Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/8uKSKM8TVx970yK_aHmjajWuHlo.roa
File: 8uKSKM8TVx970yK_aHmjajWuHlo.roa (raw, json)
Hash identifier: Kv8ysTx9zq+WIfK6VNPlttN4b3mr4mqd5LylYbnznig=
Subject key identifier: F2:E2:92:28:CF:13:57:1F:7B:D3:22:BF:68:79:A3:6A:35:AE:1E:5A
Certificate issuer: /CN=380099a81b346f9abcaf26056f5b77094d1cf113
Certificate serial: 019426D9A04875B754894E441DD0A2CC3C74
Authority key identifier: 38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/8uKSKM8TVx970yK_aHmjajWuHlo.roa
Signing time: Thu 02 Jan 2025 11:49:44 +0000
ROA not before: Thu 02 Jan 2025 11:49:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60484
IP address blocks: 185.159.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:a0:48:75:b7:54:89:4e:44:1d:d0:a2:cc:3c:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380099a81b346f9abcaf26056f5b77094d1cf113
Validity
Not Before: Jan 2 11:49:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f2e29228cf13571f7bd322bf6879a36a35ae1e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:51:28:66:a0:68:ca:3d:79:05:39:4d:0b:d0:
52:67:9f:5d:98:e3:63:9d:31:d1:58:48:9b:20:77:
d1:7d:87:f8:99:25:8a:90:e6:60:97:10:41:72:05:
3f:03:7c:08:29:2a:da:5f:c0:0f:d0:49:7f:bb:ff:
65:01:01:53:61:24:b9:e8:04:db:86:81:bc:21:5a:
99:d1:c4:27:7d:aa:09:b1:0c:4e:13:3f:71:2b:34:
e8:1a:f4:e8:7b:e9:47:12:3b:96:2f:92:80:57:d6:
88:eb:a9:a2:4c:0c:21:dc:af:bd:07:66:d0:5d:32:
f6:26:cd:72:a4:64:65:22:b7:d5:15:8d:76:f8:a8:
e3:1c:a1:d9:aa:77:20:53:a5:35:aa:3f:0d:5d:2e:
24:bf:e8:21:df:be:24:33:bb:bc:da:2f:c7:16:54:
b8:85:59:7b:04:34:32:14:37:e6:e5:f5:4f:d2:d3:
b1:49:cf:be:21:30:76:47:5a:3b:7f:98:fa:3a:10:
5c:e9:f6:26:60:37:40:a5:01:3e:ab:fb:cb:51:cb:
12:93:c6:4e:56:79:6e:c2:ec:7f:ba:b7:c5:c6:1a:
36:72:55:96:cd:38:21:31:9a:28:87:a5:89:eb:87:
3f:61:a2:62:de:46:2d:85:93:cf:62:64:02:18:a3:
0e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E2:92:28:CF:13:57:1F:7B:D3:22:BF:68:79:A3:6A:35:AE:1E:5A
X509v3 Authority Key Identifier:
keyid:38:00:99:A8:1B:34:6F:9A:BC:AF:26:05:6F:5B:77:09:4D:1C:F1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OACZqBs0b5q8ryYFb1t3CU0c8RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/8uKSKM8TVx970yK_aHmjajWuHlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/8e501d-c088-4895-aee3-450fe33595d1/1/OACZqBs0b5q8ryYFb1t3CU0c8RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.172.0/22
