Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/7b7bd6-b538-4960-8559-dd49ecc26095/1/UMCwwKy1mdru5x8odjrML6E-iug.roa
File: UMCwwKy1mdru5x8odjrML6E-iug.roa (raw, json)
Hash identifier: B5zZRjqoCldth2bV2O4tywFTV5cYuj0RG6Np/XBkPdE=
Subject key identifier: 50:C0:B0:C0:AC:B5:99:DA:EE:E7:1F:28:76:3A:CC:2F:A1:3E:8A:E8
Certificate issuer: /CN=ca1df2bbccc02e4e7f464d69faaf3d6c3723495e
Certificate serial: 019424457395C3866114FEE3950582077471
Authority key identifier: CA:1D:F2:BB:CC:C0:2E:4E:7F:46:4D:69:FA:AF:3D:6C:37:23:49:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yh3yu8zALk5_Rk1p-q89bDcjSV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/7b7bd6-b538-4960-8559-dd49ecc26095/1/UMCwwKy1mdru5x8odjrML6E-iug.roa
Signing time: Wed 01 Jan 2025 23:48:38 +0000
ROA not before: Wed 01 Jan 2025 23:48:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206912
IP address blocks: 185.105.172.0/22 maxlen: 22
185.166.64.0/22 maxlen: 22
185.170.232.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:73:95:c3:86:61:14:fe:e3:95:05:82:07:74:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca1df2bbccc02e4e7f464d69faaf3d6c3723495e
Validity
Not Before: Jan 1 23:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50c0b0c0acb599daeee71f28763acc2fa13e8ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:8f:ba:83:eb:f9:79:42:ff:53:df:91:7e:7f:
c7:f7:e1:44:13:74:cb:c1:fc:85:82:0c:f6:35:45:
cc:13:55:d6:8a:cd:41:e0:a3:0c:e2:ff:b6:5c:01:
9e:ca:e3:3f:4a:d9:9f:18:08:43:d3:2c:da:64:db:
5e:35:99:b1:92:75:b2:91:0d:03:dd:48:01:8c:ca:
53:c2:08:bc:85:1e:f8:5c:1b:2a:51:6a:8c:4e:b1:
71:ff:d0:dd:f4:8d:8d:69:e9:d6:67:a2:16:55:b9:
49:03:84:f5:26:16:e4:f7:93:13:27:98:77:78:0c:
d1:cd:38:51:71:33:a1:d5:68:a2:8a:9f:4c:6e:8a:
95:06:4b:19:d3:2a:83:b4:a8:97:4d:0e:69:68:86:
ad:df:c0:d6:e3:54:51:38:4e:fa:32:03:73:95:05:
3f:4a:c7:9f:eb:8f:00:64:30:51:88:17:94:3b:68:
fe:67:93:d4:70:bf:5f:86:23:38:4b:2b:ae:ef:53:
de:16:e4:73:e8:81:14:03:9f:7c:24:13:31:c0:db:
c5:4a:6a:da:2a:9c:60:24:03:8c:55:1a:0a:f8:c3:
1b:76:60:7b:7d:df:0f:c1:63:7f:82:0d:6b:c9:47:
ce:97:f0:3b:61:bc:f5:81:b5:ee:23:3a:21:2c:db:
c7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C0:B0:C0:AC:B5:99:DA:EE:E7:1F:28:76:3A:CC:2F:A1:3E:8A:E8
X509v3 Authority Key Identifier:
keyid:CA:1D:F2:BB:CC:C0:2E:4E:7F:46:4D:69:FA:AF:3D:6C:37:23:49:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yh3yu8zALk5_Rk1p-q89bDcjSV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7b7bd6-b538-4960-8559-dd49ecc26095/1/UMCwwKy1mdru5x8odjrML6E-iug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7b7bd6-b538-4960-8559-dd49ecc26095/1/yh3yu8zALk5_Rk1p-q89bDcjSV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.172.0/22
