Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/1c5284-577a-441d-ad05-5153ff6660f5/1/XVDlJoWohr5TVpZufoo2qn8VNGc.roa
File: XVDlJoWohr5TVpZufoo2qn8VNGc.roa (raw, json)
Hash identifier: y3v60YKfH9ogZwX4O550+E7D/KkpVzPrnFFg6zGLPkg=
Subject key identifier: 5D:50:E5:26:85:A8:86:BE:53:56:96:6E:7E:8A:36:AA:7F:15:34:67
Certificate issuer: /CN=1c06b69560a9d314626a7fe988fdd217474bf86d
Certificate serial: 0170DFF6
Authority key identifier: 1C:06:B6:95:60:A9:D3:14:62:6A:7F:E9:88:FD:D2:17:47:4B:F8:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAa2lWCp0xRian_piP3SF0dL-G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/1c5284-577a-441d-ad05-5153ff6660f5/1/XVDlJoWohr5TVpZufoo2qn8VNGc.roa
Signing time: Sat 01 Jan 2022 11:57:37 +0000
ROA not before: Sat 01 Jan 2022 11:57:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48011
IP address blocks: 185.182.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24174582 (0x170dff6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06b69560a9d314626a7fe988fdd217474bf86d
Validity
Not Before: Jan 1 11:57:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d50e52685a886be5356966e7e8a36aa7f153467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1c:2d:19:b5:fb:39:08:86:c6:66:fb:29:b3:
0c:52:2a:c0:cf:28:0c:2c:ae:c2:86:84:e7:9d:ae:
f9:25:dc:d1:f9:08:6c:a8:3b:0e:a9:37:b5:9e:28:
cc:a4:04:64:77:39:cf:60:3c:80:60:00:14:4f:be:
74:39:3b:c3:9c:93:75:2c:07:03:40:83:e6:dd:4e:
d5:9f:62:61:4a:91:13:4e:a8:97:4f:0a:68:c8:95:
5d:18:f9:37:56:78:00:22:74:37:af:4e:fb:c6:93:
2e:9f:2a:35:6e:2b:b7:51:a9:1d:09:69:39:7e:a4:
e6:7d:65:6a:96:d1:1f:3a:16:bc:fd:66:f1:66:1c:
65:6c:34:2d:ad:68:d7:f9:70:ae:ff:fa:cb:c0:c3:
a4:46:be:e3:b5:53:d3:f3:10:3f:4f:50:c4:5b:2e:
c9:f7:ff:d4:4f:81:3f:69:fb:7b:1b:60:79:58:5f:
b1:c0:c2:86:03:37:2c:ff:c0:fc:18:25:85:15:c7:
d2:f9:01:fe:96:a0:18:9b:62:94:79:7e:c5:cc:e2:
3e:59:a2:59:98:1f:22:84:5b:39:a0:93:90:de:ff:
99:61:e0:20:57:6e:80:ff:28:c4:1d:b5:e1:bd:bd:
b9:86:98:9d:09:6d:83:88:53:db:b0:bf:7c:3c:a6:
da:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:50:E5:26:85:A8:86:BE:53:56:96:6E:7E:8A:36:AA:7F:15:34:67
X509v3 Authority Key Identifier:
keyid:1C:06:B6:95:60:A9:D3:14:62:6A:7F:E9:88:FD:D2:17:47:4B:F8:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAa2lWCp0xRian_piP3SF0dL-G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1c5284-577a-441d-ad05-5153ff6660f5/1/XVDlJoWohr5TVpZufoo2qn8VNGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/1c5284-577a-441d-ad05-5153ff6660f5/1/HAa2lWCp0xRian_piP3SF0dL-G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.105.0/24
