Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1ca806-c4ab-4677-8c7e-af59c0515c7a/1/lmysathnokXJFcd-XCul3av5gb8.roa
File: lmysathnokXJFcd-XCul3av5gb8.roa (raw, json)
Hash identifier: MXzAOvGDtyiUfw3zRpIomhWCx2zGUP36oXbL0ZFHEfg=
Subject key identifier: 96:6C:AC:6A:D8:67:A2:45:C9:15:C7:7E:5C:2B:A5:DD:AB:F9:81:BF
Certificate issuer: /CN=85ae01d9b8b61a88ff7b7a90c2ce355d49413136
Certificate serial: 02323496
Authority key identifier: 85:AE:01:D9:B8:B6:1A:88:FF:7B:7A:90:C2:CE:35:5D:49:41:31:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ha4B2bi2Goj_e3qQws41XUlBMTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1ca806-c4ab-4677-8c7e-af59c0515c7a/1/lmysathnokXJFcd-XCul3av5gb8.roa
Signing time: Sat 01 Jan 2022 12:00:32 +0000
ROA not before: Sat 01 Jan 2022 12:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 85.8.160.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36844694 (0x2323496)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ae01d9b8b61a88ff7b7a90c2ce355d49413136
Validity
Not Before: Jan 1 12:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=966cac6ad867a245c915c77e5c2ba5ddabf981bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e2:6f:11:ed:f9:73:19:f8:ed:cd:7e:6d:51:
d4:11:df:d0:ea:0a:ec:4d:ed:4e:ef:8b:2b:52:9b:
1f:67:48:33:f5:6f:89:73:03:35:59:fc:b1:50:fb:
93:bf:f9:4d:be:68:ea:77:29:0b:5d:58:94:50:0f:
f4:9a:60:bb:f4:84:15:9a:52:d7:4f:02:f1:48:f8:
dc:3b:49:1a:9e:99:d1:5a:b0:5d:42:b6:34:7a:09:
5d:3c:d2:ee:8e:d2:99:bb:86:fb:49:d1:f0:42:cc:
6b:4e:06:f2:b5:11:3a:ca:37:50:da:66:36:4e:bb:
26:19:14:47:17:62:ff:40:63:a3:21:65:9c:4c:ba:
22:53:aa:cf:92:d2:b9:a4:16:9e:70:a4:8c:57:53:
e2:cb:26:35:93:31:e1:19:2f:20:07:d1:07:c7:40:
83:3e:48:db:3d:2a:89:65:f7:d7:32:34:ee:38:52:
3c:c9:11:76:e8:49:52:14:56:33:ab:3e:4e:cf:82:
aa:e4:46:03:6a:bc:af:84:5e:ba:d9:1b:3f:4d:8c:
c6:a9:b8:f2:ce:fe:92:71:10:8a:e5:e6:06:8f:34:
68:f1:74:73:c2:33:f3:91:2c:c9:22:fa:65:f1:43:
8d:c6:62:11:28:34:42:db:2b:55:d7:95:36:65:23:
87:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:6C:AC:6A:D8:67:A2:45:C9:15:C7:7E:5C:2B:A5:DD:AB:F9:81:BF
X509v3 Authority Key Identifier:
keyid:85:AE:01:D9:B8:B6:1A:88:FF:7B:7A:90:C2:CE:35:5D:49:41:31:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ha4B2bi2Goj_e3qQws41XUlBMTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ca806-c4ab-4677-8c7e-af59c0515c7a/1/lmysathnokXJFcd-XCul3av5gb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ca806-c4ab-4677-8c7e-af59c0515c7a/1/ha4B2bi2Goj_e3qQws41XUlBMTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.160.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:8a:e5:66:b9:54:c8:3d:12:4e:85:91:e6:4a:90:af:35:c6:
90:98:cf:58:b3:e0:d6:8a:5f:4a:d1:b1:69:fd:6c:e2:c8:0b:
d8:63:da:db:1f:77:0b:db:6d:a0:46:e5:51:d7:88:e0:8e:25:
a1:29:ad:62:75:b5:49:5c:d8:d5:0c:e9:a4:2b:9a:85:3f:c6:
00:50:40:01:ef:cd:fd:3a:e6:e0:13:a2:65:18:fa:14:9c:3d:
f8:2f:f4:f6:5d:6a:c6:7d:08:00:c1:ba:b9:6c:a7:30:7e:9a:
00:91:07:15:48:77:21:bd:5c:aa:b6:92:3b:7e:58:45:05:f0:
19:97:f5:38:e2:64:d0:c7:24:f9:6b:67:36:60:90:90:36:65:
5e:53:c7:25:a5:a9:0a:c3:2e:9f:66:2e:9b:ca:30:4c:92:69:
3a:6a:df:19:3d:e7:9b:d1:d1:6d:1c:48:1d:6b:e4:93:94:86:
3b:e6:34:97:cc:f1:e2:59:b0:f5:c9:b0:0f:f7:35:62:90:9b:
59:2e:24:87:80:e7:99:cc:60:06:d9:1a:32:51:52:30:05:21:
da:9a:26:02:9c:ea:2f:11:e1:60:5d:8d:aa:5b:7e:6f:f9:95:
8c:13:9c:1f:38:02:17:6b:02:b4:ab:ae:fe:dc:92:19:2b:3d:
f6:bb:d2:a9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAjI0ljANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NWFlMDFkOWI4YjYxYTg4ZmY3YjdhOTBjMmNlMzU1ZDQ5NDEzMTM2MB4XDTIyMDEw
MTEyMDAzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTY2Y2FjNmFkODY3
YTI0NWM5MTVjNzdlNWMyYmE1ZGRhYmY5ODFiZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALjibxHt+XMZ+O3Nfm1R1BHf0OoK7E3tTu+LK1KbH2dIM/Vv
iXMDNVn8sVD7k7/5Tb5o6ncpC11YlFAP9Jpgu/SEFZpS108C8Uj43DtJGp6Z0Vqw
XUK2NHoJXTzS7o7SmbuG+0nR8ELMa04G8rUROso3UNpmNk67JhkURxdi/0BjoyFl
nEy6IlOqz5LSuaQWnnCkjFdT4ssmNZMx4RkvIAfRB8dAgz5I2z0qiWX31zI07jhS
PMkRduhJUhRWM6s+Ts+CquRGA2q8r4ReutkbP02Mxqm48s7+knEQiuXmBo80aPF0
c8Iz85EsySL6ZfFDjcZiESg0QtsrVdeVNmUjh+kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSWbKxq2GeiRckVx35cK6Xdq/mBvzAfBgNVHSMEGDAWgBSFrgHZuLYaiP97
epDCzjVdSUExNjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hhNEIyYmkyR29qX2UzcVF3czQxWFVsQk1UWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvMWNhODA2LWM0YWItNDY3Ny04YzdlLWFmNTljMDUxNWM3YS8x
L2xteXNhdGhub2tYSkZjZC1YQ3VsM2F2NWdiOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
MWNhODA2LWM0YWItNDY3Ny04YzdlLWFmNTljMDUxNWM3YS8xL2hhNEIyYmkyR29q
X2UzcVF3czQxWFVsQk1UWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlUIoDANBgkqhkiG9w0BAQsFAAOC
AQEAXorlZrlUyD0SToWR5kqQrzXGkJjPWLPg1opfStGxaf1s4sgL2GPa2x93C9tt
oEblUdeI4I4loSmtYnW1SVzY1QzppCuahT/GAFBAAe/N/Trm4BOiZRj6FJw9+C/0
9l1qxn0IAMG6uWynMH6aAJEHFUh3Ib1cqraSO35YRQXwGZf1OOJk0Mck+WtnNmCQ
kDZlXlPHJaWpCsMun2Yum8owTJJpOmrfGT3nm9HRbRxIHWvkk5SGO+Y0l8zx4lmw
9cmwD/c1YpCbWS4kh4DnmcxgBtkaMlFSMAUh2pomApzqLxHhYF2Nqlt+b/mVjBOc
HzgCF2sCtKuu/tySGSs99rvSqQ==
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:48:30 2025 by rpki-client