Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa
File: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (raw, json)
Hash identifier: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=
Subject key identifier: 0C:86:08:AE:D3:95:0A:1D:28:65:48:28:1E:7B:01:CC:35:58:46:09
Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Certificate serial: 019421441F3368D1AA59C13E8002376BC15F
Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa
Signing time: Wed 01 Jan 2025 09:48:20 +0000
ROA not before: Wed 01 Jan 2025 09:48:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35224
IP address blocks: 185.192.188.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:1f:33:68:d1:aa:59:c1:3e:80:02:37:6b:c1:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc
Validity
Not Before: Jan 1 09:48:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0c8608aed3950a1d286548281e7b01cc35584609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ad:f7:f6:0a:d4:21:4c:a4:73:1e:a3:4f:52:
4a:60:db:71:4a:e0:dc:33:3a:ce:a6:dd:0b:d3:a7:
4d:db:00:01:ae:08:ac:4e:02:d2:1a:4d:62:01:71:
f7:03:72:6b:a3:0d:bc:5c:c1:f1:f0:12:57:04:e2:
e8:c9:1c:dc:e7:35:37:e1:5c:6a:73:58:a3:d9:ff:
0c:5a:3c:4e:f7:d9:91:72:d2:6c:aa:dd:34:16:d9:
d2:9a:cf:38:b1:0f:d2:f7:e1:29:8f:98:66:3d:d8:
53:e1:62:eb:ec:e2:4c:c1:50:e1:26:fe:d0:3f:cc:
8a:49:15:31:59:83:19:4b:25:27:31:86:9c:bd:ad:
d8:b6:d5:41:2a:29:8e:fc:54:f0:ca:94:3f:c4:8d:
0a:3c:3e:93:a8:0c:98:7e:e1:4a:8a:76:8b:77:93:
f2:8b:47:c5:5c:d3:10:1b:6c:7c:e2:b3:2c:cf:52:
fd:09:d6:d0:78:4f:da:f6:3d:db:08:62:ab:8b:c3:
b3:23:b5:4d:93:76:64:31:3b:ba:47:42:20:6e:89:
4b:3a:95:36:4d:28:70:ec:91:81:c7:de:fd:18:7e:
02:5b:6f:22:cd:32:59:42:31:05:45:96:01:cb:89:
70:a1:0d:19:36:6d:9f:11:3b:6a:1a:d7:64:6e:3f:
6e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:86:08:AE:D3:95:0A:1D:28:65:48:28:1E:7B:01:CC:35:58:46:09
X509v3 Authority Key Identifier:
keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.188.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:a7:8e:ae:a9:a2:bf:f1:f0:a6:65:c1:7d:44:7a:53:50:2d:
77:89:43:0a:cb:39:f6:89:ca:fe:5d:12:dd:be:67:01:d9:8c:
42:b5:64:a2:80:01:a2:2f:f4:89:ea:7a:ff:00:f6:f0:a3:e5:
6b:1d:c3:d4:48:6d:ad:29:8f:f7:92:ba:90:6b:f5:bd:a9:29:
30:0e:a1:b4:30:4f:a0:58:ae:ba:4e:bf:b8:35:b3:73:93:0a:
db:f8:8f:d2:f2:83:c2:cc:0e:1e:88:23:49:b3:c6:18:07:6e:
4a:67:ff:6c:1f:2c:b8:65:d8:00:c3:b7:99:63:11:b4:cf:da:
03:03:99:58:d5:92:9b:f8:5e:3e:b1:7b:67:22:76:c6:bc:e7:
5b:1b:41:8c:cc:68:cb:cf:cd:b1:b7:18:62:12:a1:b3:2c:97:
58:a5:2a:d3:a0:fa:85:a9:6a:d0:e5:3a:7d:08:d4:8a:04:ca:
53:4d:0e:18:f2:1d:00:f4:4d:f3:2f:9f:35:f7:27:97:4d:5d:
4f:9c:21:cf:b6:c6:25:1b:c3:82:fe:5b:b3:73:32:48:1f:26:
b8:f4:21:65:51:26:e0:e1:4e:47:55:e5:ae:6d:38:90:ae:da:
dd:3f:41:d4:47:fd:79:4d:ce:cb:11:8a:88:d1:27:40:43:aa:
fb:98:44:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQhRB8zaNGqWcE+gAI3a8FfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiOGFlNjNiNzU3ZGExYWY3OTBmMjBmNTljNjM0ODExZWVl
YjFiY2MwHhcNMjUwMTAxMDk0ODIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzg2MDhhZWQzOTUwYTFkMjg2NTQ4MjgxZTdiMDFjYzM1NTg0NjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoa339grUIUykcx6jT1JKYNtxSuDc
MzrOpt0L06dN2wABrgisTgLSGk1iAXH3A3Jrow28XMHx8BJXBOLoyRzc5zU34Vxq
c1ij2f8MWjxO99mRctJsqt00FtnSms84sQ/S9+Epj5hmPdhT4WLr7OJMwVDhJv7Q
P8yKSRUxWYMZSyUnMYacva3YttVBKimO/FTwypQ/xI0KPD6TqAyYfuFKinaLd5Py
i0fFXNMQG2x84rMsz1L9CdbQeE/a9j3bCGKri8OzI7VNk3ZkMTu6R0IgbolLOpU2
TShw7JGBx979GH4CW28izTJZQjEFRZYBy4lwoQ0ZNm2fETtqGtdkbj9udwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAyGCK7TlQodKGVIKB57Acw1WEYJMB8GA1UdIwQY
MBaAFLuK5jt1faGveQ8g9ZxjSBHu6xvMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8xMmM2NmQtYWM2My00M2ZjLTg4OTQt
YWIwODdmNDNiNTk1LzEvRElZSXJ0T1ZDaDBvWlVnb0huc0J6RFZZUmdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC8xMmM2NmQtYWM2My00M2ZjLTg4OTQtYWIwODdmNDNiNTk1
LzEvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucC8MA0G
CSqGSIb3DQEBCwUAA4IBAQChp46uqaK/8fCmZcF9RHpTUC13iUMKyzn2icr+XRLd
vmcB2YxCtWSigAGiL/SJ6nr/APbwo+VrHcPUSG2tKY/3krqQa/W9qSkwDqG0ME+g
WK66Tr+4NbNzkwrb+I/S8oPCzA4eiCNJs8YYB25KZ/9sHyy4ZdgAw7eZYxG0z9oD
A5lY1ZKb+F4+sXtnInbGvOdbG0GMzGjLz82xtxhiEqGzLJdYpSrToPqFqWrQ5Tp9
CNSKBMpTTQ4Y8h0A9E3zL5819yeXTV1PnCHPtsYlG8OC/luzczJIHya49CFlUSbg
4U5HVeWubTiQrtrdP0HUR/15Tc7LEYqI0SdAQ6r7mES9
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:19 2025 by rpki-client on console.sobornost.net