:23:e0:a9:58:cb:cb:b2:34:78:00:17:37:81:
b0:af:89:d5:61:b9:c3:69:8c:2d:cd:27:bd:1c:d8:
af:87:cb:64:0a:6c:f0:8c:c6:17:a5:17:b2:b6:82:
a4:9e:43:4b:c1:b4:05:c2:bb:54:58:a9:60:06:53:
b0:b8:b8:e8:00:df:d9:44:85:4f:d2:3e:a6:b6:2f:
51:e0:b2:a4:a5:50:61:53:fa:66:e8:1d:f0:dd:67:
8d:fa:ee:7e:45:53:50:c0:bd:e5:75:cb:db:2d:e0:
7a:f3:4f:e0:a7:04:ac:9a:c9:77:de:be:d3:6a:00:
86:e2:77:81:44:2f:47:9e:8b:86:90:6a:93:2f:70:
6a:e7:a9:39:e2:99:04:dc:ed:c5:8c:88:b1:c2:0c:
a4:54:66:f2:2a:7a:bd:4b:fe:df:2c:b0:db:2e:82:
c3:ac:65:11:8f:6f:54:ce:74:f0:f4:35:12:54:56:
72:2a:d3:d6:74:01:dd:e4:4f:40:62:44:97:e9:55:
6e:ad:94:7e:32:95:f3:71:1a:d5:b1:f0:85:e8:02:
e4:85:f4:10:6f:19:a3:a4:4d:53:d1:b3:12:19:bb:
76:88:04:e5:61:ac:ff:00:eb:04:25:a4:86:38:41:
94:57:ee:5f:ab:24:76:0a:15:54:33:18:74:41:bb:
cb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:4E:31:FC:70:F5:2C:F2:E0:47:27:FB:6E:D3:E3:63:89:DC:9B:15
X509v3 Authority Key Identifier:
keyid:FF:47:05:A3:63:DC:1D:8D:0E:A5:1C:9B:9A:1E:CB:D3:80:7B:D0:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0cFo2PcHY0OpRybmh7L04B70FQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/05b3d1-116f-4d60-a176-56bbe38f7407/1/Sk4x_HD1LPLgRyf7btPjY4ncmxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/05b3d1-116f-4d60-a176-56bbe38f7407/1/_0cFo2PcHY0OpRybmh7L04B70FQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.12.157.0/24
Signature Algorithm: sha256WithRSAEncryption
50:33:d1:be:71:a9:c5:92:27:53:8c:fc:8e:29:b8:c1:a2:e2:
f9:db:84:9e:36:50:28:13:09:cc:8b:cd:ce:7d:11:6c:6d:22:
81:d3:2c:70:4b:96:22:a8:42:a5:2a:a5:9d:92:e4:c8:ce:c4:
6b:52:2e:74:e6:87:90:78:3d:ca:4d:1b:46:a5:5b:81:5b:9e:
6b:de:ac:75:e7:77:c5:58:8a:2a:9e:5c:53:a2:da:7c:98:69:
51:7b:86:7d:ab:ba:fa:d7:f6:c5:b2:4b:0f:f7:2a:8b:86:9c:
29:14:52:7c:ee:ea:c5:be:67:29:0c:24:8b:ec:65:df:ab:e1:
3e:bc:ee:d7:c8:c3:ee:6e:3c:db:f7:1b:2e:d9:83:99:2c:bf:
ce:59:50:60:21:4d:e9:0a:e4:93:71:79:3e:f3:d1:2d:9a:be:
79:4d:c0:95:27:df:1c:19:88:13:31:c1:c3:24:91:73:f4:0e:
63:3f:1b:44:d1:e5:e1:c6:7f:7b:d4:04:fd:95:df:36:40:8a:
9a:ad:02:1a:ed:23:49:ea:4e:96:f3:ae:32:55:44:5f:52:92:
bd:53:74:5b:3c:24:19:04:55:10:37:e0:15:10:bb:41:96:a8:
d1:a5:68:d1:56:b2:a0:20:39:04:c0:73:d4:2a:be:9b:8f:c2:
c0:cf:ec:73
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi+xY5zYmY+h971M3PCpdwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmNDcwNWEzNjNkYzFkOGQwZWE1MWM5YjlhMWVjYmQzODA3
YmQwNTQwHhcNMjUwMTAxMTc0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTRlMzFmYzcwZjUyY2YyZTA0NzI3ZmI2ZWQzZTM2Mzg5ZGM5YjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviPgqVjLy7I0eAAXN4Gwr4nVYbnD
aYwtzSe9HNivh8tkCmzwjMYXpReytoKknkNLwbQFwrtUWKlgBlOwuLjoAN/ZRIVP
0j6mti9R4LKkpVBhU/pm6B3w3WeN+u5+RVNQwL3ldcvbLeB680/gpwSsmsl33r7T
agCG4neBRC9HnouGkGqTL3Bq56k54pkE3O3FjIixwgykVGbyKnq9S/7fLLDbLoLD
rGURj29UznTw9DUSVFZyKtPWdAHd5E9AYkSX6VVurZR+MpXzcRrVsfCF6ALkhfQQ
bxmjpE1T0bMSGbt2iATlYaz/AOsEJaSGOEGUV+5fqyR2ChVUMxh0QbvLpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEpOMfxw9Szy4Ecn+27T42OJ3JsVMB8GA1UdIwQY
MBaAFP9HBaNj3B2NDqUcm5oey9OAe9BUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzBjRm8yUGNIWTBPcFJ5Ym1oN0wwNEI3MEZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wNWIzZDEtMTE2Zi00ZDYwLWExNzYt
NTZiYmUzOGY3NDA3LzEvU2s0eF9IRDFMUExnUnlmN2J0UGpZNG5jbXhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8wNWIzZDEtMTE2Zi00ZDYwLWExNzYtNTZiYmUzOGY3NDA3
LzEvXzBjRm8yUGNIWTBPcFJ5Ym1oN0wwNEI3MEZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQydMA0G
CSqGSIb3DQEBCwUAA4IBAQBQM9G+canFkidTjPyOKbjBouL524SeNlAoEwnMi83O
fRFsbSKB0yxwS5YiqEKlKqWdkuTIzsRrUi505oeQeD3KTRtGpVuBW55r3qx153fF
WIoqnlxTotp8mGlRe4Z9q7r61/bFsksP9yqLhpwpFFJ87urFvmcpDCSL7GXfq+E+
vO7XyMPubjzb9xsu2YOZLL/OWVBgIU3pCuSTcXk+89Etmr55TcCVJ98cGYgTMcHD
JJFz9A5jPxtE0eXhxn971AT9ld82QIqarQIa7SNJ6k6W864yVURfUpK9U3RbPCQZ
BFUQN+AVELtBlqjRpWjRVrKgIDkEwHPUKr6bj8LAz+xz
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:33 2025 by rpki-client on console.sobornost.net