Signature Algorithm: sha256WithRSAEncryption
44:4c:8c:b9:87:b6:05:a9:85:31:3d:3d:46:94:5f:24:47:43:
42:56:04:ef:0a:35:1d:26:80:8d:26:6c:8b:6c:7e:6d:34:e8:
75:c7:9c:68:d1:1b:44:58:e7:8d:65:86:e8:e2:04:6c:f1:3e:
38:67:04:c1:4b:6e:61:66:f5:ab:47:9f:81:c0:17:0d:bf:e6:
df:de:8e:4e:7d:02:34:21:7f:c2:4a:6e:f9:eb:a6:9d:98:8b:
0a:ce:41:00:9d:7d:a1:de:63:97:e5:0f:b9:a6:c1:e4:ee:0b:
05:92:e7:25:e2:a6:3f:38:c3:54:a6:c1:8f:7e:47:7f:a2:2a:
61:8c:78:8b:0b:39:6e:a5:be:9e:a4:24:9a:af:66:33:ec:a1:
81:9e:62:bb:85:3d:bc:3e:ae:37:69:0f:2e:11:b7:4c:b0:dc:
67:e2:98:aa:12:ee:58:f5:2c:81:d0:b6:8a:bb:61:b8:bc:b2:
6a:93:ea:d7:13:d6:04:d2:36:69:18:49:6c:73:71:c7:fd:a9:
89:92:56:ec:ca:7b:d7:53:2b:05:f8:2d:ab:14:a8:af:9c:94:
81:fd:81:37:db:4c:f5:1c:db:b4:16:bf:cd:ab:33:56:df:e1:
63:76:54:0e:f2:af:fb:53:4d:be:3c:2f:b6:cf:7e:6d:a8:9b:
09:2c:8c:1d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2aBIdbdUiU5EHdCizDx0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4MDA5OWE4MWIzNDZmOWFiY2FmMjYwNTZmNWI3NzA5NGQx
Y2YxMTMwHhcNMjUwMTAyMTE0OTQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMmUyOTIyOGNmMTM1NzFmN2JkMzIyYmY2ODc5YTM2YTM1YWUxZTVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFEoZqBoyj15BTlNC9BSZ59dmONj
nTHRWEibIHfRfYf4mSWKkOZglxBBcgU/A3wIKSraX8AP0El/u/9lAQFTYSS56ATb
hoG8IVqZ0cQnfaoJsQxOEz9xKzToGvToe+lHEjuWL5KAV9aI66miTAwh3K+9B2bQ
XTL2Js1ypGRlIrfVFY12+KjjHKHZqncgU6U1qj8NXS4kv+gh374kM7u82i/HFlS4
hVl7BDQyFDfm5fVP0tOxSc++ITB2R1o7f5j6OhBc6fYmYDdApQE+q/vLUcsSk8ZO
Vnluwux/urfFxho2clWWzTghMZooh6WJ64c/YaJi3kYthZPPYmQCGKMOOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPLikijPE1cfe9Miv2h5o2o1rh5aMB8GA1UdIwQY
MBaAFDgAmagbNG+avK8mBW9bdwlNHPETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMt
NDUwZmUzMzU5NWQxLzEvOHVLU0tNOFRWeDk3MHlLX2FIbWphald1SGxvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My84ZTUwMWQtYzA4OC00ODk1LWFlZTMtNDUwZmUzMzU5NWQx
LzEvT0FDWnFCczBiNXE4cnlZRmIxdDNDVTBjOFJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZ+sMA0G
CSqGSIb3DQEBCwUAA4IBAQBETIy5h7YFqYUxPT1GlF8kR0NCVgTvCjUdJoCNJmyL
bH5tNOh1x5xo0RtEWOeNZYbo4gRs8T44ZwTBS25hZvWrR5+BwBcNv+bf3o5OfQI0
IX/CSm7566admIsKzkEAnX2h3mOX5Q+5psHk7gsFkucl4qY/OMNUpsGPfkd/oiph
jHiLCzlupb6epCSar2Yz7KGBnmK7hT28Pq43aQ8uEbdMsNxn4piqEu5Y9SyB0LaK
u2G4vLJqk+rXE9YE0jZpGElsc3HH/amJklbsynvXUysF+C2rFKivnJSB/YE320z1
HNu0Fr/NqzNW3+FjdlQO8q/7U02+PC+2z35tqJsJLIwd
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net