Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hXap7hNXLEAQarnfnwYswdCAdkQ.roa
File: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (raw, json)
Hash identifier: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=
Subject key identifier: 85:76:A9:EE:13:57:2C:40:10:6A:B9:DF:9F:06:2C:C1:D0:80:76:44
Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541
Certificate serial: 01942747ABA0BCA1221DC994B7EEAD25275F
Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hXap7hNXLEAQarnfnwYswdCAdkQ.roa
Signing time: Thu 02 Jan 2025 13:49:55 +0000
ROA not before: Thu 02 Jan 2025 13:49:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57795
IP address blocks: 185.121.112.0/22 maxlen: 24
2a06:9e00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:ab:a0:bc:a1:22:1d:c9:94:b7:ee:ad:25:27:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=863841506d026131965057409a1604a5671f0541
Validity
Not Before: Jan 2 13:49:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8576a9ee13572c40106ab9df9f062cc1d0807644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:14:3c:37:4f:57:da:0f:b1:8e:5f:63:a4:a8:
80:fc:4d:b2:00:73:01:19:51:2c:05:9b:49:7d:9f:
96:2d:17:7b:43:a5:87:3c:2d:ce:8c:d9:e2:25:ef:
18:45:7d:e9:14:5c:f1:f9:b3:2d:80:51:4b:dc:10:
77:18:c5:cb:8e:12:44:3b:90:5b:8d:9b:c7:ad:5b:
ea:ed:da:4d:c9:70:00:f1:b6:33:d4:bb:93:4a:61:
9a:e5:2b:ae:38:c0:f6:ca:c1:95:e6:dc:08:54:6b:
46:12:b9:41:0d:10:3c:7e:bc:18:55:f6:8a:ec:b6:
42:48:81:09:26:56:3c:a6:51:4a:21:af:11:2c:14:
4d:d3:4e:81:f6:86:ad:fc:ad:be:0c:53:34:f0:5d:
7a:e0:bb:15:ee:e9:3a:eb:b5:f8:71:0a:4d:d0:04:
6e:7b:7b:b9:19:73:d7:7a:f0:9e:d0:0b:11:77:b1:
ab:12:85:bb:99:1f:45:b5:27:5c:fa:6f:4b:da:bb:
4c:01:d7:0b:b6:f5:af:ec:eb:cd:8c:04:59:55:a5:
0b:0c:62:8d:3a:e2:40:f1:59:81:26:24:29:0f:bd:
71:07:ed:34:24:f4:5d:20:db:3f:d0:de:d5:fe:a4:
de:e2:e9:4c:d4:3b:e1:c4:22:9e:ce:8b:8c:82:df:
eb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:76:A9:EE:13:57:2C:40:10:6A:B9:DF:9F:06:2C:C1:D0:80:76:44
X509v3 Authority Key Identifier:
keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hXap7hNXLEAQarnfnwYswdCAdkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.112.0/22
IPv6:
2a06:9e00::/29
Signature Algorithm: sha256WithRSAEncryption
52:d2:8d:ee:0a:9d:39:e7:65:48:8f:78:3d:35:ce:f0:2d:5a:
2e:f0:87:b1:f8:39:9e:4f:fd:8d:3e:f8:ba:10:8e:44:e1:27:
db:76:8c:7b:d9:56:ff:8f:e3:c2:a0:0d:fc:1b:27:c9:4f:d4:
cb:ae:33:22:e5:9c:f3:d4:5b:91:29:d2:07:68:ec:ac:81:81:
ef:68:a2:d1:5b:d2:0d:c3:f1:a3:a8:3f:52:73:57:21:74:7e:
3c:0b:a5:ae:68:2d:b4:d7:5f:dc:c2:db:bd:b5:ea:bc:e1:62:
5e:80:46:f2:b3:2f:c8:38:d4:15:6c:82:e1:aa:bf:57:59:29:
19:61:51:53:83:73:7b:d6:c0:07:84:77:82:1b:b1:cf:44:93:
39:db:44:15:22:01:0d:a6:f6:53:9d:fc:ac:74:13:b5:b1:fb:
6d:83:75:e5:db:e0:ee:78:d0:08:1b:ac:e2:1b:75:7c:24:10:
96:ba:22:78:16:7c:3f:74:59:ee:c7:db:1b:9b:46:16:17:90:
f1:06:5e:72:f6:51:69:49:c2:80:b0:5b:1f:f2:bb:e8:b2:f1:
a8:14:4d:9e:2e:13:3c:01:7e:06:45:0a:12:04:0f:81:8c:5e:
94:c7:09:58:93:06:8e:30:34:e8:3a:9c:4a:9e:eb:a5:5e:b7:
c3:26:cd:2d
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQnR6ugvKEiHcmUt+6tJSdfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx
ZjA1NDEwHhcNMjUwMTAyMTM0OTU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTc2YTllZTEzNTcyYzQwMTA2YWI5ZGY5ZjA2MmNjMWQwODA3NjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthQ8N09X2g+xjl9jpKiA/E2yAHMB
GVEsBZtJfZ+WLRd7Q6WHPC3OjNniJe8YRX3pFFzx+bMtgFFL3BB3GMXLjhJEO5Bb
jZvHrVvq7dpNyXAA8bYz1LuTSmGa5SuuOMD2ysGV5twIVGtGErlBDRA8frwYVfaK
7LZCSIEJJlY8plFKIa8RLBRN006B9oat/K2+DFM08F164LsV7uk667X4cQpN0ARu
e3u5GXPXevCe0AsRd7GrEoW7mR9FtSdc+m9L2rtMAdcLtvWv7OvNjARZVaULDGKN
OuJA8VmBJiQpD71xB+00JPRdINs/0N7V/qTe4ulM1DvhxCKezouMgt/rowIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFIV2qe4TVyxAEGq5358GLMHQgHZEMB8GA1UdIwQY
MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt
M2JmYTA1MDkyMDFmLzEvaFhhcDdoTlhMRUFRYXJuZm53WXN3ZENBZGtRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm
LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXlwMA0E
AgACMAcDBQMqBp4AMA0GCSqGSIb3DQEBCwUAA4IBAQBS0o3uCp0552VIj3g9Nc7w
LVou8Iex+DmeT/2NPvi6EI5E4Sfbdox72Vb/j+PCoA38GyfJT9TLrjMi5Zzz1FuR
KdIHaOysgYHvaKLRW9INw/GjqD9Sc1chdH48C6WuaC2011/cwtu9teq84WJegEby
sy/IONQVbILhqr9XWSkZYVFTg3N71sAHhHeCG7HPRJM520QVIgENpvZTnfysdBO1
sfttg3Xl2+DueNAIG6ziG3V8JBCWuiJ4Fnw/dFnux9sbm0YWF5DxBl5y9lFpScKA
sFsf8rvosvGoFE2eLhM8AX4GRQoSBA+BjF6UxwlYkwaOMDToOpxKnuulXrfDJs0t
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net