Signature Algorithm: sha256WithRSAEncryption
30:68:33:61:31:b1:32:a4:6d:5e:38:c8:10:61:ce:1b:26:32:
76:0a:aa:42:db:f3:4f:a0:83:e0:f9:ca:97:5d:72:51:bc:18:
4d:9d:05:3a:f0:12:73:dc:e9:97:57:a2:65:5f:b0:c5:a0:dd:
d2:5e:b6:13:36:99:e7:58:e9:cf:37:be:8e:41:d4:35:20:25:
32:07:fa:ab:5b:3b:85:f6:ed:34:26:6a:e1:f7:8c:8a:36:23:
02:50:4b:ee:39:7c:2e:38:01:14:c2:e8:28:9b:92:5e:66:10:
c2:fe:fa:b8:d1:58:61:e5:eb:e1:6d:00:45:98:09:f4:a8:a2:
0f:a9:10:fc:9c:07:20:e0:72:40:bf:68:2e:78:77:0d:3c:54:
81:7c:0d:8b:bf:22:2b:e0:4c:54:a8:97:0c:ec:e4:81:c5:b9:
11:df:12:a6:f5:17:57:93:c8:e3:1e:e7:4f:f5:30:bd:e1:60:
8c:78:d7:97:07:48:f5:5a:99:38:1b:f2:48:84:03:0d:0e:3b:
52:96:98:52:2b:24:d6:88:61:a8:52:65:7b:48:91:95:9b:8f:
83:97:f3:a6:a1:f1:39:fc:ce:6c:37:79:eb:e9:16:9b:8d:cd:
c3:19:c7:1f:7d:a9:2c:59:c7:0c:88:6a:cb:ca:7a:bf:ed:b7:
f0:03:d5:42
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAXDf9jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YzA2YjY5NTYwYTlkMzE0NjI2YTdmZTk4OGZkZDIxNzQ3NGJmODZkMB4XDTIyMDEw
MTExNTczN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWQ1MGU1MjY4NWE4
ODZiZTUzNTY5NjZlN2U4YTM2YWE3ZjE1MzQ2NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJgcLRm1+zkIhsZm+ymzDFIqwM8oDCyuwoaE552u+SXc0fkI
bKg7Dqk3tZ4ozKQEZHc5z2A8gGAAFE++dDk7w5yTdSwHA0CD5t1O1Z9iYUqRE06o
l08KaMiVXRj5N1Z4ACJ0N69O+8aTLp8qNW4rt1GpHQlpOX6k5n1lapbRHzoWvP1m
8WYcZWw0La1o1/lwrv/6y8DDpEa+47VT0/MQP09QxFsuyff/1E+BP2n7extgeVhf
scDChgM3LP/A/BglhRXH0vkB/pagGJtilHl+xcziPlmiWZgfIoRbOaCTkN7/mWHg
IFdugP8oxB214b29uYaYnQltg4hT27C/fDym2jcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRdUOUmhaiGvlNWlm5+ijaqfxU0ZzAfBgNVHSMEGDAWgBQcBraVYKnTFGJq
f+mI/dIXR0v4bTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hBYTJsV0NwMHhSaWFuX3BpUDNTRjBkTC1HMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvMWM1Mjg0LTU3N2EtNDQxZC1hZDA1LTUxNTNmZjY2NjBmNS8x
L1hWRGxKb1dvaHI1VFZwWnVmb28ycW44Vk5HYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
MWM1Mjg0LTU3N2EtNDQxZC1hZDA1LTUxNTNmZjY2NjBmNS8xL0hBYTJsV0NwMHhS
aWFuX3BpUDNTRjBkTC1HMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALm2aTANBgkqhkiG9w0BAQsFAAOC
AQEAMGgzYTGxMqRtXjjIEGHOGyYydgqqQtvzT6CD4PnKl11yUbwYTZ0FOvASc9zp
l1eiZV+wxaDd0l62EzaZ51jpzze+jkHUNSAlMgf6q1s7hfbtNCZq4feMijYjAlBL
7jl8LjgBFMLoKJuSXmYQwv76uNFYYeXr4W0ARZgJ9KiiD6kQ/JwHIOByQL9oLnh3
DTxUgXwNi78iK+BMVKiXDOzkgcW5Ed8SpvUXV5PI4x7nT/UwveFgjHjXlwdI9VqZ
OBvySIQDDQ47UpaYUisk1ohhqFJle0iRlZuPg5fzpqHxOfzObDd56+kWm43NwxnH
H32pLFnHDIhqy8p6v+238APVQg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:31 2025 by rpki-client