Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6cb38c-dd05-4ae8-a8b1-4e97ed4e4ed6/1/o4wNCL530KMA0YJs8iAz7IeQteo.roa
File: o4wNCL530KMA0YJs8iAz7IeQteo.roa (raw, json)
Hash identifier: CcyAmjc7Z+KPkDgKW61aNMPKh1esJ1MkO0axJUX/3rc=
Subject key identifier: A3:8C:0D:08:BE:77:D0:A3:00:D1:82:6C:F2:20:33:EC:87:90:B5:EA
Certificate issuer: /CN=52e678ee9628b935be257cecc3fb2289839d9e5c
Certificate serial: 019426D9E373102C012FDE009AE6FF94255C
Authority key identifier: 52:E6:78:EE:96:28:B9:35:BE:25:7C:EC:C3:FB:22:89:83:9D:9E:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UuZ47pYouTW-JXzsw_siiYOdnlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6cb38c-dd05-4ae8-a8b1-4e97ed4e4ed6/1/o4wNCL530KMA0YJs8iAz7IeQteo.roa
Signing time: Thu 02 Jan 2025 11:50:01 +0000
ROA not before: Thu 02 Jan 2025 11:50:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49163
IP address blocks: 185.119.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:e3:73:10:2c:01:2f:de:00:9a:e6:ff:94:25:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52e678ee9628b935be257cecc3fb2289839d9e5c
Validity
Not Before: Jan 2 11:50:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a38c0d08be77d0a300d1826cf22033ec8790b5ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ba:45:a0:24:78:85:67:72:d8:bb:d5:9c:29:
85:33:77:73:8c:e4:cc:74:f1:d8:ea:4c:84:43:f8:
bf:3f:11:2a:f4:c3:4a:25:87:dd:13:b3:3a:87:f9:
b6:99:d4:e4:5c:39:ac:bd:c9:5d:ac:d3:42:a2:55:
7b:b9:19:f4:22:b9:e8:ec:4d:62:60:7f:28:ea:11:
d7:6e:e3:d0:9d:1c:df:77:66:45:35:22:d8:97:5b:
6e:a9:c1:e2:95:94:fd:c8:59:2e:f9:55:0b:c0:b6:
01:cb:36:81:d4:4e:46:89:d0:b5:40:f4:61:7f:45:
15:a0:92:5a:e3:45:48:7f:55:fa:2b:a6:5f:a3:e6:
28:de:23:27:dc:58:b5:17:c0:4f:bc:4e:2c:08:9e:
d6:61:6d:de:15:90:b7:ef:a4:8a:5f:bc:b7:c4:b3:
90:a6:46:84:30:39:22:4f:aa:07:97:d1:1e:d0:a3:
40:ed:ac:f4:db:7b:42:59:13:67:9b:48:16:b9:47:
96:e4:fc:4a:a7:50:0b:bb:d7:3a:f7:18:5b:0f:59:
6a:1f:25:e4:84:f7:2e:8b:8b:1e:4b:66:71:cd:51:
83:8c:77:b3:4f:43:70:ed:cf:75:da:b7:7e:ad:27:
9a:46:33:c2:8b:e7:14:de:df:90:61:eb:33:ba:f8:
26:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:8C:0D:08:BE:77:D0:A3:00:D1:82:6C:F2:20:33:EC:87:90:B5:EA
X509v3 Authority Key Identifier:
keyid:52:E6:78:EE:96:28:B9:35:BE:25:7C:EC:C3:FB:22:89:83:9D:9E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UuZ47pYouTW-JXzsw_siiYOdnlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6cb38c-dd05-4ae8-a8b1-4e97ed4e4ed6/1/o4wNCL530KMA0YJs8iAz7IeQteo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6cb38c-dd05-4ae8-a8b1-4e97ed4e4ed6/1/UuZ47pYouTW-JXzsw_siiYOdnlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.44.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:28:61:13:6b:0b:e3:8a:f8:0a:1d:c7:d6:22:c5:14:fd:72:
