Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/hSuGI6LWX10mkfGM8mU_mEgg4xI.roa
File: hSuGI6LWX10mkfGM8mU_mEgg4xI.roa (raw, json)
Hash identifier: 8iGdDn57WzOZuVEhV2V2EwVGARe9rhw19Wa6dycTuIE=
Subject key identifier: 85:2B:86:23:A2:D6:5F:5D:26:91:F1:8C:F2:65:3F:98:48:20:E3:12
Certificate issuer: /CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Certificate serial: 01856C53C68B00004C8F5A35D2F8199E8815
Authority key identifier: C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/hSuGI6LWX10mkfGM8mU_mEgg4xI.roa
Signing time: Sun 01 Jan 2023 07:55:07 +0000
ROA not before: Sun 01 Jan 2023 07:55:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43160
IP address blocks: 185.240.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:c6:8b:00:00:4c:8f:5a:35:d2:f8:19:9e:88:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0e549fdceeb02912c8a8741c816806bbe19c448
Validity
Not Before: Jan 1 07:55:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=852b8623a2d65f5d2691f18cf2653f984820e312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6e:b1:15:d4:a4:9d:fe:3b:63:29:02:8e:3d:
fb:e7:d4:9a:02:3e:66:1f:af:b4:e4:2c:a7:f3:38:
52:5a:ca:7e:d9:43:89:dc:75:ef:c6:01:67:62:f6:
83:62:b0:f1:3f:4b:e3:a4:21:8c:fd:db:6c:9e:3a:
5b:6c:82:f5:1e:04:c4:85:a3:68:b4:c9:12:42:8d:
dc:c2:db:e0:64:47:c0:61:9b:7b:1f:d0:91:ae:d4:
26:19:61:26:80:cc:f6:be:65:cf:a3:67:16:6d:ec:
ee:74:a1:c4:b4:60:37:ab:03:01:b6:88:d7:d8:96:
9d:23:9c:0f:26:19:67:a5:1f:81:ef:c9:ba:d1:25:
24:31:f9:7e:f3:64:59:cf:8d:6e:6c:04:be:e1:55:
f6:99:17:12:02:06:ac:49:d7:85:10:77:8d:9d:02:
34:08:8f:3f:b9:6f:f8:44:01:de:a8:4f:16:5e:61:
4a:38:1f:bd:bf:dd:de:8d:fb:24:5e:bf:0a:20:ef:
55:96:87:36:e7:df:03:42:2c:b0:3d:a1:b0:07:ec:
c0:5a:bb:aa:64:8c:10:3b:ad:5b:e4:a8:29:fe:59:
14:17:80:34:f0:c7:a0:fe:2b:4a:1b:00:96:21:81:
eb:4d:8c:e0:b4:a9:79:b7:8b:29:92:a4:f4:54:bd:
da:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:2B:86:23:A2:D6:5F:5D:26:91:F1:8C:F2:65:3F:98:48:20:E3:12
X509v3 Authority Key Identifier:
keyid:C0:E5:49:FD:CE:EB:02:91:2C:8A:87:41:C8:16:80:6B:BE:19:C4:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wOVJ_c7rApEsiodByBaAa74ZxEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/hSuGI6LWX10mkfGM8mU_mEgg4xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/160f8f-dbab-482d-b39c-ad2fda47988e/1/wOVJ_c7rApEsiodByBaAa74ZxEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.164.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:7a:1c:d8:43:f0:30:ec:e4:4d:e9:48:53:ae:87:0e:fe:a0:
2a:24:c5:6a:0e:51:c2:32:28:e0:13:3d:db:8d:1a:ac:6e:7f:
03:0a:fd:6e:00:e3:f7:11:ef:20:57:92:77:0f:47:2d:75:64:
29:34:3e:57:85:65:6e:d0:fc:5f:9e:eb:a9:92:8e:77:59:a5:
27:61:3e:79:37:0e:21:69:cc:bb:7b:56:37:0c:f1:3a:40:f3:
b0:af:1a:57:68:65:e4:47:6e:d4:d2:f7:d4:94:3b:64:0b:e4:
f4:7d:e0:ac:1e:60:1b:cf:6c:92:77:ee:a8:0e:72:5b:3a:59:
ab:b4:29:b2:b0:ea:31:44:5a:cf:08:bf:62:8f:d5:66:93:10:
6a:c0:8d:01:71:71:a9:12:1a:df:04:fc:2d:03:97:70:65:48:
2d:c8:9b:26:8e:71:cd:5d:ce:1c:05:6f:24:ff:d9:f8:ec:8e:
bd:01:80:06:37:9f:d0:25:6b:84:4a:ee:fa:5e:52:85:07:59:
db:b7:ec:b5:45:93:50:5b:3e:80:93:39:d2:c8:f6:56:9f:a3:
68:89:14:b9:65:13:1c:99:2b:05:05:36:7b:c9:f4:d3:c0:6f:
77:f1:40:63:4e:8c:58:2e:21:63:96:25:a4:e1:93:81:16:ae:
48:c5:41:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsU8aLAABMj1o10vgZnogVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwZTU0OWZkY2VlYjAyOTEyYzhhODc0MWM4MTY4MDZiYmUx
OWM0NDgwHhcNMjMwMTAxMDc1NTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTJiODYyM2EyZDY1ZjVkMjY5MWYxOGNmMjY1M2Y5ODQ4MjBlMzEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvW6xFdSknf47YykCjj3759SaAj5m
H6+05Cyn8zhSWsp+2UOJ3HXvxgFnYvaDYrDxP0vjpCGM/dtsnjpbbIL1HgTEhaNo
tMkSQo3cwtvgZEfAYZt7H9CRrtQmGWEmgMz2vmXPo2cWbezudKHEtGA3qwMBtojX
2JadI5wPJhlnpR+B78m60SUkMfl+82RZz41ubAS+4VX2mRcSAgasSdeFEHeNnQI0
CI8/uW/4RAHeqE8WXmFKOB+9v93ejfskXr8KIO9Vloc2598DQiywPaGwB+zAWruq
ZIwQO61b5Kgp/lkUF4A08Meg/itKGwCWIYHrTYzgtKl5t4spkqT0VL3azwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIUrhiOi1l9dJpHxjPJlP5hIIOMSMB8GA1UdIwQY
MBaAFMDlSf3O6wKRLIqHQcgWgGu+GcRIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd09WSl9jN3JBcEVzaW9kQnlCYUFhNzRaeEVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8xNjBmOGYtZGJhYi00ODJkLWIzOWMt
YWQyZmRhNDc5ODhlLzEvaFN1R0k2TFdYMTBta2ZHTThtVV9tRWdnNHhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8xNjBmOGYtZGJhYi00ODJkLWIzOWMtYWQyZmRhNDc5ODhl
LzEvd09WSl9jN3JBcEVzaW9kQnlCYUFhNzRaeEVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufCkMA0G
CSqGSIb3DQEBCwUAA4IBAQBMehzYQ/Aw7ORN6UhTrocO/qAqJMVqDlHCMijgEz3b
jRqsbn8DCv1uAOP3Ee8gV5J3D0ctdWQpND5XhWVu0Pxfnuupko53WaUnYT55Nw4h
acy7e1Y3DPE6QPOwrxpXaGXkR27U0vfUlDtkC+T0feCsHmAbz2ySd+6oDnJbOlmr
tCmysOoxRFrPCL9ij9VmkxBqwI0BcXGpEhrfBPwtA5dwZUgtyJsmjnHNXc4cBW8k
/9n47I69AYAGN5/QJWuESu76XlKFB1nbt+y1RZNQWz6AkznSyPZWn6NoiRS5ZRMc
mSsFBTZ7yfTTwG938UBjToxYLiFjliWk4ZOBFq5IxUFn
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:03:07 2025 by rpki-client