Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/V5ey2q7KwpxyFqlUebHjJUU7ouc.roa
File: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (raw, json)
Hash identifier: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=
Subject key identifier: 57:97:B2:DA:AE:CA:C2:9C:72:16:A9:54:79:B1:E3:25:45:3B:A2:E7
Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Certificate serial: 0194252151AFD69D8ED525A5CC3CEC9D1D01
Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/V5ey2q7KwpxyFqlUebHjJUU7ouc.roa
Signing time: Thu 02 Jan 2025 03:48:48 +0000
ROA not before: Thu 02 Jan 2025 03:48:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3352
IP address blocks: 185.51.44.0/22 maxlen: 24
185.51.44.0/23 maxlen: 23
185.51.46.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:51:af:d6:9d:8e:d5:25:a5:cc:3c:ec:9d:1d:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8
Validity
Not Before: Jan 2 03:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5797b2daaecac29c7216a95479b1e325453ba2e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:05:04:d0:9f:2d:a3:9e:37:2a:0d:98:9b:3a:
89:91:04:8e:a6:10:a7:24:91:9a:0f:53:9b:54:61:
15:f7:fd:c1:cc:dd:97:99:27:3e:46:20:c0:ad:45:
18:ad:8c:09:54:b9:1b:fc:69:66:d5:bb:cd:ea:02:
fd:c8:0b:02:63:eb:9d:b3:d4:37:41:1c:10:cb:d9:
5d:fd:82:e7:3e:a1:bd:21:21:f6:b7:8e:d6:75:61:
7d:6d:cb:6b:5c:92:e8:30:98:e5:3d:40:73:32:5b:
a1:ee:3b:25:84:16:20:e5:0b:59:f2:7d:75:67:37:
f7:b9:17:ac:ce:e4:41:c6:17:bf:8c:3d:9c:ef:c6:
7b:84:57:c8:b7:b9:a2:8d:45:6d:75:db:49:f6:8a:
5c:0f:e1:97:d3:b0:31:e4:76:50:9c:dd:9f:1e:c9:
e2:ab:77:93:2d:34:53:81:0f:b3:59:b7:ea:d2:82:
e0:11:fe:ae:8c:ca:36:52:8d:46:04:4c:81:bb:07:
8f:c4:58:6d:63:ab:2b:46:70:dc:b6:4f:5c:b5:11:
18:6d:b2:10:29:f0:6a:86:13:e3:51:ac:7e:c3:86:
18:f7:eb:e8:19:d6:02:6a:87:e5:cc:0b:82:11:c5:
1f:70:1a:54:32:c4:dc:5d:93:47:ed:f5:96:02:74:
e1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:97:B2:DA:AE:CA:C2:9C:72:16:A9:54:79:B1:E3:25:45:3B:A2:E7
X509v3 Authority Key Identifier:
keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/V5ey2q7KwpxyFqlUebHjJUU7ouc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.44.0/22
Signature Algorithm: sha256WithRSAEncryption
11:c6:d9:af:d4:34:03:40:c5:3c:91:dc:14:05:05:a6:45:f9:
17:83:e3:de:87:65:9f:4a:76:96:c5:51:1f:d8:d7:ef:15:6a:
2f:f1:97:54:50:cf:a2:6f:69:e9:1d:bd:3d:c6:c9:46:3c:00:
97:3d:65:9f:0c:c2:fe:4f:46:86:e7:36:6f:44:0a:3f:26:0f:
92:95:2e:85:72:c9:9b:a5:74:7d:04:33:2d:c5:0f:a9:08:e9:
95:a4:24:22:57:50:d1:04:6a:78:c4:86:ec:ae:29:af:92:a0:
15:31:23:e1:3a:6c:56:a0:98:82:17:a1:4a:cb:c0:d8:f6:e2:
a8:16:63:ba:ce:93:de:55:6e:12:b4:97:b5:0b:cf:dd:00:6f:
fe:23:86:79:16:de:9b:09:b2:db:83:8a:56:53:67:38:01:23:
8a:e9:7b:97:c1:4d:10:dc:67:a2:5b:ac:a8:8f:3e:95:7f:8b:
6d:d4:64:63:91:52:7c:b5:84:64:23:5f:36:2d:b5:97:c2:3f:
e9:c1:11:57:4d:1a:93:a6:6a:cc:8d:cc:61:7e:65:31:fb:11:
43:26:c4:e7:9d:e3:23:f6:46:3f:2d:2f:01:bd:28:90:a9:66:
21:76:02:93:68:62:9a:ff:cb:4c:98:96:d4:25:87:c3:fa:e9:
aa:97:b6:f5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIVGv1p2O1SWlzDzsnR0BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1YjYxMWEwYjdkNDMzNGI3YTIzOTVlOGNjZTdiMGUzYzli
ODM4ZTgwHhcNMjUwMTAyMDM0ODQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1Nzk3YjJkYWFlY2FjMjljNzIxNmE5NTQ3OWIxZTMyNTQ1M2JhMmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowUE0J8to543Kg2YmzqJkQSOphCn
JJGaD1ObVGEV9/3BzN2XmSc+RiDArUUYrYwJVLkb/Glm1bvN6gL9yAsCY+uds9Q3
QRwQy9ld/YLnPqG9ISH2t47WdWF9bctrXJLoMJjlPUBzMluh7jslhBYg5QtZ8n11
Zzf3uReszuRBxhe/jD2c78Z7hFfIt7mijUVtddtJ9opcD+GX07Ax5HZQnN2fHsni
q3eTLTRTgQ+zWbfq0oLgEf6ujMo2Uo1GBEyBuwePxFhtY6srRnDctk9ctREYbbIQ
KfBqhhPjUax+w4YY9+voGdYCaoflzAuCEcUfcBpUMsTcXZNH7fWWAnThoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFeXstquysKcchapVHmx4yVFO6LnMB8GA1UdIwQY
MBaAFIW2EaC31DNLeiOV6MznsOPJuDjoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmIt
ODhjYjRlNzEwNmVhLzEvVjVleTJxN0t3cHh5RnFsVWViSGpKVVU3b3VjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmItODhjYjRlNzEwNmVh
LzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTMsMA0G
CSqGSIb3DQEBCwUAA4IBAQARxtmv1DQDQMU8kdwUBQWmRfkXg+Peh2WfSnaWxVEf
2NfvFWov8ZdUUM+ib2npHb09xslGPACXPWWfDML+T0aG5zZvRAo/Jg+SlS6Fcsmb
pXR9BDMtxQ+pCOmVpCQiV1DRBGp4xIbsrimvkqAVMSPhOmxWoJiCF6FKy8DY9uKo
FmO6zpPeVW4StJe1C8/dAG/+I4Z5Ft6bCbLbg4pWU2c4ASOK6XuXwU0Q3GeiW6yo
jz6Vf4tt1GRjkVJ8tYRkI182LbWXwj/pwRFXTRqTpmrMjcxhfmUx+xFDJsTnneMj
9kY/LS8BvSiQqWYhdgKTaGKa/8tMmJbUJYfD+umql7b1
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:29 2025 by rpki-client on console.sobornost.net