Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/1b4bdf-67ad-4f0e-81ed-9e5c85af93a5/1/Hpv4xwFO6u4QS-nBnH1t1WRth_4.roa
File: Hpv4xwFO6u4QS-nBnH1t1WRth_4.roa (raw, json)
Hash identifier: m4AC2VvXldFMWOlhO68mmbck7Bkc5gI0KSADkqRSPsY=
Subject key identifier: 1E:9B:F8:C7:01:4E:EA:EE:10:4B:E9:C1:9C:7D:6D:D5:64:6D:87:FE
Certificate issuer: /CN=6d365f0d9bee484c085cf3fe338ad035c3f98479
Certificate serial: 019B79ECE1F190B457545B502C56A6268AEC
Authority key identifier: 6D:36:5F:0D:9B:EE:48:4C:08:5C:F3:FE:33:8A:D0:35:C3:F9:84:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTZfDZvuSEwIXPP-M4rQNcP5hHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/1b4bdf-67ad-4f0e-81ed-9e5c85af93a5/1/Hpv4xwFO6u4QS-nBnH1t1WRth_4.roa
Signing time: Thu 01 Jan 2026 14:18:46 +0000
ROA not before: Thu 01 Jan 2026 14:18:46 +0000
ROA not after: Thu 01 Jul 2027 00:00:00 +0000
asID: 204949
IP address blocks: 176.53.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:79:ec:e1:f1:90:b4:57:54:5b:50:2c:56:a6:26:8a:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d365f0d9bee484c085cf3fe338ad035c3f98479
Validity
Not Before: Jan 1 14:18:46 2026 GMT
Not After : Jul 1 00:00:00 2027 GMT
Subject: CN=1e9bf8c7014eeaee104be9c19c7d6dd5646d87fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7e:0c:3a:99:c5:f5:c2:07:1c:e6:af:92:21:
34:46:4e:c3:bf:49:9f:a4:6f:81:7b:59:3b:61:b9:
b7:3a:36:b0:bb:fb:96:e6:7b:ff:f6:ff:e3:49:6c:
ca:46:ed:d9:bd:4b:cf:80:6e:91:e9:d3:61:6f:2e:
ab:c1:0e:8d:e0:8d:6a:de:61:21:ca:9d:8b:ed:02:
62:d4:14:3d:21:23:cc:a3:3b:8b:d0:07:e9:cb:0a:
28:d6:02:d5:fb:aa:b3:27:1f:b8:ea:92:b1:b5:e5:
a4:60:ee:cf:fc:67:a9:84:c2:94:30:b1:e3:e5:11:
dd:d9:b5:05:4e:a1:25:f9:f8:03:6b:60:b6:0a:c3:
63:2b:89:db:46:f4:5c:82:d9:e5:cd:a6:a4:58:7a:
90:7b:96:51:4d:94:7e:1f:3c:78:25:11:d3:43:21:
ad:be:29:28:d6:14:9c:9d:0f:fa:01:84:4d:60:ef:
0d:e9:b9:4c:88:0d:7c:70:d8:30:aa:36:10:d4:73:
ea:c3:00:05:01:6f:6a:76:ad:60:b0:15:4b:0c:3b:
72:d0:6b:5a:67:0d:72:ed:30:8b:9b:a0:d7:eb:c5:
50:d8:43:21:da:a6:d4:f8:e6:52:72:94:22:3c:5f:
a1:10:b6:c6:92:d2:ae:7b:75:3d:d9:0c:76:67:58:
db:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:9B:F8:C7:01:4E:EA:EE:10:4B:E9:C1:9C:7D:6D:D5:64:6D:87:FE
X509v3 Authority Key Identifier:
keyid:6D:36:5F:0D:9B:EE:48:4C:08:5C:F3:FE:33:8A:D0:35:C3:F9:84:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTZfDZvuSEwIXPP-M4rQNcP5hHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1b4bdf-67ad-4f0e-81ed-9e5c85af93a5/1/Hpv4xwFO6u4QS-nBnH1t1WRth_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1b4bdf-67ad-4f0e-81ed-9e5c85af93a5/1/bTZfDZvuSEwIXPP-M4rQNcP5hHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.145.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:c3:b5:de:fd:72:50:41:57:1c:8d:c7:df:6d:d0:0b:45:23:
4f:f2:79:98:44:3e:6f:25:46:fa:2a:11:6d:47:ca:8f:b4:27:
4f:44:d7:f7:5b:55:3a:91:e6:0e:64:23:4f:dc:54:b4:c2:f4:
2e:8b:a9:5d:09:e7:0b:43:2a:c9:0b:1e:3f:d3:69:b9:24:ce:
f5:3b:77:7e:62:b5:a8:cb:35:f4:49:38:b6:72:69:29:d9:53:
53:14:b9:0c:2a:09:53:c8:91:7a:4c:8d:6f:af:f1:a3:71:25:
a9:0a:b0:52:0f:2c:39:f5:f5:33:17:d2:39:8a:65:43:29:c2:
07:d7:7e:3d:d2:92:81:0d:0f:67:6f:82:65:6b:de:da:47:16:
63:d9:14:ec:24:2f:23:e4:76:c4:05:39:5f:c1:53:83:7a:de:
a2:bc:e9:90:8e:84:d1:56:7c:95:71:01:ba:3f:7a:42:60:7c:
eb:54:eb:33:c5:0e:4d:63:67:f5:e8:3e:1b:59:b6:a1:c4:72:
27:6c:c1:69:a8:c0:72:91:84:9b:9c:77:53:b9:b6:0f:2b:05:
06:3a:9a:5b:07:a8:99:0a:00:54:a7:48:79:2e:b2:0b:50:42:
71:00:e7:8b:11:c7:1d:30:56:fa:e3:63:65:0c:92:46:aa:f0:
5d:28:b8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:29:17 2026 by rpki-client