Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/53cc43-595d-4c8f-ab23-6db3a2d35efd/1/T5dvqj83o58aN8mWgehMO1PEu_g.roa
File: T5dvqj83o58aN8mWgehMO1PEu_g.roa (raw, json)
Hash identifier: j1VdEca/rbn6CmqdM2xdv0MozdftCzjfgqJGNXp2Zjg=
Subject key identifier: 4F:97:6F:AA:3F:37:A3:9F:1A:37:C9:96:81:E8:4C:3B:53:C4:BB:F8
Certificate issuer: /CN=c026567dcb0295bde7709c2a7d601afaea64ee31
Certificate serial: 01856FD51992DD4998E70F3B083661936D71
Authority key identifier: C0:26:56:7D:CB:02:95:BD:E7:70:9C:2A:7D:60:1A:FA:EA:64:EE:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wCZWfcsClb3ncJwqfWAa-upk7jE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/53cc43-595d-4c8f-ab23-6db3a2d35efd/1/T5dvqj83o58aN8mWgehMO1PEu_g.roa
Signing time: Mon 02 Jan 2023 00:15:14 +0000
ROA not before: Mon 02 Jan 2023 00:15:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44285
IP address blocks: 185.206.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:19:92:dd:49:98:e7:0f:3b:08:36:61:93:6d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c026567dcb0295bde7709c2a7d601afaea64ee31
Validity
Not Before: Jan 2 00:15:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f976faa3f37a39f1a37c99681e84c3b53c4bbf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:84:31:81:85:fd:07:1e:46:2d:c5:27:2b:9c:
3b:09:b5:3c:cb:60:1b:5f:a8:c6:c9:ac:f7:8e:81:
ab:a7:be:d8:9c:d9:3a:da:d9:9d:b6:ea:dd:b6:a0:
5a:62:25:80:33:34:9c:bb:39:76:e8:ee:2a:4f:e8:
37:fc:2b:51:d9:0b:54:ff:d3:e4:92:fa:10:f2:a0:
f6:c2:cd:03:e0:ef:72:4c:06:2a:b6:e9:8b:55:d9:
7b:cc:a4:71:5b:02:1a:1a:f6:88:d4:d2:71:48:da:
41:6a:e8:87:f4:44:88:08:84:b4:84:58:88:b5:f2:
a7:5f:f1:06:d6:e8:1d:9b:89:91:33:12:10:85:ee:
dd:67:6d:7d:ba:ed:14:49:ed:01:07:12:74:b8:a0:
e5:5a:3e:fe:c8:1a:d1:32:0c:e1:ff:d5:47:01:bf:
8a:f6:ce:12:a6:cd:4d:e0:19:3f:f1:58:d0:ed:7e:
cf:d0:5c:f1:90:35:c1:5f:14:37:51:7f:df:59:3c:
0f:42:56:98:f6:30:91:9a:5c:31:77:74:d7:24:60:
bc:4f:83:29:41:33:54:a2:3b:5c:7e:d9:78:36:ca:
20:47:e3:ab:b7:25:ce:f4:90:63:d2:c3:4c:3a:62:
73:74:24:8e:54:fd:64:f6:dd:9b:62:95:52:c8:aa:
26:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:97:6F:AA:3F:37:A3:9F:1A:37:C9:96:81:E8:4C:3B:53:C4:BB:F8
X509v3 Authority Key Identifier:
keyid:C0:26:56:7D:CB:02:95:BD:E7:70:9C:2A:7D:60:1A:FA:EA:64:EE:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wCZWfcsClb3ncJwqfWAa-upk7jE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/53cc43-595d-4c8f-ab23-6db3a2d35efd/1/T5dvqj83o58aN8mWgehMO1PEu_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/53cc43-595d-4c8f-ab23-6db3a2d35efd/1/wCZWfcsClb3ncJwqfWAa-upk7jE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.231.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:de:6d:6f:f2:9a:59:06:70:0a:56:6f:b8:49:83:ac:04:34:
64:83:f0:c3:8d:6c:f4:ac:63:d5:ea:b7:1d:83:fc:e8:d3:47:
0c:d4:cb:22:25:06:03:e0:50:e6:ae:a2:bc:e2:14:4d:d7:d9:
d9:93:01:de:aa:ba:54:42:ac:e6:1c:4a:76:24:7c:92:0d:a5:
9f:0a:55:1d:ba:68:c3:98:17:41:b7:d5:63:75:58:ed:de:17:
2d:e7:14:d4:01:f5:be:f5:66:c8:b2:8b:6a:91:80:1d:3e:19:
d5:96:fc:b5:62:c3:84:24:34:3a:70:56:c8:ff:5b:f6:be:d7:
2f:73:bb:61:16:e3:39:86:ec:80:67:8c:1f:b7:ff:76:ac:36:
8b:2c:57:43:dc:dd:22:69:33:cf:6b:3b:a7:2f:75:df:cf:71:
21:29:5a:1f:54:76:e0:2c:e4:85:59:88:c4:21:57:20:5b:a6:
c4:c6:5a:fc:1c:11:6d:ff:ae:f9:f8:f7:80:18:05:0c:10:37:
89:33:a7:c3:98:69:df:b6:5d:37:aa:64:66:a7:e0:06:fe:47:
87:1b:a7:7c:a9:94:8b:6f:b6:59:7b:0b:f2:bf:e3:f1:a7:e7:
bd:24:40:c5:35:5f:4e:50:87:65:d1:48:61:45:b9:52:6a:a2:
04:fa:3f:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv1RmS3UmY5w87CDZhk21xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwMjY1NjdkY2IwMjk1YmRlNzcwOWMyYTdkNjAxYWZhZWE2
NGVlMzEwHhcNMjMwMTAyMDAxNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Zjk3NmZhYTNmMzdhMzlmMWEzN2M5OTY4MWU4NGMzYjUzYzRiYmY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhYQxgYX9Bx5GLcUnK5w7CbU8y2Ab
X6jGyaz3joGrp77YnNk62tmdturdtqBaYiWAMzScuzl26O4qT+g3/CtR2QtU/9Pk
kvoQ8qD2ws0D4O9yTAYqtumLVdl7zKRxWwIaGvaI1NJxSNpBauiH9ESICIS0hFiI
tfKnX/EG1ugdm4mRMxIQhe7dZ219uu0USe0BBxJ0uKDlWj7+yBrRMgzh/9VHAb+K
9s4Sps1N4Bk/8VjQ7X7P0FzxkDXBXxQ3UX/fWTwPQlaY9jCRmlwxd3TXJGC8T4Mp
QTNUojtcftl4NsogR+OrtyXO9JBj0sNMOmJzdCSOVP1k9t2bYpVSyKomgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE+Xb6o/N6OfGjfJloHoTDtTxLv4MB8GA1UdIwQY
MBaAFMAmVn3LApW953CcKn1gGvrqZO4xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0NaV2Zjc0NsYjNuY0p3cWZXQWEtdXBrN2pFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi81M2NjNDMtNTk1ZC00YzhmLWFiMjMt
NmRiM2EyZDM1ZWZkLzEvVDVkdnFqODNvNThhTjhtV2dlaE1PMVBFdV9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi81M2NjNDMtNTk1ZC00YzhmLWFiMjMtNmRiM2EyZDM1ZWZk
LzEvd0NaV2Zjc0NsYjNuY0p3cWZXQWEtdXBrN2pFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc7nMA0G
CSqGSIb3DQEBCwUAA4IBAQCq3m1v8ppZBnAKVm+4SYOsBDRkg/DDjWz0rGPV6rcd
g/zo00cM1MsiJQYD4FDmrqK84hRN19nZkwHeqrpUQqzmHEp2JHySDaWfClUdumjD
mBdBt9VjdVjt3hct5xTUAfW+9WbIsotqkYAdPhnVlvy1YsOEJDQ6cFbI/1v2vtcv
c7thFuM5huyAZ4wft/92rDaLLFdD3N0iaTPPazunL3Xfz3EhKVofVHbgLOSFWYjE
IVcgW6bExlr8HBFt/675+PeAGAUMEDeJM6fDmGnftl03qmRmp+AG/keHG6d8qZSL
b7ZZewvyv+Pxp+e9JEDFNV9OUIdl0UhhRblSaqIE+j+f
-----END CERTIFICATE-----
Generated at Tue Apr 29 18:41:48 2025 by rpki-client