Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/xSBLAUIBkAaXVfG28KwmA-ZeLjA.roa
File: xSBLAUIBkAaXVfG28KwmA-ZeLjA.roa (raw, json)
Hash identifier: +GtT6G/GYlmVcKLK3ncI4uHy4NjU73KHg0yKe98N+yQ=
Subject key identifier: C5:20:4B:01:42:01:90:06:97:55:F1:B6:F0:AC:26:03:E6:5E:2E:30
Certificate issuer: /CN=d04079bb7070ed0eeea3a1a467c79462bcc5455f
Certificate serial: 01942220070B3E4D330CD2EFE42C883613F3
Authority key identifier: D0:40:79:BB:70:70:ED:0E:EE:A3:A1:A4:67:C7:94:62:BC:C5:45:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/xSBLAUIBkAaXVfG28KwmA-ZeLjA.roa
Signing time: Wed 01 Jan 2025 13:48:31 +0000
ROA not before: Wed 01 Jan 2025 13:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202867
IP address blocks: 185.152.8.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:07:0b:3e:4d:33:0c:d2:ef:e4:2c:88:36:13:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04079bb7070ed0eeea3a1a467c79462bcc5455f
Validity
Not Before: Jan 1 13:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c5204b01420190069755f1b6f0ac2603e65e2e30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:4d:6c:59:17:fa:44:94:f7:72:ca:f2:24:eb:
a0:88:a9:75:bc:87:81:d5:03:f9:aa:ec:04:f2:5a:
d2:1d:b0:84:dd:04:74:c8:d4:87:79:e2:5f:bb:89:
49:72:78:6e:03:b3:1d:eb:1d:b4:fb:13:04:13:fb:
62:2c:b2:5e:48:6d:d9:12:81:71:e2:f2:f0:69:a2:
50:8d:69:b8:01:e3:2a:f5:ca:78:b5:72:63:98:82:
e8:11:01:50:5d:3c:de:00:da:c8:88:32:61:23:b7:
77:33:24:25:f9:62:da:7e:8c:59:14:27:01:de:2b:
4a:40:69:8b:76:c5:c3:70:77:1b:39:e4:af:ed:57:
af:ce:0f:9d:c9:07:77:76:ce:83:38:e9:6c:26:81:
70:35:8a:47:85:8e:51:f0:5b:ed:3d:90:3c:57:04:
8d:77:87:ba:2e:cf:96:16:28:31:7a:c6:fe:d8:70:
3a:dc:20:fe:bc:30:17:c9:2a:86:35:f8:7e:36:fc:
70:36:6d:d4:bc:d8:52:51:d5:ea:0d:f3:c6:09:e6:
4c:5a:f7:39:c5:b0:76:57:6f:83:65:6e:a1:75:13:
06:20:97:76:e4:ad:4e:a0:fc:33:43:6f:ed:67:5e:
f8:2f:b9:c9:2f:4d:ad:ef:92:75:f4:37:33:95:5c:
43:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:20:4B:01:42:01:90:06:97:55:F1:B6:F0:AC:26:03:E6:5E:2E:30
X509v3 Authority Key Identifier:
keyid:D0:40:79:BB:70:70:ED:0E:EE:A3:A1:A4:67:C7:94:62:BC:C5:45:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/xSBLAUIBkAaXVfG28KwmA-ZeLjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a93da0-e155-4324-9ba9-62098d1ec1e6/1/0EB5u3Bw7Q7uo6GkZ8eUYrzFRV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.152.8.0/22
Signature Algorithm: sha256WithRSAEncryption
12:c0:e5:a3:56:82:6f:89:01:ad:19:34:8d:95:ad:cc:88:2e:
5c:b5:44:2f:5e:56:ec:cd:64:dc:c5:39:ed:65:4a:fb:f0:ff:
3f:8f:bd:32:7d:9d:4e:72:16:97:83:9b:82:fa:52:8c:da:a9:
ec:00:31:c5:e9:d5:86:12:e4:06:91:17:38:b6:ee:71:58:52:
b3:de:3e:ab:11:14:51:e9:22:e7:6b:17:db:10:6d:61:9b:8f:
44:41:a6:f3:cb:74:83:21:f8:4d:5f:3c:e0:a4:c8:57:d8:1c:
99:0c:0a:0b:d1:17:60:cc:66:38:d6:7f:e0:09:b9:90:5c:fd:
46:22:bf:59:e7:51:e0:b5:15:42:17:d2:6c:f0:01:b4:66:60:
1c:13:94:a0:b7:dd:2c:ba:68:d3:11:95:23:b2:5e:f5:5e:86:
d9:cd:7d:00:72:d5:4c:e3:00:c3:68:8d:ce:23:02:27:7f:88:
e3:cb:38:40:e7:b1:5b:4f:8a:f9:0d:9b:d3:52:ba:81:59:4c:
50:2b:7d:a8:b7:35:2a:a6:73:57:87:0d:e3:1b:55:97:25:29:
de:5c:25:23:0f:84:01:5a:e6:72:0e:de:6e:b8:f5:e7:01:ed:
0a:d3:08:6b:44:80:2e:b6:7b:9d:fa:52:17:55:ab:5a:89:6a:
72:9f:e2:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiIAcLPk0zDNLv5CyINhPzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwNDA3OWJiNzA3MGVkMGVlZWEzYTFhNDY3Yzc5NDYyYmNj
NTQ1NWYwHhcNMjUwMTAxMTM0ODMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTIwNGIwMTQyMDE5MDA2OTc1NWYxYjZmMGFjMjYwM2U2NWUyZTMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7k1sWRf6RJT3csryJOugiKl1vIeB
1QP5quwE8lrSHbCE3QR0yNSHeeJfu4lJcnhuA7Md6x20+xMEE/tiLLJeSG3ZEoFx
4vLwaaJQjWm4AeMq9cp4tXJjmILoEQFQXTzeANrIiDJhI7d3MyQl+WLafoxZFCcB
3itKQGmLdsXDcHcbOeSv7Vevzg+dyQd3ds6DOOlsJoFwNYpHhY5R8FvtPZA8VwSN
d4e6Ls+WFigxesb+2HA63CD+vDAXySqGNfh+NvxwNm3UvNhSUdXqDfPGCeZMWvc5
xbB2V2+DZW6hdRMGIJd25K1OoPwzQ2/tZ174L7nJL02t75J19DczlVxD0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMUgSwFCAZAGl1XxtvCsJgPmXi4wMB8GA1UdIwQY
MBaAFNBAebtwcO0O7qOhpGfHlGK8xUVfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEVCNXUzQnc3UTd1bzZHa1o4ZVVZcnpGUlY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9hOTNkYTAtZTE1NS00MzI0LTliYTkt
NjIwOThkMWVjMWU2LzEveFNCTEFVSUJrQWFYVmZHMjhLd21BLVplTGpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9hOTNkYTAtZTE1NS00MzI0LTliYTktNjIwOThkMWVjMWU2
LzEvMEVCNXUzQnc3UTd1bzZHa1o4ZVVZcnpGUlY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZgIMA0G
CSqGSIb3DQEBCwUAA4IBAQASwOWjVoJviQGtGTSNla3MiC5ctUQvXlbszWTcxTnt
ZUr78P8/j70yfZ1OchaXg5uC+lKM2qnsADHF6dWGEuQGkRc4tu5xWFKz3j6rERRR
6SLnaxfbEG1hm49EQabzy3SDIfhNXzzgpMhX2ByZDAoL0RdgzGY41n/gCbmQXP1G
Ir9Z51HgtRVCF9Js8AG0ZmAcE5Sgt90sumjTEZUjsl71XobZzX0ActVM4wDDaI3O
IwInf4jjyzhA57FbT4r5DZvTUrqBWUxQK32otzUqpnNXhw3jG1WXJSneXCUjD4QB
WuZyDt5uuPXnAe0K0whrRIAutnud+lIXVataiWpyn+Ig
-----END CERTIFICATE-----
Generated at Fri Apr 25 07:43:44 2025 by rpki-client