Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/5RlzUCtoZ32Oa93A2fEfoYArcWM.roa
File: 5RlzUCtoZ32Oa93A2fEfoYArcWM.roa (raw, json)
Hash identifier: iA8YpgMYI54//mfKtXnw0NA6/nJYpojDOe0q+RA30ZU=
Subject key identifier: E5:19:73:50:2B:68:67:7D:8E:6B:DD:C0:D9:F1:1F:A1:80:2B:71:63
Certificate issuer: /CN=20b5100e798fab7577bf725ac9569ea80e6c2a04
Certificate serial: 01961A0E137E66BC4146E16FC509B77FEBE2
Authority key identifier: 20:B5:10:0E:79:8F:AB:75:77:BF:72:5A:C9:56:9E:A8:0E:6C:2A:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ILUQDnmPq3V3v3JayVaeqA5sKgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/5RlzUCtoZ32Oa93A2fEfoYArcWM.roa
Signing time: Wed 09 Apr 2025 10:17:32 +0000
ROA not before: Wed 09 Apr 2025 10:17:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198949
IP address blocks: 85.115.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1a:0e:13:7e:66:bc:41:46:e1:6f:c5:09:b7:7f:eb:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20b5100e798fab7577bf725ac9569ea80e6c2a04
Validity
Not Before: Apr 9 10:17:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e51973502b68677d8e6bddc0d9f11fa1802b7163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e8:69:e1:b2:2c:6c:14:b8:e2:9d:5f:3c:3d:
f2:4b:8b:52:85:6f:54:7a:a9:8a:49:97:94:0a:95:
36:c8:de:e5:33:1f:80:cb:26:00:ee:a2:01:8f:cc:
97:1f:9c:c5:78:fa:27:79:5c:79:b1:37:9d:a5:51:
19:83:cf:4d:d0:99:ea:20:fc:ba:7b:48:3b:6b:f2:
f9:f3:c3:93:9c:67:e5:6f:4d:ff:3c:34:26:92:5e:
3a:49:17:ab:c4:a2:90:17:4b:0d:1f:ea:18:00:9e:
4f:ca:84:0e:3d:ad:c3:2e:5f:f5:d9:a9:7c:a2:79:
58:18:29:86:9e:17:a9:e8:67:6d:5b:91:60:f0:54:
b1:4c:a7:73:70:1f:99:d6:14:69:56:86:8e:dc:54:
1f:e6:68:4c:23:f2:ac:07:2b:6f:74:f7:65:cc:d8:
20:7e:f2:a6:ac:37:a5:10:33:69:c9:69:d2:a6:0d:
1b:68:53:6d:72:40:56:82:4e:a3:a9:b0:93:98:7c:
cd:b6:d3:66:d0:76:d1:61:db:88:02:f7:54:44:df:
f1:8e:a7:6a:97:28:6f:c3:2c:ca:a1:84:b9:c2:93:
37:55:fa:6e:cb:f0:44:4e:e7:df:3b:c7:62:fd:df:
5f:dd:28:2f:67:72:45:ce:2a:7f:2d:83:2d:0e:2a:
62:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:19:73:50:2B:68:67:7D:8E:6B:DD:C0:D9:F1:1F:A1:80:2B:71:63
X509v3 Authority Key Identifier:
keyid:20:B5:10:0E:79:8F:AB:75:77:BF:72:5A:C9:56:9E:A8:0E:6C:2A:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ILUQDnmPq3V3v3JayVaeqA5sKgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/5RlzUCtoZ32Oa93A2fEfoYArcWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/9e49ff-4264-4647-95a4-8037965693a2/1/ILUQDnmPq3V3v3JayVaeqA5sKgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.115.88.0/24
