Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/HaSDza_YVtRITzJIrQ3cs39clVI.roa
File: HaSDza_YVtRITzJIrQ3cs39clVI.roa (raw, json)
Hash identifier: MJ8iuClDZO6N2HHVvtqNHlRWHvmySc+prn9LGP/6I2Y=
Subject key identifier: 1D:A4:83:CD:AF:D8:56:D4:48:4F:32:48:AD:0D:DC:B3:7F:5C:95:52
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019482DAD2FDD29CFC0154FC7FE2B05498B4
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/HaSDza_YVtRITzJIrQ3cs39clVI.roa
Signing time: Mon 20 Jan 2025 08:36:06 +0000
ROA not before: Mon 20 Jan 2025 08:36:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8245
IP address blocks: 194.48.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:82:da:d2:fd:d2:9c:fc:01:54:fc:7f:e2:b0:54:98:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Jan 20 08:36:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1da483cdafd856d4484f3248ad0ddcb37f5c9552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:3b:c2:e4:e2:31:78:72:be:1d:9b:9b:ad:
20:ff:23:7c:b9:d2:17:64:16:c6:b6:4b:44:08:19:
3f:23:9d:7f:d9:cc:9c:ad:20:15:5e:25:30:d5:e9:
0c:b0:62:10:b6:a9:64:0f:d3:6b:88:8f:df:73:3b:
78:a0:d9:52:e8:af:f5:d0:9f:02:9d:12:c7:40:0e:
49:04:88:fc:8c:d8:2d:a6:9f:31:b3:f6:ca:11:44:
f9:5a:fb:6d:f9:60:5a:cb:72:d8:11:7e:53:67:84:
ff:bf:c2:67:30:10:b3:78:c7:5e:4a:3c:18:3b:df:
5d:f4:0d:4a:e1:c4:78:74:fb:19:1f:02:00:19:a6:
e4:dd:ab:00:42:96:12:dc:65:36:7a:a2:a1:d4:ef:
80:c7:e9:f8:6b:ee:03:28:6c:a7:13:a1:1b:ff:ed:
b4:21:17:ea:e0:c2:1f:61:19:cf:4e:5e:9c:99:55:
3a:87:20:a1:51:2d:f4:f2:3b:31:a3:d0:f0:a3:2e:
09:e4:e8:06:8f:7d:70:d9:f1:0b:67:a7:a6:81:af:
20:b5:80:0a:a1:ae:9d:ad:82:a4:91:6a:2b:76:25:
ed:14:24:13:49:37:e8:fe:95:4f:0e:d8:ef:33:3e:
e5:56:90:de:53:75:c6:b3:ff:7b:8f:73:1f:01:03:
29:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A4:83:CD:AF:D8:56:D4:48:4F:32:48:AD:0D:DC:B3:7F:5C:95:52
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/HaSDza_YVtRITzJIrQ3cs39clVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.184.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:d3:3e:b5:c2:50:75:0a:c8:10:c7:12:fd:2a:e4:f7:50:bc:
f5:71:58:42:db:1a:d4:ba:f9:52:af:8e:e0:5b:8e:82:e1:66:
a4:21:33:64:2c:62:10:5d:f0:da:b3:d4:60:4c:06:d8:95:cf:
b1:99:c7:1f:ea:ee:69:d9:5c:ea:3f:e4:d8:1e:85:e9:a3:0a:
15:91:b4:3a:87:6d:39:43:31:23:2c:cd:82:4c:72:44:89:88:
69:44:8c:b6:fd:c4:31:9d:96:2e:c1:71:e7:eb:44:71:de:2e:
ad:f8:2c:3b:2e:4e:41:40:42:34:e7:4c:c8:04:a0:d2:43:d6:
93:da:99:92:0a:f8:6f:e6:c1:89:b2:9a:a0:16:b0:f4:3c:86:
48:70:c8:0c:8d:9c:a0:e4:65:d5:1b:fb:f1:62:98:29:9e:b5:
44:b7:05:3e:ef:39:8a:64:23:29:e3:7c:c3:09:53:74:10:9e:
95:76:0e:a2:d3:69:e4:f6:af:f3:62:88:fe:cd:20:1a:86:e0:
63:36:c5:4a:83:17:20:e3:25:a4:d8:c0:99:c4:1c:45:89:c7:
4c:5e:8d:d3:79:19:d0:ff:da:f9:b6:5a:1e:d7:41:4e:d4:9f:
da:d0:4c:5f:2f:c8:17:76:a6:df:7a:9b:35:35:e2:7a:71:12:
9c:3e:86:47
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZSC2tL90pz8AVT8f+KwVJi0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxOGRiMjg4MjNmMzcwOGIyNTVhYTEyNGJhNmVmNzQxZDEx
M2VhZjMwHhcNMjUwMTIwMDgzNjA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGE0ODNjZGFmZDg1NmQ0NDg0ZjMyNDhhZDBkZGNiMzdmNWM5NTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApS87wuTiMXhyvh2bm60g/yN8udIX
ZBbGtktECBk/I51/2cycrSAVXiUw1ekMsGIQtqlkD9NriI/fczt4oNlS6K/10J8C
nRLHQA5JBIj8jNgtpp8xs/bKEUT5Wvtt+WBay3LYEX5TZ4T/v8JnMBCzeMdeSjwY
O99d9A1K4cR4dPsZHwIAGabk3asAQpYS3GU2eqKh1O+Ax+n4a+4DKGynE6Eb/+20
IRfq4MIfYRnPTl6cmVU6hyChUS308jsxo9Dwoy4J5OgGj31w2fELZ6emga8gtYAK
oa6drYKkkWordiXtFCQTSTfo/pVPDtjvMz7lVpDeU3XGs/97j3MfAQMpVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB2kg82v2FbUSE8ySK0N3LN/XJVSMB8GA1UdIwQY
MBaAFCGNsogj83CLJVqhJLpu90HRE+rzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQt
NzlkYzNkMGJiZWQ4LzEvSGFTRHphX1lWdFJJVHpKSXJRM2NzMzljbFZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS83NTIxMWUtMzYxOS00MjVmLWJhYmQtNzlkYzNkMGJiZWQ4
LzEvSVkyeWlDUHpjSXNsV3FFa3VtNzNRZEVUNnZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwjC4MA0G
CSqGSIb3DQEBCwUAA4IBAQCp0z61wlB1CsgQxxL9KuT3ULz1cVhC2xrUuvlSr47g
W46C4WakITNkLGIQXfDas9RgTAbYlc+xmccf6u5p2VzqP+TYHoXpowoVkbQ6h205
QzEjLM2CTHJEiYhpRIy2/cQxnZYuwXHn60Rx3i6t+Cw7Lk5BQEI050zIBKDSQ9aT
2pmSCvhv5sGJspqgFrD0PIZIcMgMjZyg5GXVG/vxYpgpnrVEtwU+7zmKZCMp43zD
CVN0EJ6Vdg6i02nk9q/zYoj+zSAahuBjNsVKgxcg4yWk2MCZxBxFicdMXo3TeRnQ
/9r5tloe10FO1J/a0ExfL8gXdqbfeps1NeJ6cRKcPoZH
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:54 2025 by rpki-client on console.sobornost.net