Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/H-Yt5FoKzZFkLIkaFu-xWw_buGE.roa
File: H-Yt5FoKzZFkLIkaFu-xWw_buGE.roa (raw, json)
Hash identifier: FOTFvdLDXstlOIfQpA+rMFC4iGbO8vZig/vCbn7JvL8=
Subject key identifier: 1F:E6:2D:E4:5A:0A:CD:91:64:2C:89:1A:16:EF:B1:5B:0F:DB:B8:61
Certificate issuer: /CN=2cbd76688b87c03914ae2a2e1490c2f1e9141661
Certificate serial: 0194228E2B4241C11F99C1DC40DC43F8DD5D
Authority key identifier: 2C:BD:76:68:8B:87:C0:39:14:AE:2A:2E:14:90:C2:F1:E9:14:16:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LL12aIuHwDkUriouFJDC8ekUFmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/H-Yt5FoKzZFkLIkaFu-xWw_buGE.roa
Signing time: Wed 01 Jan 2025 15:48:49 +0000
ROA not before: Wed 01 Jan 2025 15:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 19905
IP address blocks: 185.47.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:2b:42:41:c1:1f:99:c1:dc:40:dc:43:f8:dd:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cbd76688b87c03914ae2a2e1490c2f1e9141661
Validity
Not Before: Jan 1 15:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1fe62de45a0acd91642c891a16efb15b0fdbb861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7f:16:8a:22:f3:38:90:a3:05:c8:ca:10:37:
b0:65:ab:25:42:21:3f:0b:2b:77:80:55:74:da:e6:
9e:54:1f:28:6b:f8:96:c7:93:4a:31:45:0d:ad:78:
38:a7:4c:97:b9:90:45:b5:a1:b5:42:6a:ea:2d:16:
90:19:8f:94:76:6a:b0:f7:a7:1f:fa:3c:ce:5c:e7:
8f:f6:62:b3:a0:fc:88:36:f4:00:fe:be:0b:a4:b5:
19:0e:38:42:40:d9:0d:65:17:66:c0:74:3b:cc:44:
23:ad:ed:de:2b:2b:ee:21:a2:0d:9b:bd:47:e8:24:
82:b4:6b:e1:a5:b4:0c:22:23:1f:c9:ba:a4:3d:db:
21:70:e2:14:22:19:36:37:93:a0:6f:2a:f0:f4:52:
71:dd:b7:23:e5:a8:38:28:f3:a4:ef:af:f6:07:91:
7d:7c:43:8b:4f:d6:e8:24:26:5a:a2:3f:f7:87:f9:
10:c6:9a:d4:38:d2:5c:b6:23:bc:03:fa:90:ae:27:
2e:15:36:ae:fa:95:7b:bf:25:4d:bd:40:9b:34:1f:
81:02:63:ac:6b:ab:9b:86:e2:62:22:c3:ca:20:52:
05:30:91:37:9a:da:2a:ab:f1:ce:f2:e5:e4:75:9e:
8a:86:4d:7f:ad:4d:5c:25:40:29:2c:77:03:4c:76:
70:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E6:2D:E4:5A:0A:CD:91:64:2C:89:1A:16:EF:B1:5B:0F:DB:B8:61
X509v3 Authority Key Identifier:
keyid:2C:BD:76:68:8B:87:C0:39:14:AE:2A:2E:14:90:C2:F1:E9:14:16:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LL12aIuHwDkUriouFJDC8ekUFmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/H-Yt5FoKzZFkLIkaFu-xWw_buGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/66b959-472f-4922-a226-e0f930806bdc/1/LL12aIuHwDkUriouFJDC8ekUFmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.182.0/24
