Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b2ff91-d4ce-405b-bebf-609d8f565ffc/1/6UlZFNCUrDjb89rguKwpyS9qT0g.roa
File: 6UlZFNCUrDjb89rguKwpyS9qT0g.roa (raw, json)
Hash identifier: D/Hmsl6tGFB+vz20t6vs0y0e3hMtr6xcd6Lxa8Hmltk=
Subject key identifier: E9:49:59:14:D0:94:AC:38:DB:F3:DA:E0:B8:AC:29:C9:2F:6A:4F:48
Certificate issuer: /CN=cc39e6be40d80128896ccd131f65a55ad98a40af
Certificate serial: 01941FFAAD5F6EBBD3D276183F226A732CF7
Authority key identifier: CC:39:E6:BE:40:D8:01:28:89:6C:CD:13:1F:65:A5:5A:D9:8A:40:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zDnmvkDYASiJbM0TH2WlWtmKQK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b2ff91-d4ce-405b-bebf-609d8f565ffc/1/6UlZFNCUrDjb89rguKwpyS9qT0g.roa
Signing time: Wed 01 Jan 2025 03:48:29 +0000
ROA not before: Wed 01 Jan 2025 03:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209014
IP address blocks: 185.245.58.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:ad:5f:6e:bb:d3:d2:76:18:3f:22:6a:73:2c:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc39e6be40d80128896ccd131f65a55ad98a40af
Validity
Not Before: Jan 1 03:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e9495914d094ac38dbf3dae0b8ac29c92f6a4f48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a5:d8:7e:f6:45:49:8f:e8:1e:cf:58:55:42:
59:8e:a5:52:13:a1:23:6a:e6:57:38:57:c6:60:37:
d3:5d:39:6d:c8:bc:e8:ee:fd:44:63:9b:46:59:fb:
6d:88:b5:59:2e:d9:81:da:df:6c:8b:28:ec:9d:8d:
49:b9:01:b2:e7:65:8f:0a:79:a8:05:0a:ae:21:d4:
cf:7a:f7:ed:8c:be:ed:e6:56:97:22:ac:03:50:05:
04:2c:3b:31:e2:a6:28:41:1c:92:7f:87:4b:b4:e4:
b4:33:0e:46:49:01:a0:09:f8:26:68:1d:49:31:8e:
68:38:b0:3e:e8:49:21:37:4a:33:3d:03:cb:47:76:
01:65:9b:5e:f8:d1:9e:c4:54:04:9a:32:ee:03:68:
eb:5c:d6:a9:be:39:cf:e0:92:42:13:0f:c1:7e:ad:
d0:a8:01:73:28:e1:1e:8d:ea:09:c3:9a:0a:d2:47:
a3:d9:26:32:2b:80:05:7b:5c:8e:fd:91:ba:c7:8e:
dc:c2:b9:8a:31:e4:86:b4:cd:06:25:03:de:65:14:
f7:10:ee:17:17:81:10:d2:ce:58:a0:3f:e8:cb:13:
8f:36:8e:4d:80:39:66:46:11:c2:c1:e8:32:43:8e:
1a:e8:a9:b8:e2:17:9f:37:d8:f5:50:74:ba:4e:10:
a4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:49:59:14:D0:94:AC:38:DB:F3:DA:E0:B8:AC:29:C9:2F:6A:4F:48
X509v3 Authority Key Identifier:
keyid:CC:39:E6:BE:40:D8:01:28:89:6C:CD:13:1F:65:A5:5A:D9:8A:40:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zDnmvkDYASiJbM0TH2WlWtmKQK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b2ff91-d4ce-405b-bebf-609d8f565ffc/1/6UlZFNCUrDjb89rguKwpyS9qT0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b2ff91-d4ce-405b-bebf-609d8f565ffc/1/zDnmvkDYASiJbM0TH2WlWtmKQK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.58.0/23
