Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/SQmwwlkRfmzsbR8yXHtAP1cuD78.roa
File: SQmwwlkRfmzsbR8yXHtAP1cuD78.roa (raw, json)
Hash identifier: 70vEBGHpH3D42IAnxJUAJiHSfSkzd3seVU45VJv3ZjU=
Subject key identifier: 49:09:B0:C2:59:11:7E:6C:EC:6D:1F:32:5C:7B:40:3F:57:2E:0F:BF
Certificate issuer: /CN=286687fb64a77f0100baf23d4f341ece775950e5
Certificate serial: 019426D95773E575150071BE5D2393520A1A
Authority key identifier: 28:66:87:FB:64:A7:7F:01:00:BA:F2:3D:4F:34:1E:CE:77:59:50:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGaH-2SnfwEAuvI9TzQezndZUOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/SQmwwlkRfmzsbR8yXHtAP1cuD78.roa
Signing time: Thu 02 Jan 2025 11:49:25 +0000
ROA not before: Thu 02 Jan 2025 11:49:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60989
IP address blocks: 185.109.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:57:73:e5:75:15:00:71:be:5d:23:93:52:0a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=286687fb64a77f0100baf23d4f341ece775950e5
Validity
Not Before: Jan 2 11:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4909b0c259117e6cec6d1f325c7b403f572e0fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dc:cc:93:23:1f:a8:9f:ee:5c:bf:78:7b:e0:
26:cb:08:00:e6:d9:fa:4f:60:a3:fa:30:de:d0:59:
03:eb:3c:d7:57:33:39:04:9c:13:1b:bd:67:af:32:
46:62:14:f9:f0:fb:ed:66:89:01:f2:08:16:13:09:
80:14:1b:96:3b:62:48:f0:9c:74:54:80:a2:5e:52:
b8:79:ff:45:8e:0f:4b:cc:8c:85:8c:57:9b:58:20:
89:60:96:d0:c6:74:99:73:b3:23:bb:2b:ab:2a:75:
d2:66:e1:6c:67:e2:81:1a:7d:93:1c:0c:72:c6:77:
01:4c:37:b8:07:05:ed:1f:d2:55:cc:81:06:52:03:
b6:86:ed:9c:3a:04:a4:5c:40:ea:b9:04:79:e2:7b:
11:a3:3e:5b:8d:7a:96:3d:37:0b:e7:83:3f:3f:0f:
8d:85:5c:7a:93:6a:af:f9:d5:31:55:76:4b:f9:d3:
73:fd:23:32:4b:73:7f:08:81:00:0b:96:c6:ee:35:
b2:13:56:d9:a1:9e:8f:c5:c0:7c:36:c9:eb:a3:1d:
7e:77:42:d8:83:f2:0b:d2:90:e7:d1:45:7c:c9:05:
bb:ed:21:9e:32:55:22:82:82:de:e2:c9:ac:9d:5c:
c8:19:58:51:92:c1:47:28:17:0c:bd:1a:14:e6:dc:
88:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:09:B0:C2:59:11:7E:6C:EC:6D:1F:32:5C:7B:40:3F:57:2E:0F:BF
X509v3 Authority Key Identifier:
keyid:28:66:87:FB:64:A7:7F:01:00:BA:F2:3D:4F:34:1E:CE:77:59:50:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGaH-2SnfwEAuvI9TzQezndZUOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/SQmwwlkRfmzsbR8yXHtAP1cuD78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2052ad-3d41-45da-8474-6339f6b36bcb/1/KGaH-2SnfwEAuvI9TzQezndZUOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.50.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f2:b0:08:d5:1c:70:7c:52:16:8b:7c:ce:46:99:40:cd:fa:
