Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/8zCnIgh-ZctwaWW9UWnhk5D47-Y.roa
File: 8zCnIgh-ZctwaWW9UWnhk5D47-Y.roa (raw, json)
Hash identifier: MUHP885QC53KyVAwA3OVuIpjRfltCfNEkey65yD1E0A=
Subject key identifier: F3:30:A7:22:08:7E:65:CB:70:69:65:BD:51:69:E1:93:90:F8:EF:E6
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 01956B3D7548A955498D823F73995D0AA4D6
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/8zCnIgh-ZctwaWW9UWnhk5D47-Y.roa
Signing time: Thu 06 Mar 2025 11:35:44 +0000
ROA not before: Thu 06 Mar 2025 11:35:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212905
IP address blocks: 185.86.81.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6b:3d:75:48:a9:55:49:8d:82:3f:73:99:5d:0a:a4:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Mar 6 11:35:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f330a722087e65cb706965bd5169e19390f8efe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a4:a6:a3:07:9a:57:7e:b9:2c:02:e4:27:ae:
e3:9b:21:48:1d:57:28:b8:f2:51:c9:7d:16:d0:ea:
c4:04:b8:9c:51:fa:e1:ef:c0:32:dc:de:aa:67:93:
d9:a4:17:f0:ab:4c:be:ac:78:fb:db:e2:79:43:2e:
a2:c7:a5:27:9c:5a:22:b0:47:db:7e:ba:85:9f:4e:
85:4d:dd:55:b2:18:e7:0f:d0:d5:53:28:46:04:d8:
f8:c0:81:93:b2:7d:9c:cb:87:96:55:13:b8:4c:0e:
a5:df:f6:17:51:73:ff:84:a1:44:93:65:03:2f:ba:
07:a0:88:af:c6:04:2c:e5:d2:b9:50:62:d0:ac:30:
f4:ea:3c:b0:83:5b:67:3f:76:9d:1c:30:0c:36:68:
35:ae:62:34:67:fd:5c:1c:1b:be:59:95:c1:de:81:
4a:6a:d2:b2:7a:0a:46:64:ab:79:d3:07:93:74:9f:
ae:d9:e5:a2:25:46:00:62:74:72:11:94:cb:e6:67:
8e:b6:ce:f1:bc:b9:7b:61:fc:85:97:76:35:d5:20:
b7:d7:bd:e9:7b:b9:0d:07:a5:f2:93:3a:bd:1f:d2:
e6:6c:79:85:73:47:37:de:32:37:95:46:16:30:e1:
53:81:17:26:a8:17:0e:9d:a5:85:bd:bb:11:b1:6a:
4d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:30:A7:22:08:7E:65:CB:70:69:65:BD:51:69:E1:93:90:F8:EF:E6
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/8zCnIgh-ZctwaWW9UWnhk5D47-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.81.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:57:2f:a0:43:6b:92:6e:fd:d9:c4:ff:07:00:80:cd:8e:ef:
30:23:d5:11:b2:2b:d1:80:fc:1a:42:2d:b5:df:73:fd:1f:91:
de:ee:0e:56:c4:3e:c6:2f:46:d7:3b:ce:08:29:ed:70:a1:4c:
d6:41:07:6c:e0:a4:ef:c3:a0:0e:98:5f:cb:6c:39:60:0f:3c:
e5:55:1a:96:0f:52:d0:50:9a:80:21:74:b1:83:40:0a:26:39:
59:9f:c5:0e:f8:76:19:ec:e4:50:52:88:bb:fd:0e:5b:ca:16:
ca:08:bb:28:80:ff:59:6f:c7:6b:25:30:5b:5a:7e:56:ed:be:
22:73:b4:3b:3e:b4:f4:6c:c0:c7:9c:6d:1c:3b:d6:61:07:b1:
dd:60:68:04:c2:ad:c9:a7:73:06:50:af:54:dd:68:ec:8f:e3:
1a:c9:c2:64:e7:37:df:78:12:1d:58:e9:27:34:ac:72:58:0b:
d2:13:14:f2:3c:1a:79:b1:e6:f5:8b:a8:93:86:07:46:38:d8:
1d:8e:00:86:f0:df:f5:ce:af:33:9e:31:9d:61:b3:bc:a8:c3:
fe:3d:22:01:b8:62:d8:06:07:54:47:18:47:6c:d1:3a:9c:dd:
ad:44:4c:eb:08:6d:fa:59:e6:0b:8b:bf:c6:56:f6:48:bd:53:
a0:a0:29:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZVrPXVIqVVJjYI/c5ldCqTWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNTkyZTY4ODk1YzcwNjhiNDY1NTUwODkxN2FkNWJiZGRi
ZDBhNWYwHhcNMjUwMzA2MTEzNTQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzMwYTcyMjA4N2U2NWNiNzA2OTY1YmQ1MTY5ZTE5MzkwZjhlZmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6SmoweaV365LALkJ67jmyFIHVco
uPJRyX0W0OrEBLicUfrh78Ay3N6qZ5PZpBfwq0y+rHj72+J5Qy6ix6UnnFoisEfb
frqFn06FTd1VshjnD9DVUyhGBNj4wIGTsn2cy4eWVRO4TA6l3/YXUXP/hKFEk2UD
L7oHoIivxgQs5dK5UGLQrDD06jywg1tnP3adHDAMNmg1rmI0Z/1cHBu+WZXB3oFK
atKyegpGZKt50weTdJ+u2eWiJUYAYnRyEZTL5meOts7xvLl7YfyFl3Y11SC3173p
e7kNB6Xykzq9H9LmbHmFc0c33jI3lUYWMOFTgRcmqBcOnaWFvbsRsWpN0wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPMwpyIIfmXLcGllvVFp4ZOQ+O/mMB8GA1UdIwQY
MBaAFFBZLmiJXHBotGVVCJF61bvdvQpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEt
N2JiZDI4Y2U0YTc1LzEvOHpDbklnaC1aY3R3YVdXOVVXbmhrNUQ0Ny1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEtN2JiZDI4Y2U0YTc1
LzEvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVZRMA0G
CSqGSIb3DQEBCwUAA4IBAQCdVy+gQ2uSbv3ZxP8HAIDNju8wI9URsivRgPwaQi21
33P9H5He7g5WxD7GL0bXO84IKe1woUzWQQds4KTvw6AOmF/LbDlgDzzlVRqWD1LQ
UJqAIXSxg0AKJjlZn8UO+HYZ7ORQUoi7/Q5byhbKCLsogP9Zb8drJTBbWn5W7b4i
c7Q7PrT0bMDHnG0cO9ZhB7HdYGgEwq3Jp3MGUK9U3Wjsj+MaycJk5zffeBIdWOkn
NKxyWAvSExTyPBp5seb1i6iThgdGONgdjgCG8N/1zq8znjGdYbO8qMP+PSIBuGLY
BgdURxhHbNE6nN2tREzrCG36WeYLi7/GVvZIvVOgoClS
-----END CERTIFICATE-----
Generated at Wed Apr 9 04:29:36 2025 by rpki-client