Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/8c5153-6841-4b93-8d2d-2855ef24fd01/1/6sGs3Q4qQRGVbQW-Vc84Hv9w3O8.roa
File: 6sGs3Q4qQRGVbQW-Vc84Hv9w3O8.roa (raw, json)
Hash identifier: NCCEarHh0XlMD84sNbtjJ+91c/a0J6ZzRxAixEZ/WQE=
Subject key identifier: EA:C1:AC:DD:0E:2A:41:11:95:6D:05:BE:55:CF:38:1E:FF:70:DC:EF
Certificate issuer: /CN=88da7e6c0bbf4c4d9709e11df6be5a06854cf799
Certificate serial: 140645A4
Authority key identifier: 88:DA:7E:6C:0B:BF:4C:4D:97:09:E1:1D:F6:BE:5A:06:85:4C:F7:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iNp-bAu_TE2XCeEd9r5aBoVM95k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/8c5153-6841-4b93-8d2d-2855ef24fd01/1/6sGs3Q4qQRGVbQW-Vc84Hv9w3O8.roa
Signing time: Sat 01 Jan 2022 05:03:34 +0000
ROA not before: Sat 01 Jan 2022 05:03:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203724
IP address blocks: 185.125.226.0/24 maxlen: 24
185.125.225.0/24 maxlen: 24
185.125.224.0/24 maxlen: 24
185.125.227.0/24 maxlen: 24
2a06:bcc0:2::/48 maxlen: 48
2a06:bcc0:5::/48 maxlen: 48
2a06:bcc0:3::/48 maxlen: 48
2a06:bcc0:11::/48 maxlen: 48
2a06:bcc0:1::/48 maxlen: 48
2a06:bcc0:9::/48 maxlen: 48
2a06:bcc0:4::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 335955364 (0x140645a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88da7e6c0bbf4c4d9709e11df6be5a06854cf799
Validity
Not Before: Jan 1 05:03:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eac1acdd0e2a4111956d05be55cf381eff70dcef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2a:55:4d:d6:d0:21:59:c8:4e:3a:18:2f:bb:
90:cd:46:51:b1:2f:7d:2c:dd:77:4a:70:93:b2:8f:
52:93:c9:53:cc:08:a9:cd:16:ff:b1:81:c1:36:e6:
07:5b:8d:9a:13:dc:09:c0:54:6e:29:3c:b9:ef:0a:
87:c1:dc:23:44:75:0a:76:3e:a2:97:d2:48:d0:b8:
2c:4c:da:b5:e0:b0:7c:c8:0d:49:ab:b1:78:ed:68:
e1:bc:d2:df:80:3b:b2:10:db:81:5e:57:5c:30:28:
6f:90:c7:7e:aa:b6:f1:14:1e:bb:fe:b6:0b:ca:94:
79:91:70:89:1b:27:15:35:63:76:01:68:7d:a1:bd:
ed:da:3e:df:b2:49:2c:60:fa:b9:52:11:7e:cc:32:
df:f1:01:76:59:8c:9a:1d:73:db:ae:d9:62:95:1e:
98:c3:8f:3a:43:7b:4a:3a:0c:ed:01:99:41:5d:6b:
cf:8c:b7:da:7d:00:d8:68:5c:6c:ef:d6:0d:1c:43:
f3:42:b6:5b:ef:2f:2d:a6:ea:57:98:40:19:e9:e6:
07:4b:08:20:07:01:20:2c:0b:a4:36:d9:44:3d:cc:
59:05:f0:89:92:15:80:4e:d6:f3:29:60:1e:49:80:
e0:85:11:ef:9a:95:ae:e3:74:fb:a5:0c:29:7d:b5:
6e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C1:AC:DD:0E:2A:41:11:95:6D:05:BE:55:CF:38:1E:FF:70:DC:EF
X509v3 Authority Key Identifier:
keyid:88:DA:7E:6C:0B:BF:4C:4D:97:09:E1:1D:F6:BE:5A:06:85:4C:F7:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iNp-bAu_TE2XCeEd9r5aBoVM95k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/8c5153-6841-4b93-8d2d-2855ef24fd01/1/6sGs3Q4qQRGVbQW-Vc84Hv9w3O8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/8c5153-6841-4b93-8d2d-2855ef24fd01/1/iNp-bAu_TE2XCeEd9r5aBoVM95k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.224.0/22
