Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/2640df-b5d1-4c00-b2f2-5e5b8b28059a/1/5vM6DWCDq0zAAIqdgdL6q-vEnCg.roa
File: 5vM6DWCDq0zAAIqdgdL6q-vEnCg.roa (raw, json)
Hash identifier: ZbcmhEUHiVvPP/q8OPaFsh6YhizZSJj69o+H0dDocGY=
Subject key identifier: E6:F3:3A:0D:60:83:AB:4C:C0:00:8A:9D:81:D2:FA:AB:EB:C4:9C:28
Certificate issuer: /CN=09d1a634bbb7aefad87d121a5fe545648738c8c5
Certificate serial: 01941FFA154FF98A4E844882246E9434781D
Authority key identifier: 09:D1:A6:34:BB:B7:AE:FA:D8:7D:12:1A:5F:E5:45:64:87:38:C8:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CdGmNLu3rvrYfRIaX-VFZIc4yMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/2640df-b5d1-4c00-b2f2-5e5b8b28059a/1/5vM6DWCDq0zAAIqdgdL6q-vEnCg.roa
Signing time: Wed 01 Jan 2025 03:47:50 +0000
ROA not before: Wed 01 Jan 2025 03:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8769
IP address blocks: 185.40.184.0/22 maxlen: 22
185.118.118.0/24 maxlen: 24
185.121.28.0/22 maxlen: 22
185.254.132.0/22 maxlen: 22
2a06:9c40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:15:4f:f9:8a:4e:84:48:82:24:6e:94:34:78:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09d1a634bbb7aefad87d121a5fe545648738c8c5
Validity
Not Before: Jan 1 03:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6f33a0d6083ab4cc0008a9d81d2faabebc49c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6b:8f:89:f9:70:c3:29:c7:02:ab:d9:8c:95:
68:64:dc:bf:fc:42:d3:a7:5c:ca:ea:8c:2d:74:4a:
9d:68:7a:1a:3c:de:3f:4a:ac:97:b7:b8:ec:10:65:
d6:e7:86:ea:b9:d1:3f:ec:5b:2b:ad:c2:51:c5:21:
cb:ad:e2:c5:1e:33:50:95:65:c3:49:e3:4f:fe:35:
53:08:49:f2:4e:9a:92:22:8e:cc:61:2d:aa:57:dc:
c4:3b:b6:37:66:a2:90:a5:6c:8d:13:d8:54:1a:36:
56:4a:70:e6:a8:a7:a6:97:55:24:6c:61:9b:73:7f:
31:f3:fd:66:1f:4b:64:ca:a1:c9:07:ef:a3:6b:f3:
fb:47:ed:45:5c:b5:52:3b:b3:13:09:0e:dd:36:c5:
a3:4a:70:7e:10:43:17:1c:ea:3a:0d:5d:b5:1d:73:
49:a1:40:a6:78:ee:ea:39:42:c6:ad:53:65:5f:21:
0f:bd:be:c4:b7:df:2b:fb:ec:d6:4c:96:f8:cc:4e:
89:f2:ea:ca:a4:cf:b5:ec:4f:1a:9d:f8:b8:d2:9e:
19:e6:7f:89:c5:31:a6:c9:16:6a:7d:9b:64:e5:54:
52:e4:32:cc:d4:f3:4d:27:4d:f7:67:0f:d3:e9:14:
ef:9d:73:b1:66:45:75:ed:47:61:aa:59:54:41:b7:
dd:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F3:3A:0D:60:83:AB:4C:C0:00:8A:9D:81:D2:FA:AB:EB:C4:9C:28
X509v3 Authority Key Identifier:
keyid:09:D1:A6:34:BB:B7:AE:FA:D8:7D:12:1A:5F:E5:45:64:87:38:C8:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CdGmNLu3rvrYfRIaX-VFZIc4yMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/2640df-b5d1-4c00-b2f2-5e5b8b28059a/1/5vM6DWCDq0zAAIqdgdL6q-vEnCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/2640df-b5d1-4c00-b2f2-5e5b8b28059a/1/CdGmNLu3rvrYfRIaX-VFZIc4yMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.184.0/22
