Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/HMWIckkJ0EFmlufS7jeHUcRkiZ8.roa
File: HMWIckkJ0EFmlufS7jeHUcRkiZ8.roa (raw, json)
Hash identifier: wrTE46v7Pu8f0rMBrwmsZCyhCkVzBcDkMy40eUdiqdk=
Subject key identifier: 1C:C5:88:72:49:09:D0:41:66:96:E7:D2:EE:37:87:51:C4:64:89:9F
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 019423D6D85A0F9D61324EB14010A030BD7B
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/HMWIckkJ0EFmlufS7jeHUcRkiZ8.roa
Signing time: Wed 01 Jan 2025 21:47:50 +0000
ROA not before: Wed 01 Jan 2025 21:47:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215419
IP address blocks: 81.29.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:d8:5a:0f:9d:61:32:4e:b1:40:10:a0:30:bd:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 1 21:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1cc588724909d0416696e7d2ee378751c464899f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:69:a6:db:59:1f:1b:5f:e6:2a:66:3b:26:c7:
2b:31:5c:97:40:2e:b8:52:d7:3a:e0:83:f6:ac:44:
3b:8c:b3:76:13:75:ce:6f:ef:53:3b:1a:35:0f:dc:
96:64:62:d0:80:61:86:f8:a2:07:05:04:a5:33:01:
ef:14:3f:4e:ae:9c:34:b8:b2:3d:e8:03:a3:0d:b3:
af:60:55:3e:1e:ad:83:26:35:2c:24:4f:94:2f:0e:
2a:af:02:10:1c:41:b4:bb:f2:c5:0b:a9:8d:c4:3b:
77:14:01:fc:bc:f8:d7:be:4d:04:17:4c:24:5b:8b:
56:15:93:53:9f:e7:da:e9:55:2d:1d:8c:96:4e:b3:
45:ca:8d:d6:90:3d:80:79:a1:83:e1:8f:35:c0:69:
af:05:fb:09:a9:07:87:70:b3:de:27:c9:98:5b:4d:
ee:65:e4:36:79:22:3b:4a:ae:41:26:7e:d8:54:5c:
05:79:a4:87:d8:bd:64:bb:ee:3d:8f:ef:82:d5:73:
b0:36:d6:f7:0b:1b:0f:bc:e4:df:bc:83:52:7f:b0:
94:5a:d7:b8:2c:d2:46:31:81:03:f1:af:ff:54:59:
a1:72:04:a8:b9:74:a3:1c:3b:c3:1a:65:3b:14:14:
3c:e9:0d:9f:b2:ae:ab:7b:2f:fc:3b:75:6b:bc:9f:
16:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:C5:88:72:49:09:D0:41:66:96:E7:D2:EE:37:87:51:C4:64:89:9F
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/HMWIckkJ0EFmlufS7jeHUcRkiZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.158.0/24
Signature Algorithm: sha256WithRSAEncryption
68:75:3e:55:10:45:bb:82:54:b1:cc:86:6b:43:f1:11:96:ff:
31:1b:19:09:c2:84:bc:73:72:e7:0f:9e:53:6a:5c:b8:53:9d:
be:5c:b6:f2:46:08:46:20:90:49:6c:8d:f7:30:4a:fb:7e:6f:
1f:1e:a2:ce:05:53:06:2f:db:dc:d4:87:56:d0:6d:50:ff:f1:
c1:7d:78:cf:da:55:1e:81:4c:c7:82:ad:c4:07:34:81:fb:09:
0a:81:66:f5:44:d6:a3:b7:72:b9:a5:37:e8:8b:eb:69:31:8e:
86:26:dc:62:68:1f:d7:c7:d6:94:b2:e8:86:48:d4:8e:02:9a:
37:ba:83:55:51:59:b8:d2:e0:04:91:e9:3a:19:52:d3:f4:14:
c8:6e:3c:32:ab:a1:b1:1b:f9:d0:2f:de:84:65:89:3f:9d:48:
14:f4:67:a3:4c:7d:00:a8:71:1a:92:87:8e:df:a5:82:ec:58:
7d:a7:54:26:d4:dd:da:52:52:94:5b:cd:50:56:f0:2c:63:79:
f3:56:b2:76:00:fb:d4:de:96:4e:52:2d:45:db:92:1f:ae:28:
ad:61:ad:67:4c:f5:1e:14:73:cb:31:09:70:d4:4f:22:30:5f:
71:1b:65:b3:37:58:80:cb:0b:13:ab:82:d6:40:6a:b9:73:c4:
d6:c9:73:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQj1thaD51hMk6xQBCgML17MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjUwMTAxMjE0NzUwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxY2M1ODg3MjQ5MDlkMDQxNjY5NmU3ZDJlZTM3ODc1MWM0NjQ4OTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0mmm21kfG1/mKmY7JscrMVyXQC64
Utc64IP2rEQ7jLN2E3XOb+9TOxo1D9yWZGLQgGGG+KIHBQSlMwHvFD9Orpw0uLI9
6AOjDbOvYFU+Hq2DJjUsJE+ULw4qrwIQHEG0u/LFC6mNxDt3FAH8vPjXvk0EF0wk
W4tWFZNTn+fa6VUtHYyWTrNFyo3WkD2AeaGD4Y81wGmvBfsJqQeHcLPeJ8mYW03u
ZeQ2eSI7Sq5BJn7YVFwFeaSH2L1ku+49j++C1XOwNtb3CxsPvOTfvINSf7CUWte4
LNJGMYED8a//VFmhcgSouXSjHDvDGmU7FBQ86Q2fsq6rey/8O3VrvJ8WSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBzFiHJJCdBBZpbn0u43h1HEZImfMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvSE1XSWNra0owRUZtbHVmUzdqZUhVY1JraVo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2eMA0G
CSqGSIb3DQEBCwUAA4IBAQBodT5VEEW7glSxzIZrQ/ERlv8xGxkJwoS8c3LnD55T
aly4U52+XLbyRghGIJBJbI33MEr7fm8fHqLOBVMGL9vc1IdW0G1Q//HBfXjP2lUe
gUzHgq3EBzSB+wkKgWb1RNajt3K5pTfoi+tpMY6GJtxiaB/Xx9aUsuiGSNSOApo3
uoNVUVm40uAEkek6GVLT9BTIbjwyq6GxG/nQL96EZYk/nUgU9GejTH0AqHEakoeO
36WC7Fh9p1Qm1N3aUlKUW81QVvAsY3nzVrJ2APvU3pZOUi1F25IfriitYa1nTPUe
FHPLMQlw1E8iMF9xG2WzN1iAywsTq4LWQGq5c8TWyXOz
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:36:48 2025 by rpki-client