Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/sLy4f0J28AKLnDg3qJ8vxAYCBx0.roa
File: sLy4f0J28AKLnDg3qJ8vxAYCBx0.roa (raw, json)
Hash identifier: beKd4jqG4/esSSfPF84tT28gcKiXZoavsjTYolwvANc=
Subject key identifier: B0:BC:B8:7F:42:76:F0:02:8B:9C:38:37:A8:9F:2F:C4:06:02:07:1D
Certificate issuer: /CN=20f638107abb84ae6fb03cc1db2cfd1bc4487f8d
Certificate serial: 01942747A92C81AFEB3E4FAF273B23464E9B
Authority key identifier: 20:F6:38:10:7A:BB:84:AE:6F:B0:3C:C1:DB:2C:FD:1B:C4:48:7F:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPY4EHq7hK5vsDzB2yz9G8RIf40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/sLy4f0J28AKLnDg3qJ8vxAYCBx0.roa
Signing time: Thu 02 Jan 2025 13:49:55 +0000
ROA not before: Thu 02 Jan 2025 13:49:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61233
IP address blocks: 185.14.148.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:a9:2c:81:af:eb:3e:4f:af:27:3b:23:46:4e:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f638107abb84ae6fb03cc1db2cfd1bc4487f8d
Validity
Not Before: Jan 2 13:49:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0bcb87f4276f0028b9c3837a89f2fc40602071d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2d:39:d4:d7:b3:c9:c8:55:58:49:fc:9b:fa:
68:e4:9b:a5:1c:05:ca:45:56:2f:99:99:42:d7:e1:
b2:3e:08:c3:68:70:a4:18:8c:86:f4:3f:c3:21:c4:
b5:34:71:b5:45:c4:25:20:43:e2:53:ef:64:55:07:
6a:eb:73:2a:46:fc:6c:6c:f4:50:f8:a2:4b:d3:51:
08:a0:2c:46:28:1a:8d:8d:20:74:35:b7:e1:69:84:
81:ab:14:52:3f:2f:1b:52:39:f6:ad:8d:2b:98:01:
af:dd:0d:f4:8f:15:b0:86:dc:12:fe:bc:26:b2:7e:
c1:bf:ec:51:52:a2:d2:58:95:c9:f8:b0:15:5c:fe:
05:f0:bd:cc:a0:19:89:2b:0a:6c:00:de:27:3b:31:
e0:64:2c:f9:92:79:83:c2:5b:97:9c:d6:43:0a:eb:
d6:50:ea:d0:17:e0:92:da:1c:dd:5f:18:42:58:ee:
07:50:b0:5e:b8:5e:9a:8d:7e:bf:d0:42:d4:a7:9d:
fe:39:f3:ad:24:75:3c:75:21:dc:57:eb:b4:04:32:
50:dd:4c:68:87:2e:93:c4:19:eb:16:70:9e:18:a1:
7f:26:66:ca:f2:c9:e2:d9:59:70:e4:f7:d4:4e:cf:
9e:d0:dd:af:17:0b:f1:34:fe:5d:2c:b3:ab:38:47:
e7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BC:B8:7F:42:76:F0:02:8B:9C:38:37:A8:9F:2F:C4:06:02:07:1D
X509v3 Authority Key Identifier:
keyid:20:F6:38:10:7A:BB:84:AE:6F:B0:3C:C1:DB:2C:FD:1B:C4:48:7F:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPY4EHq7hK5vsDzB2yz9G8RIf40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/sLy4f0J28AKLnDg3qJ8vxAYCBx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/4f5808-1c04-4255-9b84-a82836de05fc/1/IPY4EHq7hK5vsDzB2yz9G8RIf40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.148.0/22
