Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/783da5-6572-413d-9d6b-094d0db1ad2c/1/HexBDB0ALKRx19vAL_olvRM_0pc.roa
File: HexBDB0ALKRx19vAL_olvRM_0pc.roa (raw, json)
Hash identifier: ajSzA7jvEEstqpYQIZuBqV7eWXJVONLQH581vvaQYJc=
Subject key identifier: 1D:EC:41:0C:1D:00:2C:A4:71:D7:DB:C0:2F:FA:25:BD:13:3F:D2:97
Certificate issuer: /CN=f8d6ddee34c5bb8ec0eb919ce2656bf0cd855d54
Certificate serial: 0194222037BDB4CFA04EC69E57ABCE73CB98
Authority key identifier: F8:D6:DD:EE:34:C5:BB:8E:C0:EB:91:9C:E2:65:6B:F0:CD:85:5D:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Nbd7jTFu47A65Gc4mVr8M2FXVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/783da5-6572-413d-9d6b-094d0db1ad2c/1/HexBDB0ALKRx19vAL_olvRM_0pc.roa
Signing time: Wed 01 Jan 2025 13:48:44 +0000
ROA not before: Wed 01 Jan 2025 13:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19905
IP address blocks: 5.183.136.0/24 maxlen: 24
5.183.137.0/24 maxlen: 24
5.183.138.0/24 maxlen: 24
5.183.139.0/24 maxlen: 24
2a0e:dc00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:37:bd:b4:cf:a0:4e:c6:9e:57:ab:ce:73:cb:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8d6ddee34c5bb8ec0eb919ce2656bf0cd855d54
Validity
Not Before: Jan 1 13:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1dec410c1d002ca471d7dbc02ffa25bd133fd297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8d:7b:1d:eb:7e:ae:9a:e8:7f:0c:a5:71:d9:
29:5b:fe:cd:fb:3e:17:a9:e3:b6:04:46:a7:9f:9c:
4b:f6:6e:5e:f5:98:9c:18:51:6b:c0:21:b4:2f:d6:
34:53:80:f7:4f:8c:ab:64:ed:dc:83:33:d7:dc:52:
a1:89:19:b3:0f:3e:16:5d:4a:42:e5:f5:57:34:bc:
42:4e:67:11:91:77:45:e4:bc:7e:08:92:8f:a6:03:
e9:ef:34:57:8c:35:54:28:e0:f6:10:7e:91:ce:78:
d8:eb:3b:5a:62:39:12:e4:10:e2:7a:85:5b:ac:22:
4d:77:20:08:b4:2a:e7:a3:c1:e2:47:ce:8e:ba:5b:
a7:30:03:ff:43:b9:32:be:9f:33:93:f5:4d:5e:61:
82:39:89:cc:c8:a2:fd:34:7d:0d:88:76:52:17:79:
11:48:bc:80:9a:c9:52:1e:f1:0f:3c:5f:03:9b:d2:
5c:7d:75:48:21:6a:25:9c:02:bc:9f:62:ff:d1:ad:
0a:b1:b8:40:19:55:42:e4:49:f8:ed:9e:d9:ac:26:
5e:56:a5:40:10:c4:04:7f:6f:89:a4:c1:83:6c:0b:
14:b0:09:43:58:a3:eb:8c:41:d1:70:85:d6:4c:c1:
6e:17:36:d6:eb:82:88:83:fd:ba:9d:22:51:27:50:
2b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:EC:41:0C:1D:00:2C:A4:71:D7:DB:C0:2F:FA:25:BD:13:3F:D2:97
X509v3 Authority Key Identifier:
keyid:F8:D6:DD:EE:34:C5:BB:8E:C0:EB:91:9C:E2:65:6B:F0:CD:85:5D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Nbd7jTFu47A65Gc4mVr8M2FXVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/783da5-6572-413d-9d6b-094d0db1ad2c/1/HexBDB0ALKRx19vAL_olvRM_0pc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/783da5-6572-413d-9d6b-094d0db1ad2c/1/1-Nbd7jTFu47A65Gc4mVr8M2FXVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.136.0/22
