Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1a325-8eac-45a2-b576-dd2125abcf5d/1/LLoVMhzt2K5YOy5LMkwu8PVmxY4.roa
File: LLoVMhzt2K5YOy5LMkwu8PVmxY4.roa (raw, json)
Hash identifier: 6HA/FbiQvpa7wGr78kaTAvTZQEZLXWK7Hax7a6ytIlo=
Subject key identifier: 2C:BA:15:32:1C:ED:D8:AE:58:3B:2E:4B:32:4C:2E:F0:F5:66:C5:8E
Certificate issuer: /CN=d2de05d3ca750dd5c27eebfa5539c20b7d2829cf
Certificate serial: 01856F54A822329058A77870326253041864
Authority key identifier: D2:DE:05:D3:CA:75:0D:D5:C2:7E:EB:FA:55:39:C2:0B:7D:28:29:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0t4F08p1DdXCfuv6VTnCC30oKc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1a325-8eac-45a2-b576-dd2125abcf5d/1/LLoVMhzt2K5YOy5LMkwu8PVmxY4.roa
Signing time: Sun 01 Jan 2023 21:54:57 +0000
ROA not before: Sun 01 Jan 2023 21:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202658
IP address blocks: 185.157.184.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:a8:22:32:90:58:a7:78:70:32:62:53:04:18:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2de05d3ca750dd5c27eebfa5539c20b7d2829cf
Validity
Not Before: Jan 1 21:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cba15321cedd8ae583b2e4b324c2ef0f566c58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d0:cb:35:81:c5:f8:40:c7:f5:7f:21:2a:10:
f4:42:bf:a8:b4:87:57:33:77:15:a4:88:b7:b9:47:
90:18:6e:3f:51:66:12:ba:79:a4:60:3f:9c:d6:6b:
df:94:96:35:7e:9a:93:1a:79:03:0a:53:ca:0b:dc:
35:05:b6:79:76:9d:91:59:43:60:f4:36:95:63:b7:
30:2c:dd:ab:e6:23:af:83:e6:ee:e0:a3:c0:34:7a:
f9:5a:98:2b:05:48:c6:a1:73:fe:41:4d:e4:73:77:
a7:48:95:c8:36:46:a1:6b:16:87:7a:59:12:6c:7e:
ab:b0:e2:69:e4:8f:06:29:5d:92:0b:a9:b1:3f:66:
dd:9a:1c:57:b0:d9:e8:f5:45:05:8f:a7:de:70:67:
b4:44:62:2d:da:92:19:28:2e:58:8e:43:59:00:54:
bc:03:ab:33:76:ff:b8:23:04:fe:cf:37:19:f4:d4:
dc:16:60:6f:64:1f:f8:b9:93:c5:d5:e6:bd:88:a8:
9b:90:ae:59:a9:97:49:18:5d:b4:33:9a:48:11:b7:
e2:58:dd:95:4e:e1:3d:68:13:2e:71:79:a0:44:06:
6f:a3:8f:2a:96:38:18:c5:f1:43:85:10:d5:c7:12:
20:99:ce:54:fd:a5:60:7c:7a:8c:f3:72:ce:96:6b:
6e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:BA:15:32:1C:ED:D8:AE:58:3B:2E:4B:32:4C:2E:F0:F5:66:C5:8E
X509v3 Authority Key Identifier:
keyid:D2:DE:05:D3:CA:75:0D:D5:C2:7E:EB:FA:55:39:C2:0B:7D:28:29:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0t4F08p1DdXCfuv6VTnCC30oKc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1a325-8eac-45a2-b576-dd2125abcf5d/1/LLoVMhzt2K5YOy5LMkwu8PVmxY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1a325-8eac-45a2-b576-dd2125abcf5d/1/0t4F08p1DdXCfuv6VTnCC30oKc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.184.0/22
