Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/5ca48b-c966-4e63-868d-a85c1b2ec1ce/1/dJRAHiOGAXHi9ZK3B82VqToDqnk.roa
File: dJRAHiOGAXHi9ZK3B82VqToDqnk.roa (raw, json)
Hash identifier: uJbxE7UmTFUvOg3MJeibMc8I9N/6ZLAzoiFFQ1kOB8U=
Subject key identifier: 74:94:40:1E:23:86:01:71:E2:F5:92:B7:07:CD:95:A9:3A:03:AA:79
Certificate issuer: /CN=a81558853febc79d813eb2c0ce5cb736fb73c0df
Certificate serial: 019424B3CEBF54CFB61DD1BECA0C7375C5C2
Authority key identifier: A8:15:58:85:3F:EB:C7:9D:81:3E:B2:C0:CE:5C:B7:36:FB:73:C0:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBVYhT_rx52BPrLAzly3NvtzwN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/5ca48b-c966-4e63-868d-a85c1b2ec1ce/1/dJRAHiOGAXHi9ZK3B82VqToDqnk.roa
Signing time: Thu 02 Jan 2025 01:49:11 +0000
ROA not before: Thu 02 Jan 2025 01:49:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200534
IP address blocks: 185.221.108.0/23 maxlen: 23
185.221.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ce:bf:54:cf:b6:1d:d1:be:ca:0c:73:75:c5:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a81558853febc79d813eb2c0ce5cb736fb73c0df
Validity
Not Before: Jan 2 01:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7494401e23860171e2f592b707cd95a93a03aa79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5f:e3:ea:6c:15:af:88:d3:e3:79:8d:65:55:
7e:4c:a3:d8:77:bb:0f:2b:49:33:e0:bb:07:e4:33:
17:85:d1:05:70:3b:04:db:0e:2b:c8:7a:68:b6:22:
3f:e6:8d:ba:55:46:aa:2e:3d:ec:3a:e3:0a:1b:9d:
a2:5b:e9:98:14:35:c5:d3:4b:e8:9e:e2:23:28:79:
23:7b:db:34:59:5b:c1:f0:c7:f0:06:1d:d0:5b:a9:
5b:44:85:fd:1f:0b:8b:da:05:5b:23:3c:79:7a:19:
7c:ad:16:95:58:77:99:36:2a:3c:01:be:1f:6e:2d:
31:7e:28:1d:ff:f8:29:cb:ea:c8:9f:c5:98:7d:59:
d2:3a:e5:14:b7:98:7b:00:3f:b6:f1:73:ca:f7:b1:
ac:56:e0:c0:b7:c0:89:e3:53:ff:b4:1d:94:35:e9:
30:ca:ea:4d:fb:12:c7:e1:ca:ce:24:e1:b4:0c:2c:
0d:8f:b7:d3:13:9a:a1:27:17:31:94:b8:05:6c:71:
12:f7:46:61:5d:5d:ae:cd:8f:49:62:cd:e8:88:0c:
e6:50:74:b4:08:ab:e9:af:9c:72:f0:cc:58:86:fe:
01:5a:d3:ee:01:47:cd:8d:65:9c:25:68:d5:63:1a:
e3:ac:f9:f0:72:7a:60:e1:d9:5d:a0:31:d6:57:66:
43:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:94:40:1E:23:86:01:71:E2:F5:92:B7:07:CD:95:A9:3A:03:AA:79
X509v3 Authority Key Identifier:
keyid:A8:15:58:85:3F:EB:C7:9D:81:3E:B2:C0:CE:5C:B7:36:FB:73:C0:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBVYhT_rx52BPrLAzly3NvtzwN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/5ca48b-c966-4e63-868d-a85c1b2ec1ce/1/dJRAHiOGAXHi9ZK3B82VqToDqnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/5ca48b-c966-4e63-868d-a85c1b2ec1ce/1/qBVYhT_rx52BPrLAzly3NvtzwN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.108.0/23