54:86:99:06:33:21:c8:f2:b4:ce:47:90:0d:b7:ef:bf:fd:8f:
6d:df:52:9d:8b:cf:b6:3b:17:38:c9:0c:79:d1:c5:46:5c:cc:
a6:e5:cd:b3:29:f1:45:9f:3d:0c:6c:27:a4:4a:0a:f3:71:cd:
61:df:b4:d2:5a:09:0b:60:0a:bd:a3:40:3e:a9:82:58:0e:ae:
30:f9:c7:34:e7:ab:e8:84:6c:84:6f:4e:80:00:f9:6e:7e:28:
3a:65:5c:8d:7e:1e:4b:62:bb:bf:c0:81:44:20:d2:df:81:2d:
5b:ff:8a:05:d5:ee:ac:8f:be:06:37:27:03:fd:1e:15:d1:8d:
86:f6:40:67:8d:20:9d:dc:f6:28:4b:ad:f2:1e:26:2c:7e:6d:
33:71:05:47:cc:59:77:f4:fb:b3:ad:7a:db:8d:a1:1d:dc:c5:
b1:81:57:26:d3:10:fe:93:33:1a:45:6e:6b:3d:cd:08:ab:de:
a9:b9:2f:3a:8f:9e:89:01:d9:22:26:9c:e4:66:1d:c1:83:54:
df:92:e2:d4:59:db:cd:84:c0:bc:5b:65:e3:3b:b8:c7:83:fd:
87:0c:a9:9e:31:11:69:5e:f5:99:3a:be:c9:db:2a:93:d7:00:
38:02:ab:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2eNzECwBL94Amub/lCVcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyZTY3OGVlOTYyOGI5MzViZTI1N2NlY2MzZmIyMjg5ODM5
ZDllNWMwHhcNMjUwMTAyMTE1MDAxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMzhjMGQwOGJlNzdkMGEzMDBkMTgyNmNmMjIwMzNlYzg3OTBiNWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubpFoCR4hWdy2LvVnCmFM3dzjOTM
dPHY6kyEQ/i/PxEq9MNKJYfdE7M6h/m2mdTkXDmsvcldrNNColV7uRn0Irno7E1i
YH8o6hHXbuPQnRzfd2ZFNSLYl1tuqcHilZT9yFku+VULwLYByzaB1E5GidC1QPRh
f0UVoJJa40VIf1X6K6Zfo+Yo3iMn3Fi1F8BPvE4sCJ7WYW3eFZC376SKX7y3xLOQ
pkaEMDkiT6oHl9Ee0KNA7az023tCWRNnm0gWuUeW5PxKp1ALu9c69xhbD1lqHyXk
hPcui4seS2ZxzVGDjHezT0Nw7c912rd+rSeaRjPCi+cU3t+QYeszuvgmzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKOMDQi+d9CjANGCbPIgM+yHkLXqMB8GA1UdIwQY
MBaAFFLmeO6WKLk1viV87MP7IomDnZ5cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXVaNDdwWW91VFctSlh6c3dfc2lpWU9kbmx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni82Y2IzOGMtZGQwNS00YWU4LWE4YjEt
NGU5N2VkNGU0ZWQ2LzEvbzR3TkNMNTMwS01BMFlKczhpQXo3SWVRdGVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni82Y2IzOGMtZGQwNS00YWU4LWE4YjEtNGU5N2VkNGU0ZWQ2
LzEvVXVaNDdwWW91VFctSlh6c3dfc2lpWU9kbmx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXcsMA0G
CSqGSIb3DQEBCwUAA4IBAQCrKGETawvjivgKHcfWIsUU/XJUhpkGMyHI8rTOR5AN
t++//Y9t31Kdi8+2Oxc4yQx50cVGXMym5c2zKfFFnz0MbCekSgrzcc1h37TSWgkL
YAq9o0A+qYJYDq4w+cc056vohGyEb06AAPlufig6ZVyNfh5LYru/wIFEINLfgS1b
/4oF1e6sj74GNycD/R4V0Y2G9kBnjSCd3PYoS63yHiYsfm0zcQVHzFl39PuzrXrb
jaEd3MWxgVcm0xD+kzMaRW5rPc0Iq96puS86j56JAdkiJpzkZh3Bg1TfkuLUWdvN
hMC8W2XjO7jHg/2HDKmeMRFpXvWZOr7J2yqT1wA4Aqs9
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:24 2025 by rpki-client on console.sobornost.net