Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/09d854-9940-4dd5-a747-ceb27bfcb947/1/LY5WGxr4gD_bvJfdNplUqALGFP0.roa
File: LY5WGxr4gD_bvJfdNplUqALGFP0.roa (raw, json)
Hash identifier: tD9kvMegisj3R+7j2aUVrLlOEggEnyS436eQuZ4pUas=
Subject key identifier: 2D:8E:56:1B:1A:F8:80:3F:DB:BC:97:DD:36:99:54:A8:02:C6:14:FD
Certificate issuer: /CN=2d04a5540824269be5c11f20128b86414cd55945
Certificate serial: 0195C33B63EB96D2C5E048A0F93BC922191B
Authority key identifier: 2D:04:A5:54:08:24:26:9B:E5:C1:1F:20:12:8B:86:41:4C:D5:59:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LQSlVAgkJpvlwR8gEouGQUzVWUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/09d854-9940-4dd5-a747-ceb27bfcb947/1/LY5WGxr4gD_bvJfdNplUqALGFP0.roa
Signing time: Sun 23 Mar 2025 13:40:04 +0000
ROA not before: Sun 23 Mar 2025 13:40:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210855
IP address blocks: 5.181.53.0/24 maxlen: 24
2a05:5f80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c3:3b:63:eb:96:d2:c5:e0:48:a0:f9:3b:c9:22:19:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d04a5540824269be5c11f20128b86414cd55945
Validity
Not Before: Mar 23 13:40:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d8e561b1af8803fdbbc97dd369954a802c614fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:49:78:52:5c:10:15:ca:91:8f:d2:2d:1b:81:
40:7c:df:71:fa:8d:8b:f0:17:04:b3:ce:1f:55:ae:
b6:fa:98:97:b6:f3:f4:49:ca:ed:17:e8:e2:6f:f5:
af:4c:37:63:ef:49:af:d0:5f:fb:62:b1:fe:56:1a:
64:89:fe:07:f1:4c:bd:6b:c5:e2:b4:fd:d8:08:aa:
12:37:50:28:6c:a0:11:f9:17:6e:71:65:ff:83:a7:
e8:dd:b5:5b:38:7b:99:a2:bc:f0:c0:83:7f:fe:ff:
53:e0:0e:1c:5a:fb:0c:1d:c7:ba:b6:75:a1:d3:e3:
d9:63:a1:00:69:4e:f4:1a:c7:a5:c8:98:8b:22:42:
c0:fe:7b:d2:a9:e4:4b:44:01:d6:19:27:ed:05:79:
d5:88:4e:d1:9c:2c:2e:c9:d2:bd:77:61:35:73:ec:
df:4f:bc:d9:16:53:a8:5e:d8:a0:03:f8:48:25:d4:
f3:10:b9:a3:20:c6:bb:92:d1:77:26:55:d5:04:2f:
53:88:59:f8:b0:89:24:a3:a0:4e:cc:34:f2:d2:98:
27:2c:25:c7:61:f4:97:e2:54:d0:5a:5e:c6:46:3d:
f2:ac:16:53:7d:9f:41:56:48:4e:0d:b9:6a:db:29:
21:3b:bd:4a:93:86:14:cc:e2:44:d7:c9:51:20:26:
99:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8E:56:1B:1A:F8:80:3F:DB:BC:97:DD:36:99:54:A8:02:C6:14:FD
X509v3 Authority Key Identifier:
keyid:2D:04:A5:54:08:24:26:9B:E5:C1:1F:20:12:8B:86:41:4C:D5:59:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LQSlVAgkJpvlwR8gEouGQUzVWUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/09d854-9940-4dd5-a747-ceb27bfcb947/1/LY5WGxr4gD_bvJfdNplUqALGFP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/09d854-9940-4dd5-a747-ceb27bfcb947/1/LQSlVAgkJpvlwR8gEouGQUzVWUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.53.0/24
