Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/U9LtbwPPB86BDhAy_rjEEanmBi4.roa
File: U9LtbwPPB86BDhAy_rjEEanmBi4.roa (raw, json)
Hash identifier: n2f6ykIaBk67onFDxWMKqalYvlFCNkWOuJFN0Sesm0U=
Subject key identifier: 53:D2:ED:6F:03:CF:07:CE:81:0E:10:32:FE:B8:C4:11:A9:E6:06:2E
Certificate issuer: /CN=56e3353d5f423ad4271c3261caa543140530bddb
Certificate serial: 019426D97E0150EDAFC5637D8D909D948541
Authority key identifier: 56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/U9LtbwPPB86BDhAy_rjEEanmBi4.roa
Signing time: Thu 02 Jan 2025 11:49:35 +0000
ROA not before: Thu 02 Jan 2025 11:49:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41794
IP address blocks: 5.44.170.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:7e:01:50:ed:af:c5:63:7d:8d:90:9d:94:85:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56e3353d5f423ad4271c3261caa543140530bddb
Validity
Not Before: Jan 2 11:49:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53d2ed6f03cf07ce810e1032feb8c411a9e6062e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fa:a4:15:be:af:02:66:bf:a2:37:23:9e:7d:
4b:72:7b:aa:12:80:8d:33:16:45:25:44:29:04:9e:
2f:8a:e2:d3:5e:58:39:48:7a:53:dc:35:f9:a5:98:
5b:80:69:cb:13:7f:7c:be:18:31:0f:4c:a0:34:7e:
67:c6:f4:e2:5d:64:1d:df:b9:ef:b1:49:40:b7:1d:
5a:9d:37:3c:94:3f:61:6f:5c:b2:bd:3a:e8:df:1c:
22:f9:f9:f8:94:b8:bb:69:18:33:60:04:84:e2:7f:
df:55:94:04:6b:92:d4:b7:a8:0c:97:71:5d:a3:f2:
a1:e0:03:82:ea:d7:e2:9c:da:da:95:95:b6:2a:52:
a8:ea:59:62:d9:06:00:d8:85:55:c6:a6:f7:9b:c9:
50:5c:6e:5c:26:f0:63:08:f9:cc:b4:5b:aa:13:d6:
4e:9a:37:17:b2:18:1c:87:c9:18:0d:61:c5:2f:12:
e1:b5:17:a0:26:73:ab:1d:9d:f5:2f:eb:40:a6:6c:
5b:8f:7d:98:70:2f:1d:f3:d7:58:56:89:d9:83:c7:
b4:6e:9d:71:a7:26:b9:8e:8c:07:de:08:00:f4:5f:
75:3c:84:00:8a:56:45:38:25:ee:ca:9f:d4:dc:f3:
d2:a0:c5:5a:e8:6e:07:01:70:b8:c4:d1:f3:b1:a2:
8b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D2:ED:6F:03:CF:07:CE:81:0E:10:32:FE:B8:C4:11:A9:E6:06:2E
X509v3 Authority Key Identifier:
keyid:56:E3:35:3D:5F:42:3A:D4:27:1C:32:61:CA:A5:43:14:05:30:BD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VuM1PV9COtQnHDJhyqVDFAUwvds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/U9LtbwPPB86BDhAy_rjEEanmBi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6109d6-0a8a-4bf6-a0e2-e52da3b86754/1/VuM1PV9COtQnHDJhyqVDFAUwvds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.170.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:9b:20:38:72:8e:4c:9a:01:77:82:80:b1:38:6b:f8:e3:83:
