Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b5f2ec-b77f-4c8f-9e7d-e183342ea882/1/hmWJC0HAreBDftq3cr1scggUpiM.roa
File: hmWJC0HAreBDftq3cr1scggUpiM.roa (raw, json)
Hash identifier: ZdmuJcTTaN9HK/GSAWBhAMaezBPMpHVD3KIcAXVM+gU=
Subject key identifier: 86:65:89:0B:41:C0:AD:E0:43:7E:DA:B7:72:BD:6C:72:08:14:A6:23
Certificate issuer: /CN=fffc13feb9a290a08d200d719f2cb31b0c10583b
Certificate serial: C86B
Authority key identifier: FF:FC:13:FE:B9:A2:90:A0:8D:20:0D:71:9F:2C:B3:1B:0C:10:58:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/__wT_rmikKCNIA1xnyyzGwwQWDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b5f2ec-b77f-4c8f-9e7d-e183342ea882/1/hmWJC0HAreBDftq3cr1scggUpiM.roa
Signing time: Wed 18 May 2022 12:56:55 +0000
ROA not before: Wed 18 May 2022 12:56:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201554
IP address blocks: 185.71.85.0/24 maxlen: 24
185.71.84.0/24 maxlen: 24
185.71.86.0/24 maxlen: 24
185.71.87.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51307 (0xc86b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fffc13feb9a290a08d200d719f2cb31b0c10583b
Validity
Not Before: May 18 12:56:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8665890b41c0ade0437edab772bd6c720814a623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f2:13:7c:1e:0b:de:d3:29:d2:07:c8:b7:ea:
b2:be:af:f4:f3:26:a9:04:44:75:fb:d5:5d:3e:bc:
75:6a:ca:2d:72:e4:9f:45:a9:c8:78:09:85:59:d7:
c4:74:af:56:d8:f2:f8:39:6c:93:e3:71:42:32:cb:
7e:7b:62:aa:fa:7e:10:6f:03:90:e9:8c:70:d4:cf:
2c:9f:09:10:cc:be:be:63:f3:a2:42:c3:fc:af:97:
c2:5b:e4:68:a9:38:e1:08:13:86:83:74:a2:70:44:
ac:70:5d:06:3e:52:34:bf:94:55:83:18:31:d4:24:
5b:51:77:8f:bb:d0:9c:fd:1a:57:8f:0e:c7:29:fa:
f4:c0:49:7d:26:cc:c6:11:42:8c:4d:38:6d:49:8e:
7e:a5:7a:7b:d7:d6:24:2c:70:9f:1a:d9:72:be:39:
8b:b8:01:14:d5:8d:60:f5:1e:30:38:41:eb:a5:92:
24:fe:0c:f1:41:3c:bf:1b:5a:a1:eb:05:1d:5b:be:
dc:f6:de:f7:ca:13:75:a4:86:3b:6d:6c:7c:a6:66:
a3:24:73:6e:f1:5a:bc:6d:71:ac:63:34:34:83:d8:
71:05:42:d7:62:2e:ab:75:09:3d:ce:fd:c6:6f:35:
22:4a:58:0d:34:d5:6b:cc:69:c1:cb:bc:25:77:91:
95:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:65:89:0B:41:C0:AD:E0:43:7E:DA:B7:72:BD:6C:72:08:14:A6:23
X509v3 Authority Key Identifier:
keyid:FF:FC:13:FE:B9:A2:90:A0:8D:20:0D:71:9F:2C:B3:1B:0C:10:58:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/__wT_rmikKCNIA1xnyyzGwwQWDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b5f2ec-b77f-4c8f-9e7d-e183342ea882/1/hmWJC0HAreBDftq3cr1scggUpiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b5f2ec-b77f-4c8f-9e7d-e183342ea882/1/__wT_rmikKCNIA1xnyyzGwwQWDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.84.0/22
