Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b984d6-167a-4c0d-b544-58d5bb71c2a1/1/vTPGgvTFOTKcwrxoY8g2suU_KuI.roa
File: vTPGgvTFOTKcwrxoY8g2suU_KuI.roa (raw, json)
Hash identifier: z6QhLi9xuHghOnwXqxIVXZYJknTyD77QAsOudJ+xOTg=
Subject key identifier: BD:33:C6:82:F4:C5:39:32:9C:C2:BC:68:63:C8:36:B2:E5:3F:2A:E2
Certificate issuer: /CN=8ddc04351c858a6a7fe0f90812bb10655e5af8ca
Certificate serial: 019422201ED4FCEDCFB26D766DDDC78A2DB1
Authority key identifier: 8D:DC:04:35:1C:85:8A:6A:7F:E0:F9:08:12:BB:10:65:5E:5A:F8:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jdwENRyFimp_4PkIErsQZV5a-Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b984d6-167a-4c0d-b544-58d5bb71c2a1/1/vTPGgvTFOTKcwrxoY8g2suU_KuI.roa
Signing time: Wed 01 Jan 2025 13:48:37 +0000
ROA not before: Wed 01 Jan 2025 13:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51560
IP address blocks: 185.139.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:1e:d4:fc:ed:cf:b2:6d:76:6d:dd:c7:8a:2d:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ddc04351c858a6a7fe0f90812bb10655e5af8ca
Validity
Not Before: Jan 1 13:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd33c682f4c539329cc2bc6863c836b2e53f2ae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0c:34:22:6e:1b:01:99:f4:92:e5:6e:0c:1f:
bc:00:bb:43:fb:6a:87:ee:3b:45:8f:4e:6b:9c:22:
01:9e:56:a9:af:bc:8b:7b:97:95:d7:eb:9b:36:43:
63:d2:bc:c9:1f:0c:34:00:92:30:92:be:d4:6b:d5:
ec:5f:96:29:dc:c4:a6:ec:fa:8f:59:1f:32:5b:b8:
f6:b4:cf:1f:cb:d3:01:63:46:39:18:2a:60:f6:ce:
99:1d:92:31:e1:c1:da:05:08:27:40:07:1a:6e:a7:
b3:c0:f3:dd:a7:80:fe:1b:2b:11:e1:d2:f3:a8:69:
8a:ca:94:0d:56:e8:ff:f0:35:85:d8:c3:2a:0d:da:
53:50:db:b0:73:4e:3c:e6:e0:1e:d5:38:c0:93:43:
9b:90:d7:c9:53:fc:b0:02:5f:dc:a6:56:c2:8c:a9:
e6:63:46:c8:50:b6:03:7c:17:1f:26:85:5f:c2:d8:
a1:de:46:42:03:16:f0:ec:8d:06:57:cc:93:85:38:
79:b0:2d:32:f8:85:d9:66:73:7d:bc:6b:17:73:29:
be:17:c8:d2:4e:5c:0f:9a:01:a7:48:58:5f:72:3c:
3f:15:36:5e:9f:08:22:c7:e2:b7:63:eb:d9:3d:6d:
0c:48:51:27:eb:eb:45:17:28:45:3e:d0:10:f2:91:
b6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:33:C6:82:F4:C5:39:32:9C:C2:BC:68:63:C8:36:B2:E5:3F:2A:E2
X509v3 Authority Key Identifier:
keyid:8D:DC:04:35:1C:85:8A:6A:7F:E0:F9:08:12:BB:10:65:5E:5A:F8:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jdwENRyFimp_4PkIErsQZV5a-Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b984d6-167a-4c0d-b544-58d5bb71c2a1/1/vTPGgvTFOTKcwrxoY8g2suU_KuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b984d6-167a-4c0d-b544-58d5bb71c2a1/1/jdwENRyFimp_4PkIErsQZV5a-Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.208.0/22