Signature Algorithm: sha256WithRSAEncryption
09:6f:7f:ca:f4:7a:84:f3:45:25:c0:a6:8d:96:5b:2d:db:49:
2f:0b:27:7a:3c:76:4a:81:d7:a4:63:f6:0b:77:d0:9f:7a:51:
71:57:88:14:a1:ce:bb:d5:9a:77:f2:fb:65:93:4a:ba:66:80:
67:5a:1f:ce:ce:d7:32:46:33:9f:e5:96:a8:95:fb:b6:23:5a:
0e:76:9c:74:8c:aa:20:fa:c9:7a:24:34:2f:df:4c:fd:7e:40:
21:9f:66:0b:c9:c8:3c:94:85:03:f7:20:07:ca:cf:ac:33:2a:
ea:ee:5f:e5:49:65:69:42:b1:a2:cf:00:cc:65:75:c8:61:b4:
b1:81:2a:41:d4:cd:79:d2:94:97:7a:3c:f0:9c:c8:08:79:23:
ce:64:c5:16:97:e6:0a:31:ad:21:bb:6f:dc:76:a0:f6:c9:de:
aa:49:21:45:8d:c2:7b:bf:ec:3f:6e:14:ee:89:48:d1:11:f4:
7f:a3:9d:99:ae:87:94:a8:06:23:3b:99:c7:a3:e1:a7:80:51:
9f:97:c0:75:19:7f:6e:c0:f7:ec:94:a5:47:87:a9:5e:42:d1:
eb:eb:8d:53:ae:6d:e5:eb:9b:76:02:66:c5:d9:ba:80:af:2e:
af:50:10:f7:05:02:29:88:42:f1:b4:5e:5e:76:c2:01:4a:89:
ef:5c:f3:c4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZYaDhN+ZrxBRuFvxQm3f+viMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYjUxMDBlNzk4ZmFiNzU3N2JmNzI1YWM5NTY5ZWE4MGU2
YzJhMDQwHhcNMjUwNDA5MTAxNzMyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTE5NzM1MDJiNjg2NzdkOGU2YmRkYzBkOWYxMWZhMTgwMmI3MTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOhp4bIsbBS44p1fPD3yS4tShW9U
eqmKSZeUCpU2yN7lMx+AyyYA7qIBj8yXH5zFePoneVx5sTedpVEZg89N0JnqIPy6
e0g7a/L588OTnGflb03/PDQmkl46SRerxKKQF0sNH+oYAJ5PyoQOPa3DLl/12al8
onlYGCmGnhep6GdtW5Fg8FSxTKdzcB+Z1hRpVoaO3FQf5mhMI/KsBytvdPdlzNgg
fvKmrDelEDNpyWnSpg0baFNtckBWgk6jqbCTmHzNttNm0HbRYduIAvdURN/xjqdq
lyhvwyzKoYS5wpM3Vfpuy/BETuffO8di/d9f3SgvZ3JFzip/LYMtDipihQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOUZc1AraGd9jmvdwNnxH6GAK3FjMB8GA1UdIwQY
MBaAFCC1EA55j6t1d79yWslWnqgObCoEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUxVUURubVBxM1YzdjNKYXlWYWVxQTVzS2dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS85ZTQ5ZmYtNDI2NC00NjQ3LTk1YTQt
ODAzNzk2NTY5M2EyLzEvNVJselVDdG9aMzJPYTkzQTJmRWZvWUFyY1dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS85ZTQ5ZmYtNDI2NC00NjQ3LTk1YTQtODAzNzk2NTY5M2Ey
LzEvSUxVUURubVBxM1YzdjNKYXlWYWVxQTVzS2dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVXNYMA0G
CSqGSIb3DQEBCwUAA4IBAQAJb3/K9HqE80UlwKaNllst20kvCyd6PHZKgdekY/YL
d9CfelFxV4gUoc671Zp38vtlk0q6ZoBnWh/OztcyRjOf5Zaolfu2I1oOdpx0jKog
+sl6JDQv30z9fkAhn2YLycg8lIUD9yAHys+sMyrq7l/lSWVpQrGizwDMZXXIYbSx
gSpB1M150pSXejzwnMgIeSPOZMUWl+YKMa0hu2/cdqD2yd6qSSFFjcJ7v+w/bhTu
iUjREfR/o52ZroeUqAYjO5nHo+GngFGfl8B1GX9uwPfslKVHh6leQtHr641Trm3l
65t2AmbF2bqAry6vUBD3BQIpiELxtF5edsIBSonvXPPE
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:18 2025 by rpki-client on console.sobornost.net