Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/EliH32nM72jk5o8srlCb9Qn8SIg.roa
File: EliH32nM72jk5o8srlCb9Qn8SIg.roa (raw, json)
Hash identifier: Rtb7C9DazwCLvPY2asNPyAzR9ypSlDn7TK9tDgFH01c=
Subject key identifier: 12:58:87:DF:69:CC:EF:68:E4:E6:8F:2C:AE:50:9B:F5:09:FC:48:88
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01941F8C406DD46D6FEAD2532FC62C222DC1
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/EliH32nM72jk5o8srlCb9Qn8SIg.roa
Signing time: Wed 01 Jan 2025 01:47:52 +0000
ROA not before: Wed 01 Jan 2025 01:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203576
IP address blocks: 185.173.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:40:6d:d4:6d:6f:ea:d2:53:2f:c6:2c:22:2d:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jan 1 01:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=125887df69ccef68e4e68f2cae509bf509fc4888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:65:52:ff:5f:5f:b1:a9:2a:30:a2:ec:5c:63:
fb:79:37:26:e8:e2:03:3b:80:29:12:11:50:7a:43:
67:47:34:df:cd:d8:81:d6:c1:6e:03:9e:e5:e5:f7:
9e:d9:5b:85:3f:e1:da:25:6a:c5:f4:21:43:b2:7f:
7c:70:31:25:ae:18:97:3d:8f:4f:0c:d5:77:4f:38:
fd:06:e1:49:12:6a:95:13:9c:9b:10:08:94:e0:68:
f0:c8:2e:41:97:79:db:7f:d7:77:0d:e6:c1:5a:bc:
ba:d8:6c:0f:a4:a2:3f:d5:da:81:55:30:e3:f8:19:
59:31:2c:2c:50:a2:09:a6:24:43:ab:c3:5b:cd:e4:
4f:ae:2e:78:d1:1b:79:53:ed:b5:54:08:e0:6c:d6:
9f:35:2e:7d:a5:ad:ba:7f:c6:a3:ea:cc:aa:f5:e3:
a7:e9:7b:9c:0e:26:2d:65:84:fc:de:f8:83:9a:0d:
6c:ba:3d:b5:ae:a0:1b:d3:6f:75:38:69:da:f5:be:
bf:99:60:25:04:32:28:09:db:f6:e1:ca:c8:38:22:
a6:9e:63:de:de:4a:d7:47:11:f0:f9:6a:ed:ab:fa:
e7:68:92:d2:e8:68:25:4f:f2:ff:5e:d9:2b:68:e0:
cf:4e:0c:d8:31:5f:8a:84:cd:dc:e5:cd:1c:3a:f5:
9a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:58:87:DF:69:CC:EF:68:E4:E6:8F:2C:AE:50:9B:F5:09:FC:48:88
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/EliH32nM72jk5o8srlCb9Qn8SIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.145.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:89:56:64:77:8f:39:9f:93:35:8e:91:af:be:c2:6d:0c:db:
21:0e:4c:74:00:42:f6:42:a4:e0:8b:95:56:bb:58:f4:67:d3:
e7:f5:7d:18:08:ae:59:39:5e:98:4d:cf:06:94:38:e4:0d:3c:
9e:c4:90:b5:a3:60:a5:89:8a:9d:0d:fe:7f:2a:51:d9:78:9a:
2d:17:37:50:3b:b5:e2:c6:ed:0d:aa:7b:4a:77:34:a0:32:26:
39:f7:90:4e:b4:de:56:06:e8:15:f4:c8:14:cd:c2:ba:bd:d4:
50:6e:44:94:15:8b:b5:0e:3e:49:60:b5:c9:0c:65:75:05:90:
80:49:38:79:ed:0e:20:26:3c:85:c2:6f:36:3d:3f:1a:40:19:
d5:7a:b6:a4:d2:39:d1:e5:1c:ce:f1:2e:2c:b9:ed:3a:84:a6:
4d:51:e9:b3:ea:53:83:4c:97:d8:3d:fe:0d:b9:b8:e9:21:77:
35:30:4f:38:aa:ef:34:22:8e:9f:e1:23:47:5e:b6:64:79:b1:
e7:c9:9e:a0:01:bd:e9:9a:14:74:5b:96:c0:6d:4f:01:bd:bc:
81:30:68:c1:61:3c:71:74:cd:0f:95:a5:9d:d9:df:43:1f:3f:
39:45:23:cf:06:23:32:e1:93:a7:0e:18:7a:6b:de:f3:92:6e:
bc:2e:25:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQfjEBt1G1v6tJTL8YsIi3BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjODkyYWVkMzgzM2U2MTAwZjVlMGNmMTIyNzFmZDgwYjc1
NWMzNjEwHhcNMjUwMTAxMDE0NzUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjU4ODdkZjY5Y2NlZjY4ZTRlNjhmMmNhZTUwOWJmNTA5ZmM0ODg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmVS/19fsakqMKLsXGP7eTcm6OID
O4ApEhFQekNnRzTfzdiB1sFuA57l5fee2VuFP+HaJWrF9CFDsn98cDElrhiXPY9P
DNV3Tzj9BuFJEmqVE5ybEAiU4GjwyC5Bl3nbf9d3DebBWry62GwPpKI/1dqBVTDj
+BlZMSwsUKIJpiRDq8NbzeRPri540Rt5U+21VAjgbNafNS59pa26f8aj6syq9eOn
6XucDiYtZYT83viDmg1suj21rqAb0291OGna9b6/mWAlBDIoCdv24crIOCKmnmPe
3krXRxHw+Wrtq/rnaJLS6GglT/L/XtkraODPTgzYMV+KhM3c5c0cOvWa6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBJYh99pzO9o5OaPLK5Qm/UJ/EiIMB8GA1UdIwQY
MBaAFFyJKu04M+YQD14M8SJx/YC3VcNhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2Ut
M2FhN2RhYTlkM2VjLzEvRWxpSDMybk03MmprNW84c3JsQ2I5UW44U0lnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi84NmZiNDYtZDcxMi00NjAyLTljY2UtM2FhN2RhYTlkM2Vj
LzEvWElrcTdUZ3o1aEFQWGd6eEluSDlnTGRWdzJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAua2RMA0G
CSqGSIb3DQEBCwUAA4IBAQDSiVZkd485n5M1jpGvvsJtDNshDkx0AEL2QqTgi5VW
u1j0Z9Pn9X0YCK5ZOV6YTc8GlDjkDTyexJC1o2CliYqdDf5/KlHZeJotFzdQO7Xi
xu0NqntKdzSgMiY595BOtN5WBugV9MgUzcK6vdRQbkSUFYu1Dj5JYLXJDGV1BZCA
STh57Q4gJjyFwm82PT8aQBnVerak0jnR5RzO8S4sue06hKZNUemz6lODTJfYPf4N
ubjpIXc1ME84qu80Io6f4SNHXrZkebHnyZ6gAb3pmhR0W5bAbU8BvbyBMGjBYTxx
dM0PlaWd2d9DHz85RSPPBiMy4ZOnDhh6a97zkm68LiUs
-----END CERTIFICATE-----
Generated at Wed Apr 9 22:06:32 2025 by rpki-client