Signature Algorithm: sha256WithRSAEncryption
98:81:95:47:e0:db:32:75:1c:5a:d0:e7:ba:be:d5:96:5d:e2:
fd:78:3a:fc:ed:6c:df:55:67:f5:39:c1:1a:ed:b0:b1:9c:6e:
54:4f:83:d9:f6:58:69:02:74:76:76:a5:df:2c:ab:8c:48:52:
21:33:55:df:98:40:1a:db:12:8d:bb:df:77:12:c0:27:3e:cc:
c9:54:15:3d:4c:06:12:8f:cb:09:80:f6:fb:0c:4d:d5:c7:48:
dd:1a:54:5f:78:39:2d:c7:c7:55:4c:c0:21:ae:22:a6:0f:dd:
25:e7:00:1d:c9:84:4f:5c:2c:f8:a4:16:e9:06:aa:7a:70:aa:
ea:73:13:0c:4d:d3:db:23:9a:c8:c3:e7:40:2b:a7:14:f8:4d:
2a:e6:87:da:7a:d3:18:55:26:cb:30:ff:5e:7f:68:3a:94:ce:
af:ae:62:0d:91:e8:40:5c:fc:1d:99:cf:8b:d4:41:3e:82:c9:
c0:ea:52:0b:6a:21:2b:8a:69:f6:2b:46:b2:85:c2:a0:4f:ff:
a8:5a:0f:66:60:09:0b:d4:b1:10:7c:2c:a5:95:36:38:cc:86:
90:8c:07:73:ec:a6:86:6d:6c:d3:47:8c:08:c7:d9:8f:2b:ad:
34:ff:ea:4a:c0:22:48:22:ae:ee:85:32:c6:c9:22:6e:e6:e9:
9c:e2:09:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQijitCQcEfmcHcQNxD+N1dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjYmQ3NjY4OGI4N2MwMzkxNGFlMmEyZTE0OTBjMmYxZTkx
NDE2NjEwHhcNMjUwMTAxMTU0ODQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZmU2MmRlNDVhMGFjZDkxNjQyYzg5MWExNmVmYjE1YjBmZGJiODYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4H8WiiLzOJCjBcjKEDewZaslQiE/
Cyt3gFV02uaeVB8oa/iWx5NKMUUNrXg4p0yXuZBFtaG1QmrqLRaQGY+Udmqw96cf
+jzOXOeP9mKzoPyINvQA/r4LpLUZDjhCQNkNZRdmwHQ7zEQjre3eKyvuIaINm71H
6CSCtGvhpbQMIiMfybqkPdshcOIUIhk2N5Ogbyrw9FJx3bcj5ag4KPOk76/2B5F9
fEOLT9boJCZaoj/3h/kQxprUONJctiO8A/qQricuFTau+pV7vyVNvUCbNB+BAmOs
a6ubhuJiIsPKIFIFMJE3mtoqq/HO8uXkdZ6Khk1/rU1cJUApLHcDTHZwMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB/mLeRaCs2RZCyJGhbvsVsP27hhMB8GA1UdIwQY
MBaAFCy9dmiLh8A5FK4qLhSQwvHpFBZhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEwxMmFJdUh3RGtVcmlvdUZKREM4ZWtVRm1FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi82NmI5NTktNDcyZi00OTIyLWEyMjYt
ZTBmOTMwODA2YmRjLzEvSC1ZdDVGb0t6WkZrTElrYUZ1LXhXd19idUdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi82NmI5NTktNDcyZi00OTIyLWEyMjYtZTBmOTMwODA2YmRj
LzEvTEwxMmFJdUh3RGtVcmlvdUZKREM4ZWtVRm1FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuS+2MA0G
CSqGSIb3DQEBCwUAA4IBAQCYgZVH4NsydRxa0Oe6vtWWXeL9eDr87WzfVWf1OcEa
7bCxnG5UT4PZ9lhpAnR2dqXfLKuMSFIhM1XfmEAa2xKNu993EsAnPszJVBU9TAYS
j8sJgPb7DE3Vx0jdGlRfeDktx8dVTMAhriKmD90l5wAdyYRPXCz4pBbpBqp6cKrq
cxMMTdPbI5rIw+dAK6cU+E0q5ofaetMYVSbLMP9ef2g6lM6vrmINkehAXPwdmc+L
1EE+gsnA6lILaiErimn2K0ayhcKgT/+oWg9mYAkL1LEQfCyllTY4zIaQjAdz7KaG
bWzTR4wIx9mPK600/+pKwCJIIq7uhTLGySJu5umc4gnT
-----END CERTIFICATE-----
Generated at Thu Feb 20 02:55:56 2025 by rpki-client