Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/3bd13d-fe95-486f-80ef-f073548352bf/1/Iu-aA6mIgmV7NRaHZwfWxVQwunE.roa
File: Iu-aA6mIgmV7NRaHZwfWxVQwunE.roa (raw, json)
Hash identifier: o5Wzr2WPXf+6jJuX+5+5esP5UlB6RWICl6cgQsSyWJw=
Subject key identifier: 22:EF:9A:03:A9:88:82:65:7B:35:16:87:67:07:D6:C5:54:30:BA:71
Certificate issuer: /CN=3d2384b784f197ea03dac2feda7895fc4b740729
Certificate serial: 019422FB2A15A1CF2145C7632BECB1F53FF5
Authority key identifier: 3D:23:84:B7:84:F1:97:EA:03:DA:C2:FE:DA:78:95:FC:4B:74:07:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PSOEt4Txl-oD2sL-2niV_Et0Byk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/3bd13d-fe95-486f-80ef-f073548352bf/1/Iu-aA6mIgmV7NRaHZwfWxVQwunE.roa
Signing time: Wed 01 Jan 2025 17:47:53 +0000
ROA not before: Wed 01 Jan 2025 17:47:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206626
IP address blocks: 185.85.56.0/22 maxlen: 22
185.85.56.0/24 maxlen: 24
185.85.57.0/24 maxlen: 24
185.85.58.0/24 maxlen: 24
185.85.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:2a:15:a1:cf:21:45:c7:63:2b:ec:b1:f5:3f:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d2384b784f197ea03dac2feda7895fc4b740729
Validity
Not Before: Jan 1 17:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=22ef9a03a98882657b3516876707d6c55430ba71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b3:29:ef:cb:df:a9:0c:ad:cc:a4:26:ef:f8:
c0:cd:c7:30:4b:89:57:fb:73:bd:3a:a1:1a:48:28:
35:fd:05:77:35:d7:32:fa:de:6c:e2:f7:9b:8c:bc:
11:0a:c8:ec:c6:93:15:a6:c5:bc:f3:c7:5f:91:22:
64:ea:8b:d9:3f:18:5a:58:98:f6:e9:f1:91:e1:6b:
1d:06:19:98:de:4e:82:b0:e6:d6:6c:fb:53:f3:24:
4b:03:38:20:3c:d8:50:e3:c4:97:12:86:2d:da:d3:
5d:9b:9d:85:a3:27:d8:5e:e0:59:2b:1c:6d:39:15:
a5:a7:d2:74:43:16:86:53:b1:48:ca:9c:d6:3e:5a:
32:02:cb:84:b9:6f:c0:96:27:ec:c4:ea:36:70:a0:
a8:09:2f:e9:e0:28:80:be:ee:f5:76:7b:f1:a0:8a:
c7:7b:d2:d4:a0:3c:4c:b0:27:60:19:7e:94:a3:23:
0b:2a:9d:f2:68:05:18:1b:07:47:8e:4f:e6:cd:e5:
37:42:3f:28:08:8d:2c:f3:07:d8:39:47:4c:8f:25:
20:31:8e:ac:2a:ed:1b:1a:05:6b:b2:6c:ff:e2:77:
d0:8d:67:12:6d:5f:89:98:e1:70:24:a2:d7:4f:9d:
41:e0:1d:5c:eb:d0:52:05:9d:d1:f1:96:6b:37:16:
60:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:EF:9A:03:A9:88:82:65:7B:35:16:87:67:07:D6:C5:54:30:BA:71
X509v3 Authority Key Identifier:
keyid:3D:23:84:B7:84:F1:97:EA:03:DA:C2:FE:DA:78:95:FC:4B:74:07:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PSOEt4Txl-oD2sL-2niV_Et0Byk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3bd13d-fe95-486f-80ef-f073548352bf/1/Iu-aA6mIgmV7NRaHZwfWxVQwunE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3bd13d-fe95-486f-80ef-f073548352bf/1/PSOEt4Txl-oD2sL-2niV_Et0Byk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.56.0/22