IPv6:
2a05:5f80::/29
Signature Algorithm: sha256WithRSAEncryption
2f:bb:fc:93:10:d5:e7:72:bf:6e:a3:16:f5:81:43:a3:ea:87:
42:d2:8d:b7:98:b0:45:49:ba:3a:79:00:8e:f1:f5:e5:16:62:
99:4c:1f:ac:c2:d5:90:b0:ec:ac:a0:0e:f8:7b:48:e4:a2:b5:
77:75:12:6a:e5:00:31:e0:ac:b2:bd:9a:fb:c8:af:ee:59:d4:
a2:4c:a5:eb:cc:07:59:88:b0:7f:ee:f2:00:85:88:0a:d0:21:
00:f9:50:55:e3:f6:d7:98:4c:6e:4c:91:a7:12:a6:fa:56:3e:
cc:96:68:84:10:86:35:ad:aa:6f:16:5b:96:da:fb:6f:65:ba:
b9:f0:3a:38:1e:4c:8c:b8:d4:89:2d:2d:82:c0:82:2a:51:68:
83:0a:75:f2:f0:f7:87:b0:4a:31:34:d8:d1:c3:3c:ca:bc:ac:
ab:05:49:63:0b:5c:62:7b:96:96:b0:4a:12:1f:17:8a:21:a3:
83:82:71:09:98:ea:57:4e:64:3b:ef:fc:1b:e7:5e:fb:ab:72:
87:10:b9:4d:d2:d2:1c:7f:7b:87:86:aa:30:41:b0:ee:e9:a4:
51:e4:54:ec:27:07:c0:d5:43:a6:ca:68:75:29:d5:7c:ea:0f:
57:a6:1d:a9:6a:bf:ee:7b:84:0d:11:bf:40:18:76:88:9f:d4:
1f:11:8f:7d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZXDO2PrltLF4Eig+TvJIhkbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMDRhNTU0MDgyNDI2OWJlNWMxMWYyMDEyOGI4NjQxNGNk
NTU5NDUwHhcNMjUwMzIzMTM0MDA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDhlNTYxYjFhZjg4MDNmZGJiYzk3ZGQzNjk5NTRhODAyYzYxNGZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4kl4UlwQFcqRj9ItG4FAfN9x+o2L
8BcEs84fVa62+piXtvP0ScrtF+jib/WvTDdj70mv0F/7YrH+Vhpkif4H8Uy9a8Xi
tP3YCKoSN1AobKAR+RducWX/g6fo3bVbOHuZorzwwIN//v9T4A4cWvsMHce6tnWh
0+PZY6EAaU70GselyJiLIkLA/nvSqeRLRAHWGSftBXnViE7RnCwuydK9d2E1c+zf
T7zZFlOoXtigA/hIJdTzELmjIMa7ktF3JlXVBC9TiFn4sIkko6BOzDTy0pgnLCXH
YfSX4lTQWl7GRj3yrBZTfZ9BVkhODblq2ykhO71Kk4YUzOJE18lRICaZywIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFC2OVhsa+IA/27yX3TaZVKgCxhT9MB8GA1UdIwQY
MBaAFC0EpVQIJCab5cEfIBKLhkFM1VlFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFFTbFZBZ2tKcHZsd1I4Z0VvdUdRVXpWV1VVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8wOWQ4NTQtOTk0MC00ZGQ1LWE3NDct
Y2ViMjdiZmNiOTQ3LzEvTFk1V0d4cjRnRF9idkpmZE5wbFVxQUxHRlAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi8wOWQ4NTQtOTk0MC00ZGQ1LWE3NDctY2ViMjdiZmNiOTQ3
LzEvTFFTbFZBZ2tKcHZsd1I4Z0VvdUdRVXpWV1VVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQABbU1MA0E
AgACMAcDBQMqBV+AMA0GCSqGSIb3DQEBCwUAA4IBAQAvu/yTENXncr9uoxb1gUOj
6odC0o23mLBFSbo6eQCO8fXlFmKZTB+swtWQsOysoA74e0jkorV3dRJq5QAx4Kyy
vZr7yK/uWdSiTKXrzAdZiLB/7vIAhYgK0CEA+VBV4/bXmExuTJGnEqb6Vj7MlmiE
EIY1rapvFluW2vtvZbq58Do4HkyMuNSJLS2CwIIqUWiDCnXy8PeHsEoxNNjRwzzK
vKyrBUljC1xie5aWsEoSHxeKIaODgnEJmOpXTmQ77/wb5177q3KHELlN0tIcf3uH
hqowQbDu6aRR5FTsJwfA1UOmymh1KdV86g9Xph2par/ue4QNEb9AGHaIn9QfEY99
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:23 2025 by rpki-client on console.sobornost.net