Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/itzE0xDc7Ed_isK4AHpghv2Rwx0.roa
File: itzE0xDc7Ed_isK4AHpghv2Rwx0.roa (raw, json)
Hash identifier: hFMUWP8HSIa3jUGL4S6vwaZpg8RitcYR7NXIvfp8JAE=
Subject key identifier: 8A:DC:C4:D3:10:DC:EC:47:7F:8A:C2:B8:00:7A:60:86:FD:91:C3:1D
Certificate issuer: /CN=1a001d77025f052af7d0e62e1701016b9e22e002
Certificate serial: 019423D73DAB1EE83C38A10DDD646FCF66B1
Authority key identifier: 1A:00:1D:77:02:5F:05:2A:F7:D0:E6:2E:17:01:01:6B:9E:22:E0:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GgAddwJfBSr30OYuFwEBa54i4AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/itzE0xDc7Ed_isK4AHpghv2Rwx0.roa
Signing time: Wed 01 Jan 2025 21:48:15 +0000
ROA not before: Wed 01 Jan 2025 21:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205451
IP address blocks: 185.218.44.0/22 maxlen: 22
2a0c:8b00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:3d:ab:1e:e8:3c:38:a1:0d:dd:64:6f:cf:66:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a001d77025f052af7d0e62e1701016b9e22e002
Validity
Not Before: Jan 1 21:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8adcc4d310dcec477f8ac2b8007a6086fd91c31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8a:c5:85:7e:ea:1f:94:63:5c:f0:62:6c:c5:
6c:3d:82:b3:67:79:b5:3f:e8:10:e6:1f:c6:11:e8:
cb:68:ce:88:7a:a5:49:4c:80:5f:a1:e9:d2:43:8b:
91:29:97:aa:7f:00:d0:f9:b8:99:75:70:a6:33:03:
9c:26:a2:12:4e:c2:6c:66:ae:9e:b9:4e:ff:c5:22:
cd:d7:b0:1f:58:63:19:04:15:d6:96:41:9c:01:03:
2d:2b:ea:36:0d:24:ff:f3:df:5c:7f:ca:6d:05:86:
f0:bc:66:51:e5:83:ae:6f:9f:a6:75:e5:b4:8b:45:
6c:36:f8:9f:5c:b2:5b:79:de:92:73:33:d1:10:ca:
05:f7:42:fa:a7:c6:3f:ce:d1:3b:a2:e3:3b:41:09:
9e:d2:78:a2:91:06:e9:68:b7:ab:61:50:b0:6a:c2:
8b:2f:3f:3b:cb:3d:d2:70:eb:3c:d9:8f:b4:80:c5:
51:d5:c0:4e:0d:9c:f7:76:36:e2:84:bc:93:a2:17:
b7:5f:53:1f:65:f0:7b:cd:fa:84:8d:1a:20:8b:29:
1c:2e:2b:7c:3c:49:c0:87:30:12:4a:99:34:b4:f7:
a9:36:ec:c6:b9:8f:80:96:52:a6:f6:b6:d3:2d:24:
6c:e5:bf:cd:7c:a3:47:e6:13:5c:1f:ba:05:b7:e2:
a0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:DC:C4:D3:10:DC:EC:47:7F:8A:C2:B8:00:7A:60:86:FD:91:C3:1D
X509v3 Authority Key Identifier:
keyid:1A:00:1D:77:02:5F:05:2A:F7:D0:E6:2E:17:01:01:6B:9E:22:E0:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GgAddwJfBSr30OYuFwEBa54i4AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/itzE0xDc7Ed_isK4AHpghv2Rwx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/1f9ced-6bc2-486b-a4b6-09bdeb6afabd/1/GgAddwJfBSr30OYuFwEBa54i4AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.44.0/22
IPv6:
2a0c:8b00::/32