Signature Algorithm: sha256WithRSAEncryption
56:87:3a:41:b9:47:f5:a7:0f:38:77:bb:aa:f3:5d:d7:bc:34:
01:bc:9f:fa:00:fc:d7:e4:89:23:2a:ec:e8:e3:e6:bc:11:16:
0b:93:3a:f6:3f:25:28:d3:eb:59:92:bf:4d:c4:65:90:64:d9:
e3:b3:1a:98:36:3e:ac:a3:72:2a:5a:b0:47:6e:52:87:88:f9:
a1:7c:95:ac:03:28:c0:d7:15:f4:c2:77:08:3a:8d:cb:77:16:
5b:49:5e:70:08:47:0a:0f:20:85:bb:55:e2:00:b4:f4:73:94:
d0:68:a6:89:62:b3:98:4c:79:7d:f3:00:3e:13:00:59:73:45:
eb:5c:af:f9:79:4b:c6:ae:20:5b:c6:66:9e:5a:e3:95:ed:ba:
22:e7:4d:9c:f3:83:14:51:0f:4c:79:33:36:32:7d:30:f7:4a:
f6:65:10:a0:91:9b:79:6d:4b:f2:52:7f:d2:9d:7c:2d:7f:74:
4a:fa:df:cd:2d:1c:0c:38:d1:24:e7:ed:d2:9f:5a:b2:7d:92:
b6:6f:e3:a8:af:fd:c1:58:2b:e8:3c:11:3b:0a:da:01:02:a3:
6f:e1:84:91:3d:9e:08:92:1f:70:54:96:f1:66:2d:8e:a5:32:
0b:19:13:f1:61:9e:ef:a5:e5:37:08:20:60:3c:d0:e1:69:b1:
1a:49:32:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQi+yoVoc8hRcdjK+yx9T/1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkMjM4NGI3ODRmMTk3ZWEwM2RhYzJmZWRhNzg5NWZjNGI3
NDA3MjkwHhcNMjUwMTAxMTc0NzUzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMmVmOWEwM2E5ODg4MjY1N2IzNTE2ODc2NzA3ZDZjNTU0MzBiYTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7Mp78vfqQytzKQm7/jAzccwS4lX
+3O9OqEaSCg1/QV3Ndcy+t5s4vebjLwRCsjsxpMVpsW888dfkSJk6ovZPxhaWJj2
6fGR4WsdBhmY3k6CsObWbPtT8yRLAzggPNhQ48SXEoYt2tNdm52FoyfYXuBZKxxt
ORWlp9J0QxaGU7FIypzWPloyAsuEuW/AlifsxOo2cKCoCS/p4CiAvu71dnvxoIrH
e9LUoDxMsCdgGX6UoyMLKp3yaAUYGwdHjk/mzeU3Qj8oCI0s8wfYOUdMjyUgMY6s
Ku0bGgVrsmz/4nfQjWcSbV+JmOFwJKLXT51B4B1c69BSBZ3R8ZZrNxZggQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCLvmgOpiIJlezUWh2cH1sVUMLpxMB8GA1UdIwQY
MBaAFD0jhLeE8ZfqA9rC/tp4lfxLdAcpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFNPRXQ0VHhsLW9EMnNMLTJuaVZfRXQwQnlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8zYmQxM2QtZmU5NS00ODZmLTgwZWYt
ZjA3MzU0ODM1MmJmLzEvSXUtYUE2bUlnbVY3TlJhSFp3Zld4VlF3dW5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8zYmQxM2QtZmU5NS00ODZmLTgwZWYtZjA3MzU0ODM1MmJm
LzEvUFNPRXQ0VHhsLW9EMnNMLTJuaVZfRXQwQnlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVU4MA0G
CSqGSIb3DQEBCwUAA4IBAQBWhzpBuUf1pw84d7uq813XvDQBvJ/6APzX5IkjKuzo
4+a8ERYLkzr2PyUo0+tZkr9NxGWQZNnjsxqYNj6so3IqWrBHblKHiPmhfJWsAyjA
1xX0wncIOo3LdxZbSV5wCEcKDyCFu1XiALT0c5TQaKaJYrOYTHl98wA+EwBZc0Xr
XK/5eUvGriBbxmaeWuOV7boi502c84MUUQ9MeTM2Mn0w90r2ZRCgkZt5bUvyUn/S
nXwtf3RK+t/NLRwMONEk5+3Sn1qyfZK2b+Oor/3BWCvoPBE7CtoBAqNv4YSRPZ4I
kh9wVJbxZi2OpTILGRPxYZ7vpeU3CCBgPNDhabEaSTKj
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:29 2025 by rpki-client on console.sobornost.net