Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/3e50c9-95d0-4ab7-a7e1-0111038934d3/1/C_dV-a8NL19EWcN2B58oBMal8wA.roa
File: C_dV-a8NL19EWcN2B58oBMal8wA.roa (raw, json)
Hash identifier: cfrqdXpjr4fkDxvy5PbVD58Is9FxlX0Bf3Low+2bVCc=
Subject key identifier: 0B:F7:55:F9:AF:0D:2F:5F:44:59:C3:76:07:9F:28:04:C6:A5:F3:00
Certificate issuer: /CN=8724b401ffeac3d5db42f828cab4f163c064d6d5
Certificate serial: 019426D9690D003ACC18F103CF04CAFACC49
Authority key identifier: 87:24:B4:01:FF:EA:C3:D5:DB:42:F8:28:CA:B4:F1:63:C0:64:D6:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyS0Af_qw9XbQvgoyrTxY8Bk1tU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/3e50c9-95d0-4ab7-a7e1-0111038934d3/1/C_dV-a8NL19EWcN2B58oBMal8wA.roa
Signing time: Thu 02 Jan 2025 11:49:29 +0000
ROA not before: Thu 02 Jan 2025 11:49:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51018
IP address blocks: 185.239.52.0/22 maxlen: 22
185.239.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:69:0d:00:3a:cc:18:f1:03:cf:04:ca:fa:cc:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8724b401ffeac3d5db42f828cab4f163c064d6d5
Validity
Not Before: Jan 2 11:49:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0bf755f9af0d2f5f4459c376079f2804c6a5f300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7a:d0:9b:4e:d7:03:c8:2d:44:7a:5e:17:89:
88:d9:ae:7c:42:77:0b:78:56:b9:8f:95:d9:58:90:
62:5d:54:3e:77:99:b8:2a:68:72:54:33:bf:c2:f4:
c8:3e:9c:8f:b1:3d:fa:f5:b5:ac:cf:4c:11:55:1a:
47:a0:45:59:37:90:95:7d:05:c8:21:09:dd:69:db:
b5:87:e0:9f:66:38:27:ae:47:ee:fa:34:13:91:7a:
3f:e6:e2:f5:5f:d8:d0:50:6d:44:2c:17:64:fb:36:
63:0a:c1:ba:10:a7:e8:85:7f:6c:af:65:86:12:a9:
7c:f9:aa:7d:d7:5d:dc:dc:ed:a5:65:d5:5d:34:fc:
33:c6:25:5e:20:26:f9:55:c4:c1:98:aa:88:bf:4f:
68:41:29:0f:01:d4:b1:86:8f:49:80:36:03:5a:dd:
95:87:c9:ce:b1:a7:b5:58:30:d0:11:77:5e:bd:61:
a2:3b:22:fe:a8:b1:44:28:bd:a1:87:a8:84:cd:d5:
7a:08:28:d4:6e:c4:03:af:2d:db:63:59:8d:60:a9:
b1:7a:38:30:61:d5:cf:c7:67:fd:47:4a:cc:41:e6:
77:e3:41:0f:26:d2:d7:f8:ef:b4:1f:02:48:1e:fa:
ff:3a:ef:66:87:b7:a7:7e:0c:c7:aa:76:a9:4a:dd:
ec:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F7:55:F9:AF:0D:2F:5F:44:59:C3:76:07:9F:28:04:C6:A5:F3:00
X509v3 Authority Key Identifier:
keyid:87:24:B4:01:FF:EA:C3:D5:DB:42:F8:28:CA:B4:F1:63:C0:64:D6:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyS0Af_qw9XbQvgoyrTxY8Bk1tU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/3e50c9-95d0-4ab7-a7e1-0111038934d3/1/C_dV-a8NL19EWcN2B58oBMal8wA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/3e50c9-95d0-4ab7-a7e1-0111038934d3/1/hyS0Af_qw9XbQvgoyrTxY8Bk1tU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.52.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:03:53:c3:a7:1a:6c:f5:79:91:ac:5a:9f:a3:50:07:9e:40:
52:b2:d7:6f:64:eb:91:4f:8c:d7:1d:6d:93:a5:15:d0:0f:de:
0f:dd:16:b5:a4:f0:54:35:d3:67:8c:cb:05:c5:77:46:d1:43:
14:db:4f:26:40:4c:e9:2e:69:67:b2:15:66:49:e7:8d:57:cb:
c7:4d:8c:32:14:50:ef:03:1e:61:4b:b1:9c:f8:dd:bd:35:3c:
f9:63:ce:21:cc:17:9f:52:bd:fc:56:1d:5c:e6:1f:93:a0:a5:
4c:53:c0:c7:c5:e7:79:fc:0c:a9:33:21:19:4e:09:b7:f7:50:
cb:c0:6c:49:43:77:a4:59:c0:54:1b:2d:db:d4:95:da:4c:00:
2a:69:73:2c:70:d5:1d:86:ac:d6:f4:b5:92:ee:65:df:37:0b:
fe:80:fb:93:6a:7e:5a:2e:37:55:8c:7e:c0:51:86:d1:fc:11:
7d:79:8c:1b:a2:a8:19:4d:ef:10:20:c5:76:a1:06:23:dc:51:
b6:ea:64:50:25:fc:f0:63:ad:9e:cb:08:8b:0d:16:3e:12:22:
14:47:e8:a3:71:9f:99:da:62:c3:42:4a:d0:cd:9a:8f:f1:a6:
ab:ef:59:09:24:74:e4:c5:41:c0:88:cb:b5:f0:bd:3b:db:ed:
62:e8:df:5f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2WkNADrMGPEDzwTK+sxJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MjRiNDAxZmZlYWMzZDVkYjQyZjgyOGNhYjRmMTYzYzA2
NGQ2ZDUwHhcNMjUwMTAyMTE0OTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYmY3NTVmOWFmMGQyZjVmNDQ1OWMzNzYwNzlmMjgwNGM2YTVmMzAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnrQm07XA8gtRHpeF4mI2a58QncL
eFa5j5XZWJBiXVQ+d5m4KmhyVDO/wvTIPpyPsT369bWsz0wRVRpHoEVZN5CVfQXI
IQndadu1h+CfZjgnrkfu+jQTkXo/5uL1X9jQUG1ELBdk+zZjCsG6EKfohX9sr2WG
Eql8+ap9113c3O2lZdVdNPwzxiVeICb5VcTBmKqIv09oQSkPAdSxho9JgDYDWt2V
h8nOsae1WDDQEXdevWGiOyL+qLFEKL2hh6iEzdV6CCjUbsQDry3bY1mNYKmxejgw
YdXPx2f9R0rMQeZ340EPJtLX+O+0HwJIHvr/Ou9mh7enfgzHqnapSt3s3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAv3VfmvDS9fRFnDdgefKATGpfMAMB8GA1UdIwQY
MBaAFIcktAH/6sPV20L4KMq08WPAZNbVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHlTMEFmX3F3OVhiUXZnb3lyVHhZOEJrMXRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS8zZTUwYzktOTVkMC00YWI3LWE3ZTEt
MDExMTAzODkzNGQzLzEvQ19kVi1hOE5MMTlFV2NOMkI1OG9CTWFsOHdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS8zZTUwYzktOTVkMC00YWI3LWE3ZTEtMDExMTAzODkzNGQz
LzEvaHlTMEFmX3F3OVhiUXZnb3lyVHhZOEJrMXRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCue80MA0G
CSqGSIb3DQEBCwUAA4IBAQAcA1PDpxps9XmRrFqfo1AHnkBSstdvZOuRT4zXHW2T
pRXQD94P3Ra1pPBUNdNnjMsFxXdG0UMU208mQEzpLmlnshVmSeeNV8vHTYwyFFDv
Ax5hS7Gc+N29NTz5Y84hzBefUr38Vh1c5h+ToKVMU8DHxed5/AypMyEZTgm391DL
wGxJQ3ekWcBUGy3b1JXaTAAqaXMscNUdhqzW9LWS7mXfNwv+gPuTan5aLjdVjH7A
UYbR/BF9eYwboqgZTe8QIMV2oQYj3FG26mRQJfzwY62eywiLDRY+EiIUR+ijcZ+Z
2mLDQkrQzZqP8aar71kJJHTkxUHAiMu18L072+1i6N9f
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:57 2025 by rpki-client on console.sobornost.net