Signature Algorithm: sha256WithRSAEncryption
49:02:61:84:85:fb:1e:4e:dd:52:37:92:dc:0b:0e:83:a6:82:
08:f1:19:05:07:41:11:5b:cf:aa:48:e5:36:45:f9:6e:16:4a:
06:1f:c2:6d:5d:47:9b:41:a1:98:ad:77:ff:a4:e2:86:4d:3c:
18:c3:af:0c:d6:6f:e5:81:00:58:d7:df:3e:63:86:8c:ac:51:
fe:10:f9:d7:66:56:cf:23:37:1f:25:b1:ee:43:08:bf:a6:3d:
f2:11:c7:c8:6d:e0:62:05:65:54:6a:ef:2d:1e:4a:19:f2:c2:
68:5e:71:e5:b3:6a:03:66:4b:59:4d:7b:d9:08:a7:79:07:eb:
65:22:ba:fa:83:c9:1a:29:e5:c6:b2:28:40:7e:51:a5:d4:a6:
4c:51:75:02:fb:3a:5e:45:4d:a2:3b:1d:b9:08:c2:8b:76:6b:
2a:14:91:1a:b3:83:e2:ed:b5:42:98:a2:f9:e5:40:93:08:ef:
e5:f8:33:4f:1e:09:d6:36:26:cc:60:65:81:45:b2:5d:76:e0:
66:50:8d:f2:6c:16:0d:b0:06:76:35:82:df:b4:f4:bc:c5:de:
51:76:2f:be:ff:e6:b1:45:27:c5:c0:77:49:24:49:05:03:cf:
c4:3b:36:09:65:0a:07:eb:99:89:97:de:a7:6c:5d:0f:52:dd:
66:aa:ce:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiIB7U/O3Psm12bd3Hii2xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkZGMwNDM1MWM4NThhNmE3ZmUwZjkwODEyYmIxMDY1NWU1
YWY4Y2EwHhcNMjUwMTAxMTM0ODM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDMzYzY4MmY0YzUzOTMyOWNjMmJjNjg2M2M4MzZiMmU1M2YyYWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQw0Im4bAZn0kuVuDB+8ALtD+2qH
7jtFj05rnCIBnlapr7yLe5eV1+ubNkNj0rzJHww0AJIwkr7Ua9XsX5Yp3MSm7PqP
WR8yW7j2tM8fy9MBY0Y5GCpg9s6ZHZIx4cHaBQgnQAcabqezwPPdp4D+GysR4dLz
qGmKypQNVuj/8DWF2MMqDdpTUNuwc0485uAe1TjAk0ObkNfJU/ywAl/cplbCjKnm
Y0bIULYDfBcfJoVfwtih3kZCAxbw7I0GV8yThTh5sC0y+IXZZnN9vGsXcym+F8jS
TlwPmgGnSFhfcjw/FTZenwgix+K3Y+vZPW0MSFEn6+tFFyhFPtAQ8pG2xwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL0zxoL0xTkynMK8aGPINrLlPyriMB8GA1UdIwQY
MBaAFI3cBDUchYpqf+D5CBK7EGVeWvjKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamR3RU5SeUZpbXBfNFBrSUVyc1FaVjVhLU1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9iOTg0ZDYtMTY3YS00YzBkLWI1NDQt
NThkNWJiNzFjMmExLzEvdlRQR2d2VEZPVEtjd3J4b1k4ZzJzdVVfS3VJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9iOTg0ZDYtMTY3YS00YzBkLWI1NDQtNThkNWJiNzFjMmEx
LzEvamR3RU5SeUZpbXBfNFBrSUVyc1FaVjVhLU1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYvQMA0G
CSqGSIb3DQEBCwUAA4IBAQBJAmGEhfseTt1SN5LcCw6DpoII8RkFB0ERW8+qSOU2
RfluFkoGH8JtXUebQaGYrXf/pOKGTTwYw68M1m/lgQBY198+Y4aMrFH+EPnXZlbP
IzcfJbHuQwi/pj3yEcfIbeBiBWVUau8tHkoZ8sJoXnHls2oDZktZTXvZCKd5B+tl
Irr6g8kaKeXGsihAflGl1KZMUXUC+zpeRU2iOx25CMKLdmsqFJEas4Pi7bVCmKL5
5UCTCO/l+DNPHgnWNibMYGWBRbJdduBmUI3ybBYNsAZ2NYLftPS8xd5Rdi++/+ax
RSfFwHdJJEkFA8/EOzYJZQoH65mJl96nbF0PUt1mqs5I
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:15 2025 by rpki-client on console.sobornost.net