Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/c49d19-8c79-4f77-b450-c08cf197a10c/1/ejCYeubtEX2rMSmkNAwpyfa0Enw.roa
File: ejCYeubtEX2rMSmkNAwpyfa0Enw.roa (raw, json)
Hash identifier: 4hn9ccLxIO+b+OCd227Erjt+kM9+/9+bRDsSA2RYfoU=
Subject key identifier: 7A:30:98:7A:E6:ED:11:7D:AB:31:29:A4:34:0C:29:C9:F6:B4:12:7C
Certificate issuer: /CN=72934fc3cadade6f07907aeb6e0be5a9ec4407b9
Certificate serial: 01952924F4CCC327200EEE6B172EA66CC16B
Authority key identifier: 72:93:4F:C3:CA:DA:DE:6F:07:90:7A:EB:6E:0B:E5:A9:EC:44:07:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpNPw8ra3m8HkHrrbgvlqexEB7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/c49d19-8c79-4f77-b450-c08cf197a10c/1/ejCYeubtEX2rMSmkNAwpyfa0Enw.roa
Signing time: Fri 21 Feb 2025 15:34:02 +0000
ROA not before: Fri 21 Feb 2025 15:34:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198203
IP address blocks: 185.52.0.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:29:24:f4:cc:c3:27:20:0e:ee:6b:17:2e:a6:6c:c1:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72934fc3cadade6f07907aeb6e0be5a9ec4407b9
Validity
Not Before: Feb 21 15:34:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a30987ae6ed117dab3129a4340c29c9f6b4127c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b5:a8:70:4c:54:f7:35:df:0c:57:27:16:7a:
a4:32:fe:29:57:80:93:6d:d8:5d:d0:bd:60:f1:5d:
a9:83:3d:46:3e:d2:8c:0f:f9:9c:55:07:2d:d0:60:
cb:5e:98:f2:25:f5:03:8c:61:7a:db:ca:8e:07:c5:
3a:9c:28:fd:e9:68:69:92:54:c0:99:ea:b0:a3:20:
15:81:56:74:78:67:5a:5a:42:1a:67:d7:d8:21:b0:
39:f0:75:2c:9c:e8:4d:4e:a9:3a:e3:f4:53:e1:95:
42:2c:b2:b4:a3:88:2d:4a:3e:1b:2b:a8:9c:54:ae:
db:8e:2d:6d:ec:90:67:fb:ae:28:8b:6e:21:9a:8c:
ee:d0:01:87:48:fb:07:5c:d9:0c:ad:5e:1f:77:24:
8f:18:da:ce:85:ae:b5:a0:77:ca:7c:22:7c:ed:13:
90:78:8e:c6:e3:ae:45:2f:f6:ba:91:a0:1e:5d:9e:
8b:10:a6:6c:ac:57:62:0c:cf:eb:f2:5a:31:f1:b4:
a3:b5:fe:88:4a:b4:a3:87:07:18:5e:c5:d3:ef:5e:
a8:43:54:75:2f:f3:39:98:27:96:ed:6c:0a:a0:47:
11:9a:64:1c:f7:20:00:a8:ae:96:a0:74:b5:f8:99:
88:7c:40:07:4e:46:9c:e9:8f:34:cf:a9:75:8d:62:
4c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:30:98:7A:E6:ED:11:7D:AB:31:29:A4:34:0C:29:C9:F6:B4:12:7C
X509v3 Authority Key Identifier:
keyid:72:93:4F:C3:CA:DA:DE:6F:07:90:7A:EB:6E:0B:E5:A9:EC:44:07:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpNPw8ra3m8HkHrrbgvlqexEB7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c49d19-8c79-4f77-b450-c08cf197a10c/1/ejCYeubtEX2rMSmkNAwpyfa0Enw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/c49d19-8c79-4f77-b450-c08cf197a10c/1/cpNPw8ra3m8HkHrrbgvlqexEB7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.0.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:24:74:40:51:d0:bd:56:d1:af:54:00:26:29:00:76:0d:81:
9b:06:2c:77:a1:4a:1d:bc:1a:ec:93:a3:7d:92:b5:8e:6e:42:
4b:02:03:19:b1:c1:be:66:58:6a:4e:43:c7:c2:d4:93:f9:fc:
bf:ca:63:f6:85:5f:f7:29:e9:ed:ba:47:65:93:fd:3e:42:18:
4b:97:5b:f7:80:f1:cf:26:b1:f3:33:c1:c5:e6:8c:45:71:d8:
bf:3e:aa:b7:a9:95:86:bf:4c:49:33:cf:d6:c2:f7:e2:76:17:
65:11:69:02:89:a1:86:cf:65:60:28:fc:d5:49:20:e2:94:0d:
b8:a7:18:ef:51:13:8e:01:10:f2:88:5b:bc:50:c0:08:e1:96:
62:fd:0e:d9:04:68:83:b8:73:a4:ca:69:f9:3e:82:38:10:62:
75:89:08:61:f7:11:2a:5d:2d:15:a6:03:87:16:79:5f:99:27:
db:3d:bb:44:e3:66:ef:60:91:ea:e5:a0:34:9a:5a:61:fb:9f:
e8:91:35:28:c3:17:b2:20:86:54:28:ab:a7:52:81:a0:eb:36:
66:44:85:58:3a:5b:38:f6:bd:1d:10:f7:76:21:78:dd:06:15:
cb:35:31:35:38:8a:db:5d:36:d9:3d:89:08:36:8f:ca:68:c3:
62:aa:47:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUpJPTMwycgDu5rFy6mbMFrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyOTM0ZmMzY2FkYWRlNmYwNzkwN2FlYjZlMGJlNWE5ZWM0
NDA3YjkwHhcNMjUwMjIxMTUzNDAyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTMwOTg3YWU2ZWQxMTdkYWIzMTI5YTQzNDBjMjljOWY2YjQxMjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvrWocExU9zXfDFcnFnqkMv4pV4CT
bdhd0L1g8V2pgz1GPtKMD/mcVQct0GDLXpjyJfUDjGF628qOB8U6nCj96WhpklTA
meqwoyAVgVZ0eGdaWkIaZ9fYIbA58HUsnOhNTqk64/RT4ZVCLLK0o4gtSj4bK6ic
VK7bji1t7JBn+64oi24hmozu0AGHSPsHXNkMrV4fdySPGNrOha61oHfKfCJ87ROQ
eI7G465FL/a6kaAeXZ6LEKZsrFdiDM/r8lox8bSjtf6ISrSjhwcYXsXT716oQ1R1
L/M5mCeW7WwKoEcRmmQc9yAAqK6WoHS1+JmIfEAHTkac6Y80z6l1jWJM0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHowmHrm7RF9qzEppDQMKcn2tBJ8MB8GA1UdIwQY
MBaAFHKTT8PK2t5vB5B6624L5ansRAe5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3BOUHc4cmEzbThIa0hycmJndmxxZXhFQjdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9jNDlkMTktOGM3OS00Zjc3LWI0NTAt
YzA4Y2YxOTdhMTBjLzEvZWpDWWV1YnRFWDJyTVNta05Bd3B5ZmEwRW53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi9jNDlkMTktOGM3OS00Zjc3LWI0NTAtYzA4Y2YxOTdhMTBj
LzEvY3BOUHc4cmEzbThIa0hycmJndmxxZXhFQjdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTQAMA0G
CSqGSIb3DQEBCwUAA4IBAQB+JHRAUdC9VtGvVAAmKQB2DYGbBix3oUodvBrsk6N9
krWObkJLAgMZscG+ZlhqTkPHwtST+fy/ymP2hV/3Kentukdlk/0+QhhLl1v3gPHP
JrHzM8HF5oxFcdi/Pqq3qZWGv0xJM8/WwvfidhdlEWkCiaGGz2VgKPzVSSDilA24
pxjvUROOARDyiFu8UMAI4ZZi/Q7ZBGiDuHOkymn5PoI4EGJ1iQhh9xEqXS0VpgOH
FnlfmSfbPbtE42bvYJHq5aA0mlph+5/okTUowxeyIIZUKKunUoGg6zZmRIVYOls4
9r0dEPd2IXjdBhXLNTE1OIrbXTbZPYkINo/KaMNiqkce
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:17 2025 by rpki-client on console.sobornost.net