Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/52da35-26cb-4fea-bcd8-d3a38c76ad4d/1/mB31WjQtqMTVmm5ONFKs18JD3Uo.roa
File: mB31WjQtqMTVmm5ONFKs18JD3Uo.roa (raw, json)
Hash identifier: Z6mSYjSXOwJwo9Icil5Sl39+R4LrLCDB6tJ0XOF0rak=
Subject key identifier: 98:1D:F5:5A:34:2D:A8:C4:D5:9A:6E:4E:34:52:AC:D7:C2:43:DD:4A
Certificate issuer: /CN=e84cbf6ee0fbcabf79eb74bc6248f396cf0aeae4
Certificate serial: 019422FBF9B4940F54253D20C86C65CAA5F5
Authority key identifier: E8:4C:BF:6E:E0:FB:CA:BF:79:EB:74:BC:62:48:F3:96:CF:0A:EA:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Ey_buD7yr9563S8Ykjzls8K6uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/52da35-26cb-4fea-bcd8-d3a38c76ad4d/1/mB31WjQtqMTVmm5ONFKs18JD3Uo.roa
Signing time: Wed 01 Jan 2025 17:48:46 +0000
ROA not before: Wed 01 Jan 2025 17:48:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202714
IP address blocks: 185.150.4.0/22 maxlen: 22
2a0d:1e40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:f9:b4:94:0f:54:25:3d:20:c8:6c:65:ca:a5:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e84cbf6ee0fbcabf79eb74bc6248f396cf0aeae4
Validity
Not Before: Jan 1 17:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=981df55a342da8c4d59a6e4e3452acd7c243dd4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cb:1f:d6:b9:43:a3:49:1d:bb:8f:ef:9f:da:
71:d4:1c:1d:42:a0:3a:2a:9e:60:a7:d0:a1:bb:d3:
77:da:e4:32:d4:f9:24:8a:8c:78:a8:f5:a3:c8:6d:
73:7b:51:25:9d:03:5b:21:a2:d7:cc:6a:76:87:ce:
ce:0c:48:52:31:27:6c:0b:be:6e:5b:bf:97:0b:52:
f8:b7:17:28:4e:da:e3:5b:b2:fc:aa:b7:f9:a2:a1:
21:07:ce:1b:b1:2f:fe:de:95:56:93:6a:30:c2:ce:
ef:f5:99:5e:c3:95:c7:aa:1d:77:08:73:9c:e9:04:
c9:6f:a3:1a:4f:64:bf:c3:a3:9f:4e:77:4f:41:3f:
8b:40:76:5c:83:ac:6a:ea:ed:9a:17:2c:3c:ae:44:
fd:17:ab:0a:3b:73:08:45:13:b4:aa:84:e3:c3:59:
1c:1d:aa:75:be:89:5d:fe:09:ac:1e:4b:b3:45:4e:
08:65:98:8b:98:4f:c1:ad:70:43:31:82:3a:4e:21:
42:56:47:8b:77:db:87:bd:3e:55:c9:21:f3:81:a0:
da:75:4e:13:a3:b1:ce:9c:e3:3d:28:58:e8:86:04:
67:6a:b0:47:c1:c8:a5:61:fe:28:cc:a4:18:dd:21:
b9:c3:00:aa:a2:4b:5c:a0:62:98:43:8b:18:38:2f:
dc:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1D:F5:5A:34:2D:A8:C4:D5:9A:6E:4E:34:52:AC:D7:C2:43:DD:4A
X509v3 Authority Key Identifier:
keyid:E8:4C:BF:6E:E0:FB:CA:BF:79:EB:74:BC:62:48:F3:96:CF:0A:EA:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Ey_buD7yr9563S8Ykjzls8K6uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/52da35-26cb-4fea-bcd8-d3a38c76ad4d/1/mB31WjQtqMTVmm5ONFKs18JD3Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/52da35-26cb-4fea-bcd8-d3a38c76ad4d/1/6Ey_buD7yr9563S8Ykjzls8K6uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.4.0/22
