Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/xEHBG-sDPVKJ9XXxM6Z9mKuo0U0.roa
File: xEHBG-sDPVKJ9XXxM6Z9mKuo0U0.roa (raw, json)
Hash identifier: G3jD6yODhofSNU3PUJZMmjQCNj42WLMnZ0Laof6Aj28=
Subject key identifier: C4:41:C1:1B:EB:03:3D:52:89:F5:75:F1:33:A6:7D:98:AB:A8:D1:4D
Certificate issuer: /CN=12694f6945a21d08d30192cfc1a6b780de728e3b
Certificate serial: 01942747CFC527B3D469CBBBEF8654D12FEA
Authority key identifier: 12:69:4F:69:45:A2:1D:08:D3:01:92:CF:C1:A6:B7:80:DE:72:8E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmlPaUWiHQjTAZLPwaa3gN5yjjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/xEHBG-sDPVKJ9XXxM6Z9mKuo0U0.roa
Signing time: Thu 02 Jan 2025 13:50:05 +0000
ROA not before: Thu 02 Jan 2025 13:50:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39888
IP address blocks: 5.83.39.0/24 maxlen: 24
5.83.41.0/24 maxlen: 24
185.75.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:cf:c5:27:b3:d4:69:cb:bb:ef:86:54:d1:2f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12694f6945a21d08d30192cfc1a6b780de728e3b
Validity
Not Before: Jan 2 13:50:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c441c11beb033d5289f575f133a67d98aba8d14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ac:bf:37:22:65:96:ea:e4:8e:b0:68:04:ac:
e3:b5:67:a2:7a:e9:1b:fa:71:70:e8:fb:6e:1e:54:
0e:e8:5d:1f:15:cc:2a:cd:f5:31:4d:c2:37:d8:8e:
92:d1:87:6b:09:8f:9e:85:29:8b:59:b9:e1:b1:23:
8b:84:3c:01:52:ff:37:84:42:a8:b5:45:98:76:30:
04:92:f9:6d:24:53:6d:59:35:36:d7:11:f7:26:8d:
8f:7c:27:1e:c5:66:48:9d:0e:f0:fd:de:8f:f5:e5:
68:05:45:7f:44:3c:6f:8e:2f:ed:b4:8a:ca:d4:bd:
e5:99:37:0f:72:57:00:c4:56:3d:91:94:ce:1f:b0:
ea:07:16:c9:f2:1a:5f:a1:1d:ee:bc:9d:74:e7:d1:
66:4e:3f:01:c1:cb:cc:5c:cb:0a:a5:63:c6:99:87:
4e:d1:56:d5:78:ac:cd:1a:de:da:fe:cf:f3:a5:83:
f9:83:6b:ca:61:27:0c:99:8c:7f:b6:2a:19:d6:12:
bd:da:fc:96:6c:d3:fb:22:a5:b4:74:7b:9d:87:ce:
9c:a7:43:03:3e:f3:b3:94:38:03:9a:2c:21:19:14:
14:28:d8:b8:1c:37:00:50:72:ee:38:87:82:a3:16:
25:3e:30:60:d9:64:c0:4a:9a:37:8c:80:5e:4e:d9:
18:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:41:C1:1B:EB:03:3D:52:89:F5:75:F1:33:A6:7D:98:AB:A8:D1:4D
X509v3 Authority Key Identifier:
keyid:12:69:4F:69:45:A2:1D:08:D3:01:92:CF:C1:A6:B7:80:DE:72:8E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmlPaUWiHQjTAZLPwaa3gN5yjjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/xEHBG-sDPVKJ9XXxM6Z9mKuo0U0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d7300f-de06-4f7b-a909-6598b4ceb069/1/EmlPaUWiHQjTAZLPwaa3gN5yjjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.39.0/24
5.83.41.0/24
