Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/HtP1TmS7Jnp-rdYE-25kUdcbSF8.roa
File: HtP1TmS7Jnp-rdYE-25kUdcbSF8.roa (raw, json)
Hash identifier: E94twRw9JlGZMbmmCttmzyXZguvpf/OPgy8FVeGF2rg=
Subject key identifier: 1E:D3:F5:4E:64:BB:26:7A:7E:AD:D6:04:FB:6E:64:51:D7:1B:48:5F
Certificate issuer: /CN=8e0840804c6680c41f21e8726f380b95e69e9447
Certificate serial: 01942748066AFC757BBD05480A8A2B13F72F
Authority key identifier: 8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/HtP1TmS7Jnp-rdYE-25kUdcbSF8.roa
Signing time: Thu 02 Jan 2025 13:50:19 +0000
ROA not before: Thu 02 Jan 2025 13:50:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25512
IP address blocks: 85.209.124.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:06:6a:fc:75:7b:bd:05:48:0a:8a:2b:13:f7:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0840804c6680c41f21e8726f380b95e69e9447
Validity
Not Before: Jan 2 13:50:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1ed3f54e64bb267a7eadd604fb6e6451d71b485f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a0:6b:ec:e2:cf:dc:72:d0:b4:14:69:89:d0:
ce:93:86:4d:7e:af:41:b2:bf:33:ba:07:24:ce:50:
40:a4:bf:4e:8b:30:31:b4:02:a4:c4:5d:1c:62:ca:
bc:66:eb:47:28:2d:42:90:c2:c9:22:61:9b:54:81:
5c:8c:71:ee:69:46:58:73:ac:cd:f1:70:1d:e4:11:
58:39:cc:b3:0e:13:91:be:c5:bd:c8:23:d2:38:29:
99:64:e7:b7:00:e4:2d:e8:9e:84:d3:05:60:51:dd:
93:19:51:b2:56:31:df:67:86:de:8f:5c:5d:1b:d0:
fd:fa:1d:d4:62:69:a4:e0:5e:15:ce:e4:63:61:5b:
30:8f:80:88:8c:4e:bc:15:1a:07:73:d3:82:58:c6:
e8:6b:4f:cf:3c:a8:21:f5:09:c7:8c:58:49:cf:cb:
48:b3:6d:a1:fb:37:09:36:0f:1d:d4:13:19:14:48:
08:7a:9f:ff:91:3e:80:04:f6:70:94:1f:b4:1c:2c:
7a:0b:77:9f:1b:af:66:3c:73:1d:c7:14:8c:42:70:
86:87:24:3e:2d:fc:26:0d:c0:b6:0d:8f:dd:d3:20:
84:bd:c6:80:9f:b6:6c:b6:d7:7e:c2:25:10:d8:43:
b6:20:be:a1:67:d9:26:e5:74:7e:6e:0c:42:19:76:
96:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D3:F5:4E:64:BB:26:7A:7E:AD:D6:04:FB:6E:64:51:D7:1B:48:5F
X509v3 Authority Key Identifier:
keyid:8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/HtP1TmS7Jnp-rdYE-25kUdcbSF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.124.0/23
Signature Algorithm: sha256WithRSAEncryption
14:1d:1b:e6:67:89:69:44:db:0e:b0:44:7f:5d:c7:01:76:04:
79:f8:7c:f9:59:32:e3:f7:ff:37:ea:e4:f0:f1:f6:ed:48:47:
ab:c0:3d:c6:74:8c:48:13:61:a2:9d:3c:69:13:cb:90:58:e3:
c8:62:66:ef:f8:82:cf:fe:9f:75:e3:be:16:a8:de:bd:57:ff:
0b:8a:4c:a2:34:3f:83:75:8e:b6:50:0e:f8:d6:24:25:0e:2d:
42:8d:ea:b6:76:2c:94:93:cf:d4:7e:e0:46:2f:ff:2b:8f:aa:
36:45:de:60:6b:58:0e:d2:b3:a5:f8:36:a1:a5:75:b9:29:c4:
c2:1a:87:6f:20:e3:55:4b:24:12:ab:dd:29:0d:6d:aa:17:32:
ec:ee:13:5e:91:90:87:14:a3:93:58:e8:b6:8d:fe:ce:2d:f0:
6a:9f:75:dd:4c:9e:c6:94:fc:80:b5:c9:2d:16:0e:a3:26:39:
30:0f:26:9d:47:d6:75:73:a5:a7:21:22:0f:56:81:e7:a9:29:
95:1d:75:42:80:c1:49:7e:88:52:59:ff:1f:0a:df:ea:22:4b:
74:2a:48:c3:f4:20:44:f2:71:ef:b9:5a:f2:46:83:55:3b:79:
cb:bc:22:90:73:61:61:18:9b:00:5f:0e:42:e9:e1:8f:09:02:
b8:92:94:47
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQnSAZq/HV7vQVICoorE/cvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMDg0MDgwNGM2NjgwYzQxZjIxZTg3MjZmMzgwYjk1ZTY5
ZTk0NDcwHhcNMjUwMTAyMTM1MDE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWQzZjU0ZTY0YmIyNjdhN2VhZGQ2MDRmYjZlNjQ1MWQ3MWI0ODVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqBr7OLP3HLQtBRpidDOk4ZNfq9B
sr8zugckzlBApL9OizAxtAKkxF0cYsq8ZutHKC1CkMLJImGbVIFcjHHuaUZYc6zN
8XAd5BFYOcyzDhORvsW9yCPSOCmZZOe3AOQt6J6E0wVgUd2TGVGyVjHfZ4bej1xd
G9D9+h3UYmmk4F4VzuRjYVswj4CIjE68FRoHc9OCWMboa0/PPKgh9QnHjFhJz8tI
s22h+zcJNg8d1BMZFEgIep//kT6ABPZwlB+0HCx6C3efG69mPHMdxxSMQnCGhyQ+
LfwmDcC2DY/d0yCEvcaAn7Zsttd+wiUQ2EO2IL6hZ9km5XR+bgxCGXaW+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB7T9U5kuyZ6fq3WBPtuZFHXG0hfMB8GA1UdIwQY
MBaAFI4IQIBMZoDEHyHocm84C5XmnpRHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9jZWU1NzItMzQyMC00NWU0LTg3YjYt
YzI3OTk3NTNjODUzLzEvSHRQMVRtUzdKbnAtcmRZRS0yNWtVZGNiU0Y4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9jZWU1NzItMzQyMC00NWU0LTg3YjYtYzI3OTk3NTNjODUz
LzEvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVdF8MA0G
CSqGSIb3DQEBCwUAA4IBAQAUHRvmZ4lpRNsOsER/XccBdgR5+Hz5WTLj9/836uTw
8fbtSEerwD3GdIxIE2GinTxpE8uQWOPIYmbv+ILP/p91474WqN69V/8LikyiND+D
dY62UA741iQlDi1Cjeq2diyUk8/UfuBGL/8rj6o2Rd5ga1gO0rOl+DahpXW5KcTC
GodvIONVSyQSq90pDW2qFzLs7hNekZCHFKOTWOi2jf7OLfBqn3XdTJ7GlPyAtckt
Fg6jJjkwDyadR9Z1c6WnISIPVoHnqSmVHXVCgMFJfohSWf8fCt/qIkt0KkjD9CBE
8nHvuVryRoNVO3nLvCKQc2FhGJsAXw5C6eGPCQK4kpRH
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:11 2025 by rpki-client on console.sobornost.net