Signature Algorithm: sha256WithRSAEncryption
06:12:0a:5d:c7:87:6a:23:d3:aa:c9:ca:f7:62:7a:45:7e:11:
fd:c4:87:d8:e6:b9:68:59:bb:62:50:1c:0b:ea:a0:1c:6e:e5:
e5:c8:8f:0e:33:39:e5:67:aa:99:5b:63:f4:75:10:87:a0:50:
1a:36:03:d6:fe:ce:9c:1c:80:64:6f:9c:7b:cb:83:b2:f3:b2:
3d:1e:ad:3f:90:0d:8f:d4:20:7c:92:95:de:7f:02:87:27:10:
1d:b9:13:2c:d7:5e:27:9f:91:1e:06:b3:8a:57:05:6c:c4:a9:
9d:c7:70:2b:d8:67:d8:bc:1c:ba:b4:81:97:51:49:9b:78:a7:
e1:a1:ba:b2:1d:e3:ff:e7:47:53:24:25:2c:38:6c:dc:17:ec:
19:1f:6f:c9:5f:2f:3d:84:af:4d:6e:c3:a5:cf:3c:8d:04:53:
35:61:35:ee:66:a7:3b:f9:93:7b:72:87:71:af:fe:37:d5:c7:
17:54:44:08:21:36:4e:73:4f:29:15:90:0d:6a:b0:d3:05:27:
1c:58:26:77:d9:17:c1:05:58:43:27:a5:14:c1:45:6e:44:fd:
4e:6c:0d:8e:28:8f:ab:b7:6b:73:6f:59:1c:16:bd:36:f1:3d:
9f:bd:87:79:a9:3e:50:c3:b0:30:2c:f4:7f:f1:2b:69:54:e7:
ae:7d:e2:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvVKgiMpBYp3hwMmJTBBhkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyZGUwNWQzY2E3NTBkZDVjMjdlZWJmYTU1MzljMjBiN2Qy
ODI5Y2YwHhcNMjMwMTAxMjE1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyY2JhMTUzMjFjZWRkOGFlNTgzYjJlNGIzMjRjMmVmMGY1NjZjNThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdDLNYHF+EDH9X8hKhD0Qr+otIdX
M3cVpIi3uUeQGG4/UWYSunmkYD+c1mvflJY1fpqTGnkDClPKC9w1BbZ5dp2RWUNg
9DaVY7cwLN2r5iOvg+bu4KPANHr5WpgrBUjGoXP+QU3kc3enSJXINkahaxaHelkS
bH6rsOJp5I8GKV2SC6mxP2bdmhxXsNno9UUFj6fecGe0RGIt2pIZKC5YjkNZAFS8
A6szdv+4IwT+zzcZ9NTcFmBvZB/4uZPF1ea9iKibkK5ZqZdJGF20M5pIEbfiWN2V
TuE9aBMucXmgRAZvo48qljgYxfFDhRDVxxIgmc5U/aVgfHqM83LOlmtuSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCy6FTIc7diuWDsuSzJMLvD1ZsWOMB8GA1UdIwQY
MBaAFNLeBdPKdQ3Vwn7r+lU5wgt9KCnPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHQ0RjA4cDFEZFhDZnV2NlZUbkNDMzBvS2M4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iMWEzMjUtOGVhYy00NWEyLWI1NzYt
ZGQyMTI1YWJjZjVkLzEvTExvVk1oenQySzVZT3k1TE1rd3U4UFZteFk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9iMWEzMjUtOGVhYy00NWEyLWI1NzYtZGQyMTI1YWJjZjVk
LzEvMHQ0RjA4cDFEZFhDZnV2NlZUbkNDMzBvS2M4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZ24MA0G
CSqGSIb3DQEBCwUAA4IBAQAGEgpdx4dqI9Oqycr3YnpFfhH9xIfY5rloWbtiUBwL
6qAcbuXlyI8OMznlZ6qZW2P0dRCHoFAaNgPW/s6cHIBkb5x7y4Oy87I9Hq0/kA2P
1CB8kpXefwKHJxAduRMs114nn5EeBrOKVwVsxKmdx3Ar2GfYvBy6tIGXUUmbeKfh
obqyHeP/50dTJCUsOGzcF+wZH2/JXy89hK9NbsOlzzyNBFM1YTXuZqc7+ZN7codx
r/431ccXVEQIITZOc08pFZANarDTBSccWCZ32RfBBVhDJ6UUwUVuRP1ObA2OKI+r
t2tzb1kcFr028T2fvYd5qT5Qw7AwLPR/8StpVOeufeIi
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:02 2025 by rpki-client