Signature Algorithm: sha256WithRSAEncryption
4d:1f:37:62:f6:37:a7:d2:94:9f:98:c7:4a:e8:d2:ef:41:88:
6a:a6:4e:e6:be:cc:8b:d4:ef:79:c8:df:22:6a:c9:04:50:b7:
05:7a:6d:6b:d3:f7:47:8a:4c:ea:c4:71:90:6c:49:6b:16:e7:
a9:ce:71:36:1a:29:e8:6e:8b:14:a4:da:b1:3c:53:ea:dd:ab:
d2:2b:9b:c1:d0:e1:f2:88:13:6d:71:5c:81:e0:d6:c1:39:b0:
39:de:2e:dd:94:f4:bf:32:13:cc:66:31:3e:d0:f4:16:79:fe:
d2:d4:4a:62:50:55:d5:98:c3:70:a9:37:90:2f:a3:36:73:5d:
13:02:d4:35:c9:f8:0f:de:b7:70:70:77:38:34:79:d7:d0:e4:
d8:c4:bf:a0:2b:48:cc:f4:d3:69:f1:bd:b6:fc:a9:52:5e:4f:
39:10:fa:b2:36:7d:db:15:a9:8f:7b:e9:a8:7b:47:f4:e7:1a:
de:d4:00:32:38:b4:9f:63:7f:ea:55:97:4d:3d:72:da:c7:29:
6f:c9:99:de:e3:04:db:5d:b0:1a:35:15:50:de:39:ac:1e:75:
c5:5e:20:a8:77:75:6a:9d:24:18:7c:50:ee:f2:3e:c2:5b:f2:
85:0b:0a:e1:4c:8b:44:af:d5:36:79:cf:f8:16:0c:77:db:04:
b8:46:a6:91
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAZQj1z2rHug8OKEN3WRvz2axMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhMDAxZDc3MDI1ZjA1MmFmN2QwZTYyZTE3MDEwMTZiOWUy
MmUwMDIwHhcNMjUwMTAxMjE0ODE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWRjYzRkMzEwZGNlYzQ3N2Y4YWMyYjgwMDdhNjA4NmZkOTFjMzFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtorFhX7qH5RjXPBibMVsPYKzZ3m1
P+gQ5h/GEejLaM6IeqVJTIBfoenSQ4uRKZeqfwDQ+biZdXCmMwOcJqISTsJsZq6e
uU7/xSLN17AfWGMZBBXWlkGcAQMtK+o2DST/899cf8ptBYbwvGZR5YOub5+mdeW0
i0VsNvifXLJbed6SczPREMoF90L6p8Y/ztE7ouM7QQme0niikQbpaLerYVCwasKL
Lz87yz3ScOs82Y+0gMVR1cBODZz3djbihLyTohe3X1MfZfB7zfqEjRogiykcLit8
PEnAhzASSpk0tPepNuzGuY+AllKm9rbTLSRs5b/NfKNH5hNcH7oFt+KgnwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFIrcxNMQ3OxHf4rCuAB6YIb9kcMdMB8GA1UdIwQY
MBaAFBoAHXcCXwUq99DmLhcBAWueIuACMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2dBZGR3SmZCU3IzME9ZdUZ3RUJhNTRpNEFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8xZjljZWQtNmJjMi00ODZiLWE0YjYt
MDliZGViNmFmYWJkLzEvaXR6RTB4RGM3RWRfaXNLNEFIcGdodjJSd3gwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy8xZjljZWQtNmJjMi00ODZiLWE0YjYtMDliZGViNmFmYWJk
LzEvR2dBZGR3SmZCU3IzME9ZdUZ3RUJhNTRpNEFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCudosMA0E
AgACMAcDBQAqDIsAMA0GCSqGSIb3DQEBCwUAA4IBAQBNHzdi9jen0pSfmMdK6NLv
QYhqpk7mvsyL1O95yN8iaskEULcFem1r0/dHikzqxHGQbElrFuepznE2GinobosU
pNqxPFPq3avSK5vB0OHyiBNtcVyB4NbBObA53i7dlPS/MhPMZjE+0PQWef7S1Epi
UFXVmMNwqTeQL6M2c10TAtQ1yfgP3rdwcHc4NHnX0OTYxL+gK0jM9NNp8b22/KlS
Xk85EPqyNn3bFamPe+moe0f05xre1AAyOLSfY3/qVZdNPXLaxylvyZne4wTbXbAa
NRVQ3jmsHnXFXiCod3VqnSQYfFDu8j7CW/KFCwrhTItEr9U2ec/4Fgx32wS4RqaR
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:48 2025 by rpki-client on console.sobornost.net