185.221.111.0/24
Signature Algorithm: sha256WithRSAEncryption
92:78:19:b4:a6:0a:86:27:bb:16:72:fe:d4:d1:7c:24:7a:06:
b0:5f:e6:3e:56:e7:ac:73:9e:66:eb:69:71:d4:1d:72:c2:e8:
c2:a7:f6:28:93:9a:22:76:28:c4:cf:48:c1:2e:4d:4b:7b:85:
1e:53:68:a2:5f:0c:d3:d9:c4:f0:36:b8:3f:82:04:bf:e9:67:
a8:0a:79:70:99:67:35:88:d1:98:6e:08:8f:5c:bc:71:b5:1e:
e4:4a:a5:f1:65:6c:15:9e:de:69:8c:d0:e1:7b:d8:6e:c3:52:
ad:28:1a:da:d0:3e:98:ac:e5:8d:4a:bb:5d:fd:53:88:4b:61:
fd:2d:9a:24:fe:fc:8a:c9:a2:b8:b9:87:7b:37:ed:2c:c6:53:
10:1c:cf:99:15:c3:37:33:31:dd:70:c1:3b:56:7b:9b:ac:ac:
9f:4e:e7:b0:b2:4c:b6:91:ca:5b:1a:22:2a:42:3a:4e:85:1d:
57:82:fa:30:2c:6a:e6:5b:5b:d2:35:16:75:32:b9:4d:2a:c9:
ef:de:fd:29:61:13:a3:2e:4a:9a:56:ab:eb:e5:e1:03:71:34:
89:4c:9f:90:59:d5:70:48:67:70:ad:63:41:ba:1d:11:45:25:
62:d6:35:77:27:d3:7c:5a:83:7d:50:ea:25:31:3f:52:08:7b:
60:e2:0c:16
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQks86/VM+2HdG+ygxzdcXCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4MTU1ODg1M2ZlYmM3OWQ4MTNlYjJjMGNlNWNiNzM2ZmI3
M2MwZGYwHhcNMjUwMTAyMDE0OTExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDk0NDAxZTIzODYwMTcxZTJmNTkyYjcwN2NkOTVhOTNhMDNhYTc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArl/j6mwVr4jT43mNZVV+TKPYd7sP
K0kz4LsH5DMXhdEFcDsE2w4ryHpotiI/5o26VUaqLj3sOuMKG52iW+mYFDXF00vo
nuIjKHkje9s0WVvB8MfwBh3QW6lbRIX9HwuL2gVbIzx5ehl8rRaVWHeZNio8Ab4f
bi0xfigd//gpy+rIn8WYfVnSOuUUt5h7AD+28XPK97GsVuDAt8CJ41P/tB2UNekw
yupN+xLH4crOJOG0DCwNj7fTE5qhJxcxlLgFbHES90ZhXV2uzY9JYs3oiAzmUHS0
CKvpr5xy8MxYhv4BWtPuAUfNjWWcJWjVYxrjrPnwcnpg4dldoDHWV2ZD1QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFHSUQB4jhgFx4vWStwfNlak6A6p5MB8GA1UdIwQY
MBaAFKgVWIU/68edgT6ywM5ctzb7c8DfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUJWWWhUX3J4NTJCUHJMQXpseTNOdnR6d044LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS81Y2E0OGItYzk2Ni00ZTYzLTg2OGQt
YTg1YzFiMmVjMWNlLzEvZEpSQUhpT0dBWEhpOVpLM0I4MlZxVG9EcW5rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS81Y2E0OGItYzk2Ni00ZTYzLTg2OGQtYTg1YzFiMmVjMWNl
LzEvcUJWWWhUX3J4NTJCUHJMQXpseTNOdnR6d044LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBud1sAwQA
ud1vMA0GCSqGSIb3DQEBCwUAA4IBAQCSeBm0pgqGJ7sWcv7U0XwkegawX+Y+Vues
c55m62lx1B1ywujCp/Yok5oidijEz0jBLk1Le4UeU2iiXwzT2cTwNrg/ggS/6Weo
CnlwmWc1iNGYbgiPXLxxtR7kSqXxZWwVnt5pjNDhe9huw1KtKBra0D6YrOWNSrtd
/VOIS2H9LZok/vyKyaK4uYd7N+0sxlMQHM+ZFcM3MzHdcME7VnubrKyfTuewsky2
kcpbGiIqQjpOhR1XgvowLGrmW1vSNRZ1MrlNKsnv3v0pYROjLkqaVqvr5eEDcTSJ
TJ+QWdVwSGdwrWNBuh0RRSVi1jV3J9N8WoN9UOolMT9SCHtg4gwW
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:06 2025 by rpki-client on console.sobornost.net