IPv6:
2a0d:1e40::/29
Signature Algorithm: sha256WithRSAEncryption
96:6f:0f:a8:90:28:5c:ce:b8:08:d6:bb:4c:eb:47:e4:67:e6:
6c:28:e7:ad:7f:82:26:a2:c9:cf:2a:62:bf:df:f7:93:f6:72:
4a:13:7e:ab:80:2b:8c:0d:dd:a1:ba:cc:1d:a0:68:47:91:b5:
4b:89:4f:f0:b7:c9:2f:ce:01:5a:4f:4d:48:05:de:cf:7b:48:
95:bc:94:49:96:ee:57:de:71:29:2e:10:4e:bb:6c:8c:16:f2:
02:d1:16:0c:cc:93:fe:00:be:ca:3e:e8:ba:ba:a0:a2:ac:ee:
b1:8a:9b:bd:b2:56:d4:7b:3f:ff:30:b2:8c:de:56:e2:14:ce:
51:70:66:9d:ab:e5:00:5c:d4:9b:7e:03:d2:24:67:87:51:28:
74:98:1b:0f:c6:3f:4c:e1:25:55:9f:30:53:5b:88:12:be:84:
90:b6:1b:5a:e9:cf:aa:da:4f:ce:2c:e0:fd:0f:bc:29:e4:0d:
75:1b:92:53:90:9b:d7:96:1f:bd:74:18:ed:ad:2d:68:f9:c0:
fb:7b:a8:a3:be:bd:ff:64:2d:f0:61:5e:71:9b:48:19:2f:e3:
a8:ef:25:77:09:a9:49:3a:c1:87:bf:47:60:fe:53:c7:de:02:
29:e9:7d:cb:a0:3c:8b:74:57:84:c1:ca:db:97:ed:41:77:91:
a7:c8:24:e2
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQi+/m0lA9UJT0gyGxlyqX1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4NGNiZjZlZTBmYmNhYmY3OWViNzRiYzYyNDhmMzk2Y2Yw
YWVhZTQwHhcNMjUwMTAxMTc0ODQ2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODFkZjU1YTM0MmRhOGM0ZDU5YTZlNGUzNDUyYWNkN2MyNDNkZDRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcsf1rlDo0kdu4/vn9px1BwdQqA6
Kp5gp9Chu9N32uQy1Pkkiox4qPWjyG1ze1ElnQNbIaLXzGp2h87ODEhSMSdsC75u
W7+XC1L4txcoTtrjW7L8qrf5oqEhB84bsS/+3pVWk2owws7v9Zlew5XHqh13CHOc
6QTJb6MaT2S/w6OfTndPQT+LQHZcg6xq6u2aFyw8rkT9F6sKO3MIRRO0qoTjw1kc
Hap1vold/gmsHkuzRU4IZZiLmE/BrXBDMYI6TiFCVkeLd9uHvT5VySHzgaDadU4T
o7HOnOM9KFjohgRnarBHwcilYf4ozKQY3SG5wwCqoktcoGKYQ4sYOC/cUQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFJgd9Vo0LajE1ZpuTjRSrNfCQ91KMB8GA1UdIwQY
MBaAFOhMv27g+8q/eet0vGJI85bPCurkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNkV5X2J1RDd5cjk1NjNTOFlranpsczhLNnVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC81MmRhMzUtMjZjYi00ZmVhLWJjZDgt
ZDNhMzhjNzZhZDRkLzEvbUIzMVdqUXRxTVRWbW01T05GS3MxOEpEM1VvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC81MmRhMzUtMjZjYi00ZmVhLWJjZDgtZDNhMzhjNzZhZDRk
LzEvNkV5X2J1RDd5cjk1NjNTOFlranpsczhLNnVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZYEMA0E
AgACMAcDBQMqDR5AMA0GCSqGSIb3DQEBCwUAA4IBAQCWbw+okChczrgI1rtM60fk
Z+ZsKOetf4ImosnPKmK/3/eT9nJKE36rgCuMDd2huswdoGhHkbVLiU/wt8kvzgFa
T01IBd7Pe0iVvJRJlu5X3nEpLhBOu2yMFvIC0RYMzJP+AL7KPui6uqCirO6xipu9
slbUez//MLKM3lbiFM5RcGadq+UAXNSbfgPSJGeHUSh0mBsPxj9M4SVVnzBTW4gS
voSQthta6c+q2k/OLOD9D7wp5A11G5JTkJvXlh+9dBjtrS1o+cD7e6ijvr3/ZC3w
YV5xm0gZL+Oo7yV3CalJOsGHv0dg/lPH3gIp6X3LoDyLdFeEwcrbl+1Bd5GnyCTi
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:43 2025 by rpki-client on console.sobornost.net