Signature Algorithm: sha256WithRSAEncryption
50:52:ba:f3:d1:d3:7f:e1:85:65:c8:4e:a1:3c:a1:7d:b2:a6:
32:ea:14:bf:a7:2a:e5:16:c9:38:06:f8:74:23:9c:a3:4c:0a:
9d:ea:e6:0d:a3:c5:ac:0e:fc:fc:8e:3a:32:c0:ed:ab:e9:2b:
94:3e:79:74:6b:3a:94:fa:cf:4b:96:eb:12:fc:dc:6b:c6:5c:
a8:f4:07:da:62:10:19:c5:9a:01:e8:40:52:cc:43:49:92:ca:
a4:30:1e:e3:4f:b9:a9:b2:c3:23:fe:b8:05:4c:60:28:f3:47:
ab:85:36:9b:db:d0:90:c4:a1:80:b1:19:37:e6:14:97:30:96:
c5:79:8b:74:b0:43:98:52:70:e5:7c:7e:ab:c8:57:29:3a:f3:
2c:36:93:57:53:4c:aa:26:40:d6:5a:1a:9c:e3:5b:fc:5f:7c:
03:16:fb:16:26:32:53:6e:6c:01:42:d0:0f:ce:55:00:1b:8c:
e1:7f:a8:0e:4b:b9:72:20:ff:a3:db:f7:5c:70:49:16:64:fd:
71:6e:56:4a:0e:1b:58:98:3c:72:87:96:4c:4a:64:0d:ad:e0:
eb:76:1c:20:73:42:6e:05:04:cb:f5:33:e4:2c:7d:78:a2:db:
e6:b6:99:41:47:1a:2a:d7:1d:1d:ee:c8:03:44:dc:0b:b8:64:
60:91:80:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQf+q1fbrvT0nYYPyJqcyz3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjMzllNmJlNDBkODAxMjg4OTZjY2QxMzFmNjVhNTVhZDk4
YTQwYWYwHhcNMjUwMTAxMDM0ODI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTQ5NTkxNGQwOTRhYzM4ZGJmM2RhZTBiOGFjMjljOTJmNmE0ZjQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2aXYfvZFSY/oHs9YVUJZjqVSE6Ej
auZXOFfGYDfTXTltyLzo7v1EY5tGWfttiLVZLtmB2t9siyjsnY1JuQGy52WPCnmo
BQquIdTPevftjL7t5laXIqwDUAUELDsx4qYoQRySf4dLtOS0Mw5GSQGgCfgmaB1J
MY5oOLA+6EkhN0ozPQPLR3YBZZte+NGexFQEmjLuA2jrXNapvjnP4JJCEw/Bfq3Q
qAFzKOEejeoJw5oK0kej2SYyK4AFe1yO/ZG6x47cwrmKMeSGtM0GJQPeZRT3EO4X
F4EQ0s5YoD/oyxOPNo5NgDlmRhHCwegyQ44a6Km44hefN9j1UHS6ThCkxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOlJWRTQlKw42/Pa4LisKckvak9IMB8GA1UdIwQY
MBaAFMw55r5A2AEoiWzNEx9lpVrZikCvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvekRubXZrRFlBU2lKYk0wVEgyV2xXdG1LUUs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9iMmZmOTEtZDRjZS00MDViLWJlYmYt
NjA5ZDhmNTY1ZmZjLzEvNlVsWkZOQ1VyRGpiODlyZ3VLd3B5UzlxVDBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9iMmZmOTEtZDRjZS00MDViLWJlYmYtNjA5ZDhmNTY1ZmZj
LzEvekRubXZrRFlBU2lKYk0wVEgyV2xXdG1LUUs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBufU6MA0G
CSqGSIb3DQEBCwUAA4IBAQBQUrrz0dN/4YVlyE6hPKF9sqYy6hS/pyrlFsk4Bvh0
I5yjTAqd6uYNo8WsDvz8jjoywO2r6SuUPnl0azqU+s9LlusS/Nxrxlyo9AfaYhAZ
xZoB6EBSzENJksqkMB7jT7mpssMj/rgFTGAo80erhTab29CQxKGAsRk35hSXMJbF
eYt0sEOYUnDlfH6ryFcpOvMsNpNXU0yqJkDWWhqc41v8X3wDFvsWJjJTbmwBQtAP
zlUAG4zhf6gOS7lyIP+j2/dccEkWZP1xblZKDhtYmDxyh5ZMSmQNreDrdhwgc0Ju
BQTL9TPkLH14otvmtplBRxoq1x0d7sgDRNwLuGRgkYBn
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:49 2025 by rpki-client on console.sobornost.net