185.118.118.0/24
185.121.28.0/22
185.254.132.0/22
IPv6:
2a06:9c40::/29
Signature Algorithm: sha256WithRSAEncryption
22:5b:2d:6c:58:a4:ec:53:37:5e:16:46:5d:26:51:73:c3:f1:
f8:07:e2:a4:1a:21:8b:91:f5:cc:26:17:d7:a8:e9:9f:26:0c:
67:65:05:d2:0e:0e:8c:1c:5d:bd:1a:e6:cd:80:ab:b0:cd:01:
ac:da:b7:33:74:9e:2a:6c:28:34:5d:41:7c:a4:52:99:39:1a:
af:e3:bd:8b:1b:c3:53:89:82:2b:e2:20:63:24:70:19:97:80:
1f:2c:a4:0e:db:e1:ee:c0:5d:af:71:68:62:85:ae:51:bf:9c:
e8:96:82:5c:be:5d:e7:49:95:3b:bb:71:32:7b:c0:30:a0:9b:
43:c8:f1:8e:a5:a6:d1:6c:cd:24:38:63:33:4c:9c:01:09:32:
33:c3:66:7e:f6:75:50:f7:60:3a:9f:b1:4f:f1:db:ca:85:25:
f7:05:d8:57:be:2b:46:2e:11:6e:90:af:44:74:60:25:26:99:
16:fd:44:d0:e9:55:47:24:66:50:55:af:a8:ad:db:4b:c5:2a:
c0:78:17:fd:8e:c0:34:d5:50:68:7f:e6:9c:1a:b3:4f:8e:97:
2f:a4:7e:f4:05:bb:80:35:0a:24:63:b1:78:8d:96:2c:9d:e4:
80:77:53:bd:a2:d2:2f:e7:4f:b2:8c:2e:82:f1:66:61:36:82:
c8:9a:8b:6a
-----BEGIN CERTIFICATE-----
MIIFHjCCBAagAwIBAgISAZQf+hVP+YpOhEiCJG6UNHgdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5ZDFhNjM0YmJiN2FlZmFkODdkMTIxYTVmZTU0NTY0ODcz
OGM4YzUwHhcNMjUwMTAxMDM0NzUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmYzM2EwZDYwODNhYjRjYzAwMDhhOWQ4MWQyZmFhYmViYzQ5YzI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApWuPiflwwynHAqvZjJVoZNy//ELT
p1zK6owtdEqdaHoaPN4/SqyXt7jsEGXW54bqudE/7FsrrcJRxSHLreLFHjNQlWXD
SeNP/jVTCEnyTpqSIo7MYS2qV9zEO7Y3ZqKQpWyNE9hUGjZWSnDmqKeml1UkbGGb
c38x8/1mH0tkyqHJB++ja/P7R+1FXLVSO7MTCQ7dNsWjSnB+EEMXHOo6DV21HXNJ
oUCmeO7qOULGrVNlXyEPvb7Et98r++zWTJb4zE6J8urKpM+17E8anfi40p4Z5n+J
xTGmyRZqfZtk5VRS5DLM1PNNJ033Zw/T6RTvnXOxZkV17UdhqllUQbfdnQIDAQAB
o4ICKjCCAiYwHQYDVR0OBBYEFObzOg1gg6tMwACKnYHS+qvrxJwoMB8GA1UdIwQY
MBaAFAnRpjS7t6762H0SGl/lRWSHOMjFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2RHbU5MdTNydnJZZlJJYVgtVkZaSWM0eU1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8yNjQwZGYtYjVkMS00YzAwLWIyZjIt
NWU1YjhiMjgwNTlhLzEvNXZNNkRXQ0RxMHpBQUlxZGdkTDZxLXZFbkNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC8yNjQwZGYtYjVkMS00YzAwLWIyZjItNWU1YjhiMjgwNTlh
LzEvQ2RHbU5MdTNydnJZZlJJYVgtVkZaSWM0eU1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQCuSi4AwQA
uXZ2AwQCuXkcAwQCuf6EMA0EAgACMAcDBQMqBpxAMA0GCSqGSIb3DQEBCwUAA4IB
AQAiWy1sWKTsUzdeFkZdJlFzw/H4B+KkGiGLkfXMJhfXqOmfJgxnZQXSDg6MHF29
GubNgKuwzQGs2rczdJ4qbCg0XUF8pFKZORqv472LG8NTiYIr4iBjJHAZl4AfLKQO
2+HuwF2vcWhiha5Rv5zoloJcvl3nSZU7u3Eye8AwoJtDyPGOpabRbM0kOGMzTJwB
CTIzw2Z+9nVQ92A6n7FP8dvKhSX3BdhXvitGLhFukK9EdGAlJpkW/UTQ6VVHJGZQ
Va+ordtLxSrAeBf9jsA01VBof+acGrNPjpcvpH70BbuANQokY7F4jZYsneSAd1O9
otIv50+yjC6C8WZhNoLImotq
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:56 2025 by rpki-client on console.sobornost.net