IPv6:
2a0e:dc00::/32
Signature Algorithm: sha256WithRSAEncryption
9e:7b:77:12:23:19:4c:a6:cc:ae:26:dd:f3:65:0a:8f:8d:cc:
9b:aa:eb:95:3d:7e:7b:2c:51:9c:d8:5b:62:90:9f:fe:b1:c1:
90:09:af:cb:7e:d6:77:18:34:f6:06:14:d3:f5:4f:02:2e:51:
d2:88:79:c4:55:81:48:83:6f:59:b7:e8:9f:e5:fc:bb:08:e7:
c8:92:04:b9:30:23:b2:17:84:fd:54:79:d2:8f:87:df:fe:f6:
e0:fc:5a:89:10:b0:f1:39:a6:3e:09:0d:dd:f9:b3:2a:62:4f:
65:ec:c8:88:43:d2:62:36:5d:f1:6b:97:93:5b:5b:ee:3d:64:
da:56:ad:77:48:a4:d7:1a:75:fa:72:24:09:e5:a9:18:28:96:
6e:38:80:53:a2:6b:6e:1b:f9:c1:45:07:c7:58:d5:d8:ae:85:
3c:be:7b:49:e0:e1:6a:56:4a:c9:1e:e3:37:87:cc:d0:64:50:
a1:47:8f:cc:0d:30:45:4a:9b:74:d5:59:1b:9a:97:3b:1c:d9:
9f:d9:ec:bb:df:c3:aa:63:c8:2f:ec:a9:7b:31:49:30:b9:6a:
8e:ad:8a:25:a3:59:c1:f6:01:ea:e4:20:3a:e4:fd:fa:d1:56:
61:77:8f:df:f5:67:5c:ce:25:ac:f5:07:e7:6c:60:6a:ec:b4:
e4:76:0e:cc
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZQiIDe9tM+gTsaeV6vOc8uYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZDZkZGVlMzRjNWJiOGVjMGViOTE5Y2UyNjU2YmYwY2Q4
NTVkNTQwHhcNMjUwMTAxMTM0ODQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGVjNDEwYzFkMDAyY2E0NzFkN2RiYzAyZmZhMjViZDEzM2ZkMjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyo17Het+rprofwylcdkpW/7N+z4X
qeO2BEann5xL9m5e9ZicGFFrwCG0L9Y0U4D3T4yrZO3cgzPX3FKhiRmzDz4WXUpC
5fVXNLxCTmcRkXdF5Lx+CJKPpgPp7zRXjDVUKOD2EH6RznjY6ztaYjkS5BDieoVb
rCJNdyAItCrno8HiR86OulunMAP/Q7kyvp8zk/VNXmGCOYnMyKL9NH0NiHZSF3kR
SLyAmslSHvEPPF8Dm9JcfXVIIWolnAK8n2L/0a0KsbhAGVVC5En47Z7ZrCZeVqVA
EMQEf2+JpMGDbAsUsAlDWKPrjEHRcIXWTMFuFzbW64KIg/26nSJRJ1ArJQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFB3sQQwdACykcdfbwC/6Jb0TP9KXMB8GA1UdIwQY
MBaAFPjW3e40xbuOwOuRnOJla/DNhV1UMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1OYmQ3alRGdTQ3QTY1R2M0bVZyOE0yRlhWUS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTYvNzgzZGE1LTY1NzItNDEzZC05ZDZi
LTA5NGQwZGIxYWQyYy8xL0hleEJEQjBBTEtSeDE5dkFMX29sdlJNXzBwYy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYTYvNzgzZGE1LTY1NzItNDEzZC05ZDZiLTA5NGQwZGIxYWQy
Yy8xLzEtTmJkN2pURnU0N0E2NUdjNG1WcjhNMkZYVlEuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAIFt4gw
DQQCAAIwBwMFACoO3AAwDQYJKoZIhvcNAQELBQADggEBAJ57dxIjGUymzK4m3fNl
Co+NzJuq65U9fnssUZzYW2KQn/6xwZAJr8t+1ncYNPYGFNP1TwIuUdKIecRVgUiD
b1m36J/l/LsI58iSBLkwI7IXhP1UedKPh9/+9uD8WokQsPE5pj4JDd35sypiT2Xs
yIhD0mI2XfFrl5NbW+49ZNpWrXdIpNcadfpyJAnlqRgolm44gFOia24b+cFFB8dY
1diuhTy+e0ng4WpWSske4zeHzNBkUKFHj8wNMEVKm3TVWRualzsc2Z/Z7Lvfw6pj
yC/sqXsxSTC5ao6tiiWjWcH2AerkIDrk/frRVmF3j9/1Z1zOJaz1B+dsYGrstOR2
Dsw=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net