185.75.53.0/24
Signature Algorithm: sha256WithRSAEncryption
41:11:e0:72:73:2a:34:2f:0b:06:d3:3f:02:ac:53:a1:2b:64:
6b:6d:1c:7c:fa:12:ee:4c:e9:be:fb:ba:78:57:df:2f:e9:e7:
ec:65:ec:1c:28:e1:51:59:c3:a6:27:ca:00:85:27:3e:7a:d4:
b4:29:01:bc:0e:fe:2e:02:95:93:52:2c:82:c9:c0:04:18:b1:
0f:1c:19:2c:8a:4f:9b:79:3f:84:4b:51:8d:ae:49:66:09:55:
e3:d4:2d:c4:27:d0:3e:b8:c1:8d:ab:a8:fe:f6:67:89:53:da:
32:96:e7:e2:27:4f:c1:10:72:ca:3f:a0:27:29:ca:da:ad:d1:
ae:9a:90:0e:9a:ab:00:51:f4:6d:c1:4d:a3:df:88:60:3b:f0:
8a:4a:c0:cb:1b:c8:d9:25:27:ec:69:5b:be:4b:3e:af:f7:8d:
0f:41:9f:0f:b8:f1:3b:84:1d:e8:36:53:ce:a0:92:5d:1f:02:
5c:22:be:73:1f:4b:6e:37:d6:76:92:64:a6:9b:a5:fa:af:c0:
66:1e:12:b1:ee:84:f3:d7:70:f0:89:ef:83:20:87:8d:23:df:
a8:bc:45:2a:15:dd:c2:2d:c4:02:b2:97:b7:d1:00:67:e4:3a:
cf:67:7e:d6:00:85:ff:e6:11:10:e8:b1:2b:fb:6b:63:78:65:
3a:44:a6:a1
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZQnR8/FJ7PUacu774ZU0S/qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEyNjk0ZjY5NDVhMjFkMDhkMzAxOTJjZmMxYTZiNzgwZGU3
MjhlM2IwHhcNMjUwMTAyMTM1MDA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDQxYzExYmViMDMzZDUyODlmNTc1ZjEzM2E2N2Q5OGFiYThkMTRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6y/NyJllurkjrBoBKzjtWeieukb
+nFw6PtuHlQO6F0fFcwqzfUxTcI32I6S0YdrCY+ehSmLWbnhsSOLhDwBUv83hEKo
tUWYdjAEkvltJFNtWTU21xH3Jo2PfCcexWZInQ7w/d6P9eVoBUV/RDxvji/ttIrK
1L3lmTcPclcAxFY9kZTOH7DqBxbJ8hpfoR3uvJ1059FmTj8BwcvMXMsKpWPGmYdO
0VbVeKzNGt7a/s/zpYP5g2vKYScMmYx/tioZ1hK92vyWbNP7IqW0dHudh86cp0MD
PvOzlDgDmiwhGRQUKNi4HDcAUHLuOIeCoxYlPjBg2WTASpo3jIBeTtkY5QIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFMRBwRvrAz1SifV18TOmfZirqNFNMB8GA1UdIwQY
MBaAFBJpT2lFoh0I0wGSz8Gmt4Deco47MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRW1sUGFVV2lIUWpUQVpMUHdhYTNnTjV5ampzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kNzMwMGYtZGUwNi00ZjdiLWE5MDkt
NjU5OGI0Y2ViMDY5LzEveEVIQkctc0RQVktKOVhYeE02WjltS3VvMFUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC9kNzMwMGYtZGUwNi00ZjdiLWE5MDktNjU5OGI0Y2ViMDY5
LzEvRW1sUGFVV2lIUWpUQVpMUHdhYTNnTjV5ampzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQABVMnAwQA
BVMpAwQAuUs1MA0GCSqGSIb3DQEBCwUAA4IBAQBBEeBycyo0LwsG0z8CrFOhK2Rr
bRx8+hLuTOm++7p4V98v6efsZewcKOFRWcOmJ8oAhSc+etS0KQG8Dv4uApWTUiyC
ycAEGLEPHBksik+beT+ES1GNrklmCVXj1C3EJ9A+uMGNq6j+9meJU9oylufiJ0/B
EHLKP6AnKcrardGumpAOmqsAUfRtwU2j34hgO/CKSsDLG8jZJSfsaVu+Sz6v940P
QZ8PuPE7hB3oNlPOoJJdHwJcIr5zH0tuN9Z2kmSmm6X6r8BmHhKx7oTz13Dwie+D
IIeNI9+ovEUqFd3CLcQCspe30QBn5DrPZ37WAIX/5hEQ6LEr+2tjeGU6RKah
-----END CERTIFICATE-----
Generated at Fri Apr 25 02:09:08 2025 by rpki-client