00:4f:9c:1e:f7:85:fc:8f:ec:4b:cb:6b:53:b6:64:76:6b:7e:
5d:8d:fa:0f:e1:66:e7:80:e1:65:47:39:aa:87:37:05:0a:5a:
fc:d1:f8:38:e8:cb:0c:28:f7:8c:9b:5d:af:e1:b0:31:14:28:
c6:0c:03:b6:3a:a7:e6:75:8e:a6:76:99:e6:c8:92:af:1f:2e:
69:aa:9c:3d:40:8a:dd:6c:89:1b:85:dd:0e:a1:27:a8:78:2b:
3d:4f:fe:3c:56:26:c0:77:d2:de:81:5c:58:66:da:d6:89:22:
4d:e3:fd:db:d4:58:f9:e0:c3:1b:db:99:00:97:9e:80:6b:4d:
e6:05:2d:ef:58:8f:aa:9c:ca:b4:76:1c:82:e0:bb:de:8c:0c:
36:66:26:18:73:b7:53:12:63:7b:d5:33:04:44:d8:80:62:5f:
e5:4a:d8:a2:3a:2f:f9:e1:9f:5e:8b:b2:33:7e:cc:92:41:82:
6f:28:04:6c:d6:3b:7f:05:aa:0e:bd:5c:49:eb:ec:e0:ce:74:
a8:d1:51:0b:2a:5d:e4:42:e1:09:ea:32:b9:99:f0:a4:d3:12:
25:e8:60:85:a4:67:08:b1:c6:23:d3:5e:02:43:42:bf:4d:8a:
94:f7:49:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQm2X4BUO2vxWN9jZCdlIVBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2ZTMzNTNkNWY0MjNhZDQyNzFjMzI2MWNhYTU0MzE0MDUz
MGJkZGIwHhcNMjUwMTAyMTE0OTM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2QyZWQ2ZjAzY2YwN2NlODEwZTEwMzJmZWI4YzQxMWE5ZTYwNjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/qkFb6vAma/ojcjnn1LcnuqEoCN
MxZFJUQpBJ4viuLTXlg5SHpT3DX5pZhbgGnLE398vhgxD0ygNH5nxvTiXWQd37nv
sUlAtx1anTc8lD9hb1yyvTro3xwi+fn4lLi7aRgzYASE4n/fVZQEa5LUt6gMl3Fd
o/Kh4AOC6tfinNralZW2KlKo6lli2QYA2IVVxqb3m8lQXG5cJvBjCPnMtFuqE9ZO
mjcXshgch8kYDWHFLxLhtRegJnOrHZ31L+tApmxbj32YcC8d89dYVonZg8e0bp1x
pya5jowH3ggA9F91PIQAilZFOCXuyp/U3PPSoMVa6G4HAXC4xNHzsaKLcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFPS7W8DzwfOgQ4QMv64xBGp5gYuMB8GA1UdIwQY
MBaAFFbjNT1fQjrUJxwyYcqlQxQFML3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnVNMVBWOUNPdFFuSERKaHlxVkRGQVV3dmRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS82MTA5ZDYtMGE4YS00YmY2LWEwZTIt
ZTUyZGEzYjg2NzU0LzEvVTlMdGJ3UFBCODZCRGhBeV9yakVFYW5tQmk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS82MTA5ZDYtMGE4YS00YmY2LWEwZTItZTUyZGEzYjg2NzU0
LzEvVnVNMVBWOUNPdFFuSERKaHlxVkRGQVV3dmRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBSyqMA0G
CSqGSIb3DQEBCwUAA4IBAQAdmyA4co5MmgF3goCxOGv444MAT5we94X8j+xLy2tT
tmR2a35djfoP4WbngOFlRzmqhzcFClr80fg46MsMKPeMm12v4bAxFCjGDAO2Oqfm
dY6mdpnmyJKvHy5pqpw9QIrdbIkbhd0OoSeoeCs9T/48VibAd9LegVxYZtrWiSJN
4/3b1Fj54MMb25kAl56Aa03mBS3vWI+qnMq0dhyC4LvejAw2ZiYYc7dTEmN71TME
RNiAYl/lStiiOi/54Z9ei7IzfsySQYJvKARs1jt/BaoOvVxJ6+zgznSo0VELKl3k
QuEJ6jK5mfCk0xIl6GCFpGcIscYj014CQ0K/TYqU90mc
-----END CERTIFICATE-----
Generated at Fri Apr 25 01:34:09 2025 by rpki-client