Signature Algorithm: sha256WithRSAEncryption
25:13:7e:ef:cb:5d:a4:5e:b5:79:0f:50:e1:10:89:57:71:b5:
9c:f2:15:cc:00:01:db:91:4a:42:75:b8:78:dd:22:94:f2:e0:
df:d8:ba:13:fb:b1:0a:0c:e1:5a:d4:11:82:88:79:0f:a7:8c:
36:2b:4b:7c:38:6c:c0:41:02:fb:9f:86:bc:98:e5:2c:ef:67:
84:8f:85:dd:ba:8b:67:43:d0:05:c5:2d:3d:5d:c8:35:ca:60:
1d:fa:bc:57:90:f0:74:5d:be:4d:bb:69:30:c7:da:c5:ac:38:
23:85:92:46:8a:b5:cc:55:e1:1d:cb:0e:08:45:80:cc:67:c2:
7c:0a:60:38:56:1d:6b:fd:3b:90:3c:49:fc:9c:57:54:d5:0d:
e6:f7:30:26:74:34:5d:94:7f:77:3d:a9:d3:b1:d0:3d:75:50:
7f:f7:84:3e:bf:94:1c:44:8d:c8:c7:07:5b:9d:ff:80:db:37:
6b:a3:1b:fe:fa:52:2f:64:b3:49:d9:e1:43:7b:a1:11:ba:79:
da:4f:cc:d4:1a:d2:e6:93:de:f4:d7:86:1f:83:05:66:6c:6a:
45:e8:2b:8b:e3:73:c6:38:f4:83:79:f5:4a:28:39:e8:29:08:
28:9f:67:34:04:b2:43:99:7d:cb:31:7d:dd:e9:27:73:e9:8a:
0a:68:4c:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnR6ksga/rPk+vJzsjRk6bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwZjYzODEwN2FiYjg0YWU2ZmIwM2NjMWRiMmNmZDFiYzQ0
ODdmOGQwHhcNMjUwMTAyMTM0OTU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGJjYjg3ZjQyNzZmMDAyOGI5YzM4MzdhODlmMmZjNDA2MDIwNzFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAti051NezychVWEn8m/po5JulHAXK
RVYvmZlC1+GyPgjDaHCkGIyG9D/DIcS1NHG1RcQlIEPiU+9kVQdq63MqRvxsbPRQ
+KJL01EIoCxGKBqNjSB0NbfhaYSBqxRSPy8bUjn2rY0rmAGv3Q30jxWwhtwS/rwm
sn7Bv+xRUqLSWJXJ+LAVXP4F8L3MoBmJKwpsAN4nOzHgZCz5knmDwluXnNZDCuvW
UOrQF+CS2hzdXxhCWO4HULBeuF6ajX6/0ELUp53+OfOtJHU8dSHcV+u0BDJQ3Uxo
hy6TxBnrFnCeGKF/JmbK8sni2Vlw5PfUTs+e0N2vFwvxNP5dLLOrOEfnZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLC8uH9CdvACi5w4N6ifL8QGAgcdMB8GA1UdIwQY
MBaAFCD2OBB6u4Sub7A8wdss/RvESH+NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVBZNEVIcTdoSzV2c0R6QjJ5ejlHOFJJZjQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC80ZjU4MDgtMWMwNC00MjU1LTliODQt
YTgyODM2ZGUwNWZjLzEvc0x5NGYwSjI4QUtMbkRnM3FKOHZ4QVlDQngwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC80ZjU4MDgtMWMwNC00MjU1LTliODQtYTgyODM2ZGUwNWZj
LzEvSVBZNEVIcTdoSzV2c0R6QjJ5ejlHOFJJZjQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuQ6UMA0G
CSqGSIb3DQEBCwUAA4IBAQAlE37vy12kXrV5D1DhEIlXcbWc8hXMAAHbkUpCdbh4
3SKU8uDf2LoT+7EKDOFa1BGCiHkPp4w2K0t8OGzAQQL7n4a8mOUs72eEj4Xduotn
Q9AFxS09Xcg1ymAd+rxXkPB0Xb5Nu2kwx9rFrDgjhZJGirXMVeEdyw4IRYDMZ8J8
CmA4Vh1r/TuQPEn8nFdU1Q3m9zAmdDRdlH93PanTsdA9dVB/94Q+v5QcRI3Ixwdb
nf+A2zdroxv++lIvZLNJ2eFDe6ERunnaT8zUGtLmk97014YfgwVmbGpF6CuL43PG
OPSDefVKKDnoKQgon2c0BLJDmX3LMX3d6Sdz6YoKaExq
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:59 2025 by rpki-client on console.sobornost.net