185.166.64.0/22
185.170.232.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:82:8b:35:c9:7a:a7:1a:e2:f2:bb:9f:ba:d8:ce:8f:45:60:
ce:09:95:72:c6:a8:4a:ed:eb:d5:9d:ef:3f:d2:b4:f9:da:56:
ad:cc:8c:ab:96:14:9c:36:01:e2:a4:4c:77:f8:55:77:56:b5:
0a:c9:19:90:2a:6b:5d:2b:ee:93:b8:58:8b:ec:bb:c0:bb:f3:
f4:17:2c:78:a8:d4:0c:bd:7d:f9:88:0c:d7:fb:d3:6f:2e:36:
00:fc:6b:ab:27:77:12:57:fa:37:6e:2a:8f:da:9e:d3:08:38:
80:4b:50:5b:8e:01:0a:63:6f:7d:a4:27:63:74:a2:e6:e5:12:
6a:cf:88:c8:6b:f2:35:82:0f:05:26:6e:6f:9a:59:bc:f7:42:
65:44:a1:50:ae:72:89:27:84:94:ae:3d:7a:7c:f2:f9:9e:10:
f8:70:1f:81:46:4d:29:6e:b2:5a:cf:38:bb:67:74:25:6e:fd:
af:d1:e9:e7:fe:e0:6f:eb:f0:3d:17:9c:32:92:14:25:5f:3e:
1f:69:4f:02:b9:4c:38:f5:0c:c6:b1:27:b8:43:53:28:cf:d3:
64:e3:20:2a:d3:aa:d8:30:ea:b0:13:9d:40:72:b5:50:6c:27:
b1:ad:76:ed:bb:66:50:bc:25:1c:34:07:25:4d:e6:8d:b0:ae:
05:40:02:34
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZQkRXOVw4ZhFP7jlQWCB3RxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMWRmMmJiY2NjMDJlNGU3ZjQ2NGQ2OWZhYWYzZDZjMzcy
MzQ5NWUwHhcNMjUwMTAxMjM0ODM4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MGMwYjBjMGFjYjU5OWRhZWVlNzFmMjg3NjNhY2MyZmExM2U4YWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4I+6g+v5eUL/U9+Rfn/H9+FEE3TL
wfyFggz2NUXME1XWis1B4KMM4v+2XAGeyuM/StmfGAhD0yzaZNteNZmxknWykQ0D
3UgBjMpTwgi8hR74XBsqUWqMTrFx/9Dd9I2NaenWZ6IWVblJA4T1Jhbk95MTJ5h3
eAzRzThRcTOh1Wiiip9MboqVBksZ0yqDtKiXTQ5paIat38DW41RROE76MgNzlQU/
Ssef648AZDBRiBeUO2j+Z5PUcL9fhiM4Syuu71PeFuRz6IEUA598JBMxwNvFSmra
KpxgJAOMVRoK+MMbdmB7fd8PwWN/gg1ryUfOl/A7Ybz1gbXuIzohLNvH5QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFFDAsMCstZna7ucfKHY6zC+hPoroMB8GA1UdIwQY
MBaAFMod8rvMwC5Of0ZNafqvPWw3I0leMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWgzeXU4ekFMazVfUmsxcC1xODliRGNqU1Y0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni83YjdiZDYtYjUzOC00OTYwLTg1NTkt
ZGQ0OWVjYzI2MDk1LzEvVU1Dd3dLeTFtZHJ1NXg4b2Rqck1MNkUtaXVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni83YjdiZDYtYjUzOC00OTYwLTg1NTktZGQ0OWVjYzI2MDk1
LzEveWgzeXU4ekFMazVfUmsxcC1xODliRGNqU1Y0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCuWmsAwQC
uaZAAwQCuaroMA0GCSqGSIb3DQEBCwUAA4IBAQB6gos1yXqnGuLyu5+62M6PRWDO
CZVyxqhK7evVne8/0rT52latzIyrlhScNgHipEx3+FV3VrUKyRmQKmtdK+6TuFiL
7LvAu/P0Fyx4qNQMvX35iAzX+9NvLjYA/GurJ3cSV/o3biqP2p7TCDiAS1BbjgEK
Y299pCdjdKLm5RJqz4jIa/I1gg8FJm5vmlm890JlRKFQrnKJJ4SUrj16fPL5nhD4
cB+BRk0pbrJazzi7Z3Qlbv2v0enn/uBv6/A9F5wykhQlXz4faU8CuUw49QzGsSe4
Q1Moz9Nk4yAq06rYMOqwE51AcrVQbCexrXbtu2ZQvCUcNAclTeaNsK4FQAI0
-----END CERTIFICATE-----
Generated at Fri Apr 25 14:31:12 2025 by rpki-client