IPv6:
2a06:bcc0:1::-2a06:bcc0:5:ffff:ffff:ffff:ffff:ffff
2a06:bcc0:9::/48
2a06:bcc0:11::/48
Signature Algorithm: sha256WithRSAEncryption
d0:42:6a:66:f2:b1:a8:79:44:68:1d:fd:61:7e:8f:c8:40:00:
41:77:86:91:51:f1:29:3d:42:f8:87:60:16:cd:8b:50:ee:c9:
ca:e1:df:11:67:ae:5e:79:42:41:0b:49:2c:bb:f7:c6:94:8a:
7e:2d:4c:e3:90:1e:e8:e6:41:37:30:1f:8d:fb:cb:91:11:9d:
9f:14:bf:27:6f:01:c6:3a:a8:2b:6d:65:68:78:2e:9e:e6:ba:
5b:dc:8b:36:5b:68:b6:8e:a1:9e:df:c6:72:8a:7e:3e:f0:ca:
69:84:92:43:38:0b:e7:cb:a9:56:b5:ad:33:79:8b:6c:3b:5c:
21:41:c5:c7:60:06:5d:cf:de:df:f6:32:cb:cf:05:df:36:20:
4e:21:db:13:7e:ec:ee:96:cb:12:4e:35:90:49:25:64:92:82:
ae:58:2d:54:e8:c0:80:5a:de:98:b5:25:72:c9:cb:e3:56:48:
19:47:fc:3e:ab:0e:8a:fc:c8:f1:11:84:e1:db:3b:78:48:08:
9c:9d:0c:77:01:1e:0c:09:3b:dd:d4:33:5b:48:47:97:85:6e:
65:d7:12:40:31:1c:e5:6c:1f:ae:e5:31:e9:6a:97:79:7a:03:
f1:4c:80:52:46:c3:26:53:a0:85:f9:32:88:8e:8c:ba:c6:d5:
bb:bd:22:e2
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgIEFAZFpDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OGRhN2U2YzBiYmY0YzRkOTcwOWUxMWRmNmJlNWEwNjg1NGNmNzk5MB4XDTIyMDEw
MTA1MDMzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWFjMWFjZGQwZTJh
NDExMTk1NmQwNWJlNTVjZjM4MWVmZjcwZGNlZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALgqVU3W0CFZyE46GC+7kM1GUbEvfSzdd0pwk7KPUpPJU8wI
qc0W/7GBwTbmB1uNmhPcCcBUbik8ue8Kh8HcI0R1CnY+opfSSNC4LEzateCwfMgN
SauxeO1o4bzS34A7shDbgV5XXDAob5DHfqq28RQeu/62C8qUeZFwiRsnFTVjdgFo
faG97do+37JJLGD6uVIRfswy3/EBdlmMmh1z267ZYpUemMOPOkN7SjoM7QGZQV1r
z4y32n0A2GhcbO/WDRxD80K2W+8vLabqV5hAGenmB0sIIAcBICwLpDbZRD3MWQXw
iZIVgE7W8ylgHkmA4IUR75qVruN0+6UMKX21bn0CAwEAAaOCAjcwggIzMB0GA1Ud
DgQWBBTqwazdDipBEZVtBb5Vzzge/3Dc7zAfBgNVHSMEGDAWgBSI2n5sC79MTZcJ
4R32vloGhUz3mTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lOcC1iQXVfVEUyWENlRWQ5cjVhQm9WTTk1ay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvOGM1MTUzLTY4NDEtNGI5My04ZDJkLTI4NTVlZjI0ZmQwMS8x
LzZzR3MzUTRxUVJHVmJRVy1WYzg0SHY5dzNPOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
OGM1MTUzLTY4NDEtNGI5My04ZDJkLTI4NTVlZjI0ZmQwMS8xL2lOcC1iQXVfVEUy
WENlRWQ5cjVhQm9WTTk1ay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBN
BggrBgEFBQcBBwEB/wQ+MDwwDAQCAAEwBgMEArl94DAsBAIAAjAmMBIDBwAqBrzA
AAEDBwEqBrzAAAQDBwAqBrzAAAkDBwAqBrzAABEwDQYJKoZIhvcNAQELBQADggEB
ANBCambysah5RGgd/WF+j8hAAEF3hpFR8Sk9QviHYBbNi1Duycrh3xFnrl55QkEL
SSy798aUin4tTOOQHujmQTcwH437y5ERnZ8UvydvAcY6qCttZWh4Lp7mulvcizZb
aLaOoZ7fxnKKfj7wymmEkkM4C+fLqVa1rTN5i2w7XCFBxcdgBl3P3t/2MsvPBd82
IE4h2xN+7O6WyxJONZBJJWSSgq5YLVTowIBa3pi1JXLJy+NWSBlH/D6rDor8yPER
hOHbO3hICJydDHcBHgwJO93UM1tIR5eFbmXXEkAxHOVsH67lMelql3l6A/FMgFJG
wyZToIX5MoiOjLrG1bu9IuI=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:44 2025 by rpki-client