Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/5W5mIYMMtyE4cMEJYpv0Ygmfex8.roa
File: 5W5mIYMMtyE4cMEJYpv0Ygmfex8.roa (raw, json)
Hash identifier: H0o2zibjeOf/AdqD4+Dc6N+ry9UubvXb/MS8ESyZ9wg=
Subject key identifier: E5:6E:66:21:83:0C:B7:21:38:70:C1:09:62:9B:F4:62:09:9F:7B:1F
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 03312DBF
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/5W5mIYMMtyE4cMEJYpv0Ygmfex8.roa
Signing time: Sat 01 Jan 2022 05:03:11 +0000
ROA not before: Sat 01 Jan 2022 05:03:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.213.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53554623 (0x3312dbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: Jan 1 05:03:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e56e6621830cb7213870c109629bf462099f7b1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bb:03:c4:6c:d0:b2:cb:f8:fb:df:59:5d:69:
f3:9b:65:23:f6:06:18:72:71:29:26:26:d3:c8:dd:
5a:c2:4f:e8:97:05:89:01:9a:4b:77:e3:4c:93:eb:
12:24:f2:73:99:3d:e0:21:f3:22:50:38:d5:a2:cd:
41:42:8a:85:71:29:07:57:03:df:9c:f3:0a:4a:b3:
70:8d:24:71:c0:9e:bd:7c:3a:10:33:15:e1:4b:a0:
f1:bc:30:85:dd:40:28:86:a8:e4:6f:f2:fd:c0:7c:
aa:54:fa:5e:ee:cc:f8:fd:e6:cb:eb:23:ed:98:c1:
66:e4:1f:ff:3b:13:e2:0e:fe:a2:f2:2d:ee:79:e2:
b6:89:d7:3b:e8:d4:4e:09:1f:16:49:8c:24:c8:b5:
9f:fb:b7:40:f6:5e:93:38:24:4e:07:5f:b5:d1:24:
08:29:d0:77:ca:25:a6:04:22:47:2f:42:b2:5a:e6:
80:7f:94:86:d4:ab:ae:6a:6e:e0:bb:0e:ef:5b:2c:
d0:fd:9a:ea:d6:cc:99:21:0e:51:05:13:a7:db:35:
7a:ec:5b:55:a5:8b:b5:68:0b:2d:f5:00:97:d4:0d:
37:d6:b0:fd:82:32:cf:3b:cf:01:6f:2f:9b:ee:35:
6b:8a:97:2f:9a:c3:8e:cc:ed:b5:59:86:93:86:f4:
ba:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:6E:66:21:83:0C:B7:21:38:70:C1:09:62:9B:F4:62:09:9F:7B:1F
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/5W5mIYMMtyE4cMEJYpv0Ygmfex8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.242.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:e9:db:f7:0d:e1:7d:48:33:49:ad:c1:b8:e7:e2:8e:17:bf:
e3:39:90:d0:f3:40:08:39:dd:aa:f6:1f:e4:b7:a8:14:70:b8:
a9:d7:b8:2b:1c:a8:f3:ca:6f:82:ce:d2:60:07:e0:26:43:f9:
f8:0c:50:1f:0b:9d:4b:b9:46:55:f6:e2:cf:0a:72:6b:aa:4a:
b8:56:00:0c:95:17:7f:aa:0c:80:8b:42:a3:bf:05:1e:25:0c:
7e:86:b3:39:71:fa:3e:9f:be:9d:16:3d:fb:a6:62:9c:60:9d:
83:70:f8:6f:0d:12:98:36:96:9f:e7:67:ef:c9:7b:7a:e8:7f:
17:b9:28:1d:3e:ef:75:a1:00:54:c2:ce:04:7a:25:e9:3f:99:
4a:cc:ca:d7:8a:d8:95:55:8d:0e:5c:5d:97:9a:65:31:27:39:
5c:69:06:86:1f:7d:cc:22:0f:1c:80:21:19:8b:e6:cd:66:7a:
16:05:76:d4:8a:e6:31:06:f2:1a:75:1d:33:c9:4f:70:20:b3:
63:cb:ef:0b:5d:e9:31:78:c9:70:14:27:d4:d3:98:db:77:41:
0e:f1:70:cd:ad:c4:54:84:bc:31:59:b6:7d:77:ac:b7:95:ef:
65:cb:6b:bb:27:f9:3f:1c:6a:29:0f:16:74:a6:3a:02:c7:af:
fa:65:09:16
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAzEtvzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MDg1Mzk3ZjI2YTA0NGNhZWY2YTZiNjY5Mjg3MzMxYWE0ZDY4NjQ1MB4XDTIyMDEw
MTA1MDMxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTU2ZTY2MjE4MzBj
YjcyMTM4NzBjMTA5NjI5YmY0NjIwOTlmN2IxZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOC7A8Rs0LLL+PvfWV1p85tlI/YGGHJxKSYm08jdWsJP6JcF
iQGaS3fjTJPrEiTyc5k94CHzIlA41aLNQUKKhXEpB1cD35zzCkqzcI0kccCevXw6
EDMV4Uug8bwwhd1AKIao5G/y/cB8qlT6Xu7M+P3my+sj7ZjBZuQf/zsT4g7+ovIt
7nnitonXO+jUTgkfFkmMJMi1n/u3QPZekzgkTgdftdEkCCnQd8olpgQiRy9Cslrm
gH+UhtSrrmpu4LsO71ss0P2a6tbMmSEOUQUTp9s1euxbVaWLtWgLLfUAl9QNN9aw
/YIyzzvPAW8vm+41a4qXL5rDjszttVmGk4b0usECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTlbmYhgwy3IThwwQlim/RiCZ97HzAfBgNVHSMEGDAWgBRghTl/JqBEyu9q
a2aShzMapNaGRTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1lJVTVmeWFnUk1ydmFtdG1rb2N6R3FUV2hrVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2QvMTEyNWEyLTQ0MzItNDgzZi1hMDBiLTYxNmQ5N2E3N2JkNi8x
LzVXNW1JWU1NdHlFNGNNRUpZcHYwWWdtZmV4OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Qv
MTEyNWEyLTQ0MzItNDgzZi1hMDBiLTYxNmQ5N2E3N2JkNi8xL1lJVTVmeWFnUk1y
dmFtdG1rb2N6R3FUV2hrVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnV8jANBgkqhkiG9w0BAQsFAAOC
AQEAHenb9w3hfUgzSa3BuOfijhe/4zmQ0PNACDndqvYf5LeoFHC4qde4Kxyo88pv
gs7SYAfgJkP5+AxQHwudS7lGVfbizwpya6pKuFYADJUXf6oMgItCo78FHiUMfoaz
OXH6Pp++nRY9+6ZinGCdg3D4bw0SmDaWn+dn78l7euh/F7koHT7vdaEAVMLOBHol
6T+ZSszK14rYlVWNDlxdl5plMSc5XGkGhh99zCIPHIAhGYvmzWZ6FgV21IrmMQby
GnUdM8lPcCCzY8vvC13pMXjJcBQn1NOY23dBDvFwza3EVIS8MVm2fXest5XvZctr
uyf5PxxqKQ8WdKY6Asev+mUJFg==
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:58:50 2025 by rpki-client