Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/9df809-a8e8-4e12-a25a-c60472e9f717/1/b0eHpcDmofhiq2yDQv5L8LhktMQ.roa
File: b0eHpcDmofhiq2yDQv5L8LhktMQ.roa (raw, json)
Hash identifier: n+x8ttc272B8eeajhUuy0X0SsSR7O/WsKWjyViKV6hg=
Subject key identifier: 6F:47:87:A5:C0:E6:A1:F8:62:AB:6C:83:42:FE:4B:F0:B8:64:B4:C4
Certificate issuer: /CN=94bc3cdac46408c0c8a3581788b510d0f04e9d1f
Certificate serial: 01951881EF273FF248777BA81F9216944D01
Authority key identifier: 94:BC:3C:DA:C4:64:08:C0:C8:A3:58:17:88:B5:10:D0:F0:4E:9D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lLw82sRkCMDIo1gXiLUQ0PBOnR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/9df809-a8e8-4e12-a25a-c60472e9f717/1/b0eHpcDmofhiq2yDQv5L8LhktMQ.roa
Signing time: Tue 18 Feb 2025 10:02:03 +0000
ROA not before: Tue 18 Feb 2025 10:02:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16110
IP address blocks: 5.63.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:18:81:ef:27:3f:f2:48:77:7b:a8:1f:92:16:94:4d:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94bc3cdac46408c0c8a3581788b510d0f04e9d1f
Validity
Not Before: Feb 18 10:02:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6f4787a5c0e6a1f862ab6c8342fe4bf0b864b4c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e2:b3:61:30:99:d4:52:57:da:1f:5b:8e:bf:
9d:33:92:c7:b5:46:45:2d:d2:c1:bc:f4:d5:e0:2c:
90:19:18:2e:7e:2e:f4:88:a4:37:39:ef:ee:dc:6d:
30:64:69:8a:7c:b1:08:bb:07:b2:a2:29:c2:1a:49:
36:ab:08:77:81:9e:41:87:2f:84:a4:35:d6:84:72:
a2:65:0e:b5:94:a9:b4:66:20:df:68:c3:0f:a7:f2:
b6:b9:90:2c:6e:be:66:9b:88:ca:96:37:a3:c0:fa:
34:6d:2f:65:58:b0:03:e1:8f:30:04:60:5b:3c:b9:
ce:4b:a9:54:83:9b:3c:54:18:70:68:cb:7f:ac:1f:
67:46:b2:05:01:3f:1d:9a:16:89:df:08:ee:83:b1:
01:ec:b1:3b:12:37:d1:7b:a0:ef:b6:f8:cd:77:66:
fd:db:ee:15:4a:d8:64:49:97:80:e2:2c:8e:83:c2:
76:d7:6f:d2:61:8f:5b:4f:f9:7d:ab:2b:3a:39:a1:
61:18:d1:57:ad:66:4c:8b:23:8a:9c:0a:e6:2a:ed:
a2:17:b6:54:c2:f6:7c:2e:4c:64:e5:25:23:cb:83:
ee:66:fc:7b:15:24:e7:e5:a1:0d:fd:e9:89:be:b4:
d6:da:85:7e:ff:bf:c5:2d:d8:7a:a3:44:4e:6e:5b:
70:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:47:87:A5:C0:E6:A1:F8:62:AB:6C:83:42:FE:4B:F0:B8:64:B4:C4
X509v3 Authority Key Identifier:
keyid:94:BC:3C:DA:C4:64:08:C0:C8:A3:58:17:88:B5:10:D0:F0:4E:9D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lLw82sRkCMDIo1gXiLUQ0PBOnR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9df809-a8e8-4e12-a25a-c60472e9f717/1/b0eHpcDmofhiq2yDQv5L8LhktMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9df809-a8e8-4e12-a25a-c60472e9f717/1/lLw82sRkCMDIo1gXiLUQ0PBOnR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.63.185.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:4d:2d:5b:45:dd:89:c5:0b:49:61:7c:24:bc:19:45:81:94:
0b:a9:26:ed:9a:81:70:75:bb:49:df:f1:c3:41:d8:c0:e6:e5:
b0:10:7f:08:ba:e6:2b:28:6f:46:e8:3d:cc:72:dd:0b:2e:82:
7d:a8:0c:0c:94:43:93:d2:6b:27:4a:58:22:05:dc:f3:83:48:
2f:31:35:88:63:2f:1a:88:70:d2:7b:19:0f:5f:ab:72:a3:cb:
cd:27:5c:ec:13:b8:4b:77:7b:6e:4d:00:19:31:80:6b:cd:21:
d3:a0:7d:57:d0:bd:2a:97:a3:47:03:96:d8:9f:81:89:e2:69:
cf:35:29:91:ef:70:9a:47:9c:56:10:eb:27:f8:f9:d7:f9:33:
92:93:0b:e3:b1:a6:87:29:2d:9e:45:d0:d0:4a:b8:d2:3c:bd:
51:64:4f:3a:36:b0:fa:85:d1:66:d2:51:24:08:7c:d0:63:df:
2a:dc:87:72:8b:20:30:6a:c0:29:c2:52:c2:d1:f1:24:15:f0:
dd:2b:ac:86:a0:69:20:0d:a6:f4:90:32:61:39:99:7c:84:56:
12:4e:c1:f1:d4:a6:b7:36:2b:96:23:9d:d2:9e:32:05:13:ba:
fd:25:06:24:39:50:8a:56:e0:b7:f3:96:27:1c:af:72:75:61:
31:16:8e:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZUYge8nP/JId3uoH5IWlE0BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0YmMzY2RhYzQ2NDA4YzBjOGEzNTgxNzg4YjUxMGQwZjA0
ZTlkMWYwHhcNMjUwMjE4MTAwMjAzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZjQ3ODdhNWMwZTZhMWY4NjJhYjZjODM0MmZlNGJmMGI4NjRiNGM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+KzYTCZ1FJX2h9bjr+dM5LHtUZF
LdLBvPTV4CyQGRgufi70iKQ3Oe/u3G0wZGmKfLEIuweyoinCGkk2qwh3gZ5Bhy+E
pDXWhHKiZQ61lKm0ZiDfaMMPp/K2uZAsbr5mm4jKljejwPo0bS9lWLAD4Y8wBGBb
PLnOS6lUg5s8VBhwaMt/rB9nRrIFAT8dmhaJ3wjug7EB7LE7EjfRe6DvtvjNd2b9
2+4VSthkSZeA4iyOg8J212/SYY9bT/l9qys6OaFhGNFXrWZMiyOKnArmKu2iF7ZU
wvZ8Lkxk5SUjy4PuZvx7FSTn5aEN/emJvrTW2oV+/7/FLdh6o0RObltwPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG9Hh6XA5qH4Yqtsg0L+S/C4ZLTEMB8GA1UdIwQY
MBaAFJS8PNrEZAjAyKNYF4i1ENDwTp0fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEx3ODJzUmtDTURJbzFnWGlMVVEwUEJPblI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS85ZGY4MDktYThlOC00ZTEyLWEyNWEt
YzYwNDcyZTlmNzE3LzEvYjBlSHBjRG1vZmhpcTJ5RFF2NUw4TGhrdE1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS85ZGY4MDktYThlOC00ZTEyLWEyNWEtYzYwNDcyZTlmNzE3
LzEvbEx3ODJzUmtDTURJbzFnWGlMVVEwUEJPblI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABT+5MA0G
CSqGSIb3DQEBCwUAA4IBAQAtTS1bRd2JxQtJYXwkvBlFgZQLqSbtmoFwdbtJ3/HD
QdjA5uWwEH8IuuYrKG9G6D3Mct0LLoJ9qAwMlEOT0msnSlgiBdzzg0gvMTWIYy8a
iHDSexkPX6tyo8vNJ1zsE7hLd3tuTQAZMYBrzSHToH1X0L0ql6NHA5bYn4GJ4mnP
NSmR73CaR5xWEOsn+PnX+TOSkwvjsaaHKS2eRdDQSrjSPL1RZE86NrD6hdFm0lEk
CHzQY98q3IdyiyAwasApwlLC0fEkFfDdK6yGoGkgDab0kDJhOZl8hFYSTsHx1Ka3
NiuWI53SnjIFE7r9JQYkOVCKVuC385YnHK9ydWExFo5T
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:18 2025 by rpki-client on console.sobornost.net