Signature Algorithm: sha256WithRSAEncryption
65:d8:68:a1:4f:3f:69:95:28:ed:49:66:25:6c:c2:7f:10:01:
02:12:1f:ec:03:e8:d9:da:36:4a:43:c4:de:53:2d:99:47:3f:
f3:f7:6b:f2:99:8f:b2:e1:07:ea:bc:e9:0f:97:ca:d9:13:e1:
98:ef:55:e0:07:ea:e1:ca:4e:5e:e3:97:f0:ad:68:b1:ba:0f:
42:9a:f7:76:f0:9a:fc:b9:e3:4c:f6:be:9b:8f:b2:2b:84:b8:
d8:c0:69:1b:2b:bd:65:3a:95:78:51:83:dd:b5:22:2c:46:9d:
6c:4c:ce:77:f3:b6:d1:e4:a5:01:37:c2:24:9d:38:e7:25:12:
ee:8c:10:dc:49:bf:63:05:99:6d:a5:78:68:61:0a:2b:7f:9c:
e0:00:16:3e:2e:cc:1f:78:28:dd:1a:58:74:16:aa:78:91:25:
f8:da:2a:ef:81:39:ea:3c:55:3b:46:40:51:02:c8:6b:6c:5c:
3f:44:fe:9e:a2:40:2e:ca:3c:2e:6d:f5:6e:09:4f:44:72:61:
85:df:8b:91:86:90:47:6a:d0:e4:d8:a6:6c:ec:15:6d:e7:ba:
d5:4b:4e:8f:01:66:a2:87:df:12:ad:b7:07:e2:d9:95:30:80:
e1:57:1d:6d:d6:36:b0:5b:30:24:29:25:eb:64:2a:23:11:8a:
10:74:d5:c7
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAMhrMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGZm
ZmMxM2ZlYjlhMjkwYTA4ZDIwMGQ3MTlmMmNiMzFiMGMxMDU4M2IwHhcNMjIwNTE4
MTI1NjU1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4NjY1ODkwYjQxYzBh
ZGUwNDM3ZWRhYjc3MmJkNmM3MjA4MTRhNjIzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA1vITfB4L3tMp0gfIt+qyvq/08yapBER1+9VdPrx1asotcuSf
RanIeAmFWdfEdK9W2PL4OWyT43FCMst+e2Kq+n4QbwOQ6Yxw1M8snwkQzL6+Y/Oi
QsP8r5fCW+RoqTjhCBOGg3SicESscF0GPlI0v5RVgxgx1CRbUXePu9Cc/RpXjw7H
Kfr0wEl9JszGEUKMTThtSY5+pXp719YkLHCfGtlyvjmLuAEU1Y1g9R4wOEHrpZIk
/gzxQTy/G1qh6wUdW77c9t73yhN1pIY7bWx8pmajJHNu8Vq8bXGsYzQ0g9hxBULX
Yi6rdQk9zv3GbzUiSlgNNNVrzGnBy7wld5GVewIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFIZliQtBwK3gQ37at3K9bHIIFKYjMB8GA1UdIwQYMBaAFP/8E/65opCgjSAN
cZ8ssxsMEFg7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
X193VF9ybWlrS0NOSUExeG55eXpHd3dRV0RzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC82Zi9iNWYyZWMtYjc3Zi00YzhmLTllN2QtZTE4MzM0MmVhODgyLzEv
aG1XSkMwSEFyZUJEZnRxM2NyMXNjZ2dVcGlNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9i
NWYyZWMtYjc3Zi00YzhmLTllN2QtZTE4MzM0MmVhODgyLzEvX193VF9ybWlrS0NO
SUExeG55eXpHd3dRV0RzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuUdUMA0GCSqGSIb3DQEBCwUAA4IB
AQBl2GihTz9plSjtSWYlbMJ/EAECEh/sA+jZ2jZKQ8TeUy2ZRz/z92vymY+y4Qfq
vOkPl8rZE+GY71XgB+rhyk5e45fwrWixug9Cmvd28Jr8ueNM9r6bj7IrhLjYwGkb
K71lOpV4UYPdtSIsRp1sTM5387bR5KUBN8IknTjnJRLujBDcSb9jBZltpXhoYQor
f5zgABY+LswfeCjdGlh0Fqp4kSX42irvgTnqPFU7RkBRAshrbFw/RP6eokAuyjwu
bfVuCU9EcmGF34uRhpBHatDk2KZs7BVt57rVS06PAWaih98SrbcH4tmVMIDhVx1t
1jawWzAkKSXrZCojEYoQdNXH
-----END CERTIFICATE-----
Generated at Wed Mar 12 12:48:11 2025 by rpki-client