4b:cb:90:51:29:85:a2:80:fc:9c:19:b5:08:e0:95:cd:32:f6:
e5:20:13:c8:f6:c4:ad:08:34:73:a0:9b:e0:6e:d9:9c:8d:cf:
a1:26:3a:32:b3:f8:53:4b:96:d4:92:1b:bb:64:a4:02:73:75:
f3:d3:66:0d:e7:65:23:ea:bd:32:fc:7c:7c:c9:dd:f8:c0:31:
13:b8:75:ab:3e:fb:5f:c2:9f:ad:85:ba:0a:24:76:e4:10:4d:
d9:0c:ba:a7:2c:c1:60:8b:b4:72:f0:db:1c:10:00:16:89:76:
9f:97:38:3f:2a:38:9c:bd:eb:46:20:7c:e4:70:a9:ac:5b:ca:
11:f7:df:f9:0e:fa:2e:bf:99:23:88:24:83:f2:30:04:e9:d7:
84:41:d0:6d:21:03:5d:fa:76:c0:4a:0f:9b:da:87:b8:26:07:
5a:66:ec:76:95:00:b6:0a:3b:d9:88:66:ab:db:ab:f9:f9:ff:
f0:46:79:08:d5:c3:d2:b2:15:17:af:a1:dc:fd:d4:21:9f:ca:
a2:53:b3:5f:f8:4e:63:ff:dd:4a:bc:da:6c:fe:04:9d:4b:7b:
c2:cc:10:60:43:7b:2c:ec:e1:1e:c0:35:ca:d8:32:63:b2:42:
93:e3:72:c4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2Vdz5XUVAHG+XSOTUgoaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4NjY4N2ZiNjRhNzdmMDEwMGJhZjIzZDRmMzQxZWNlNzc1
OTUwZTUwHhcNMjUwMTAyMTE0OTI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTA5YjBjMjU5MTE3ZTZjZWM2ZDFmMzI1YzdiNDAzZjU3MmUwZmJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstzMkyMfqJ/uXL94e+AmywgA5tn6
T2Cj+jDe0FkD6zzXVzM5BJwTG71nrzJGYhT58PvtZokB8ggWEwmAFBuWO2JI8Jx0
VICiXlK4ef9Fjg9LzIyFjFebWCCJYJbQxnSZc7MjuyurKnXSZuFsZ+KBGn2THAxy
xncBTDe4BwXtH9JVzIEGUgO2hu2cOgSkXEDquQR54nsRoz5bjXqWPTcL54M/Pw+N
hVx6k2qv+dUxVXZL+dNz/SMyS3N/CIEAC5bG7jWyE1bZoZ6PxcB8Nsnrox1+d0LY
g/IL0pDn0UV8yQW77SGeMlUigoLe4smsnVzIGVhRksFHKBcMvRoU5tyIGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEkJsMJZEX5s7G0fMlx7QD9XLg+/MB8GA1UdIwQY
MBaAFChmh/tkp38BALryPU80Hs53WVDlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0dhSC0yU25md0VBdXZJOVR6UWV6bmRaVU9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8yMDUyYWQtM2Q0MS00NWRhLTg0NzQt
NjMzOWY2YjM2YmNiLzEvU1Ftd3dsa1JmbXpzYlI4eVhIdEFQMWN1RDc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC8yMDUyYWQtM2Q0MS00NWRhLTg0NzQtNjMzOWY2YjM2YmNi
LzEvS0dhSC0yU25md0VBdXZJOVR6UWV6bmRaVU9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuW0yMA0G
CSqGSIb3DQEBCwUAA4IBAQAa8rAI1RxwfFIWi3zORplAzfpLy5BRKYWigPycGbUI
4JXNMvblIBPI9sStCDRzoJvgbtmcjc+hJjoys/hTS5bUkhu7ZKQCc3Xz02YN52Uj
6r0y/Hx8yd34wDETuHWrPvtfwp+thboKJHbkEE3ZDLqnLMFgi7Ry8NscEAAWiXaf
lzg/KjicvetGIHzkcKmsW8oR99/5Dvouv5kjiCSD8jAE6deEQdBtIQNd+nbASg+b
2oe4JgdaZux2lQC2CjvZiGar26v5+f/wRnkI1cPSshUXr6Hc/dQhn8qiU7Nf+E5j
/91KvNps/gSdS3vCzBBgQ3ss7OEewDXK2DJjskKT43LE
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:18 2025 by rpki-client on console.sobornost.net