Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b255e1-abf7-467f-9d21-15b5a3c40a56/1/jZeQv6cmEU_Pdfy-f80bmtp0h00.roa
File: jZeQv6cmEU_Pdfy-f80bmtp0h00.roa (raw, json)
Hash identifier: 1vzjN/KzcJVGSQvBdETKlVnD2s/8ZGTK76yjAV+IJXc=
Subject key identifier: 8D:97:90:BF:A7:26:11:4F:CF:75:FC:BE:7F:CD:1B:9A:DA:74:87:4D
Certificate issuer: /CN=64a36b51326f70b5b772b9481384ac7dea371c1f
Certificate serial: 4ED620
Authority key identifier: 64:A3:6B:51:32:6F:70:B5:B7:72:B9:48:13:84:AC:7D:EA:37:1C:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKNrUTJvcLW3crlIE4Ssfeo3HB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b255e1-abf7-467f-9d21-15b5a3c40a56/1/jZeQv6cmEU_Pdfy-f80bmtp0h00.roa
Signing time: Sat 01 Jan 2022 02:00:26 +0000
ROA not before: Sat 01 Jan 2022 02:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.253.1.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5166624 (0x4ed620)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a36b51326f70b5b772b9481384ac7dea371c1f
Validity
Not Before: Jan 1 02:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d9790bfa726114fcf75fcbe7fcd1b9ada74874d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:99:56:f2:a8:86:3c:28:54:26:b2:64:f8:8b:
6c:d7:5d:6d:cd:1d:f4:99:a0:73:f0:09:72:6b:eb:
08:f1:3f:bd:4d:60:dc:8f:e2:b9:1d:b7:22:7e:29:
3e:d2:ab:2d:05:fd:4e:ab:83:2a:0b:da:4e:fb:ad:
56:2a:f4:22:e4:2e:93:93:47:49:f2:05:6e:a5:22:
41:2d:77:17:d2:cb:a1:ed:8d:d5:36:e7:e2:a9:16:
08:26:5b:4c:1a:1e:10:cb:7e:54:63:fd:6e:06:1b:
68:a2:ee:5c:3b:69:58:3f:f6:ed:1e:73:b1:aa:d8:
0a:e4:02:ab:96:8a:4d:9d:3d:ac:c8:75:0c:54:f3:
00:08:5a:ac:87:7a:0f:34:9d:b9:48:d8:3e:5b:04:
f3:10:57:aa:6f:ff:ce:6f:f8:30:6d:87:86:f7:04:
17:74:46:e2:46:34:6b:44:cb:c9:1c:0c:cb:90:21:
6e:a3:ee:b4:1d:31:93:e7:3c:bf:ba:24:10:1f:5f:
01:0d:19:89:31:d6:9c:6c:0a:5c:a1:0b:1a:d2:de:
93:52:63:2d:d1:5d:e0:c6:23:d9:25:03:4c:1d:47:
fa:51:bc:f5:16:18:9e:61:cc:29:45:af:57:a1:93:
93:c9:b8:af:67:c5:13:06:a4:84:4e:eb:6f:f6:9b:
b2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:97:90:BF:A7:26:11:4F:CF:75:FC:BE:7F:CD:1B:9A:DA:74:87:4D
X509v3 Authority Key Identifier:
keyid:64:A3:6B:51:32:6F:70:B5:B7:72:B9:48:13:84:AC:7D:EA:37:1C:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKNrUTJvcLW3crlIE4Ssfeo3HB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b255e1-abf7-467f-9d21-15b5a3c40a56/1/jZeQv6cmEU_Pdfy-f80bmtp0h00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b255e1-abf7-467f-9d21-15b5a3c40a56/1/ZKNrUTJvcLW3crlIE4Ssfeo3HB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.1.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:ae:dd:86:7f:9e:71:57:ce:5a:da:4c:d8:e5:15:8f:7a:a1:
e7:9b:48:73:e1:bd:48:cf:18:5e:fa:0b:c4:3d:69:db:35:9e:
c3:58:a9:de:28:4f:03:54:0a:52:9f:06:ba:84:6e:fc:45:aa:
29:1b:9a:54:5c:e2:5e:1c:7e:02:56:88:5e:2e:de:27:3d:bd:
87:27:e9:02:2a:c4:d8:a1:5e:7e:2e:a2:10:ee:b5:53:92:14:
0f:65:0d:9a:c7:b8:b6:8e:9d:e2:29:1f:52:8c:f7:97:4e:78:
cd:0c:00:05:4f:f4:b9:4f:7f:aa:87:d0:48:bd:b3:7d:db:79:
73:38:6e:bb:a8:9e:53:82:be:ba:a1:db:f7:b7:f8:4a:38:e8:
2e:4a:ab:4e:54:14:91:a1:07:0e:0c:12:68:8d:55:8e:da:ff:
f7:6c:76:74:c8:73:ee:e2:b9:35:9c:de:d1:54:a3:31:3d:06:
87:3c:9c:c5:42:39:19:70:fb:99:0b:b2:f2:a8:20:17:2e:9f:
3b:3a:05:9c:7a:d9:e1:a6:71:ff:ee:e6:5c:89:5f:fa:66:bf:
53:82:0a:f2:a4:99:39:f2:22:c1:35:fa:cb:73:2d:08:88:28:
b6:12:66:a2:0c:a0:64:1c:0b:24:b8:bc:cd:b0:ae:07:08:20:
d9:d8:09:50
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDTtYgMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDY0
YTM2YjUxMzI2ZjcwYjViNzcyYjk0ODEzODRhYzdkZWEzNzFjMWYwHhcNMjIwMTAx
MDIwMDI2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4ZDk3OTBiZmE3MjYx
MTRmY2Y3NWZjYmU3ZmNkMWI5YWRhNzQ4NzRkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA0JlW8qiGPChUJrJk+Its111tzR30maBz8Alya+sI8T+9TWDc
j+K5Hbcifik+0qstBf1Oq4MqC9pO+61WKvQi5C6Tk0dJ8gVupSJBLXcX0suh7Y3V
NufiqRYIJltMGh4Qy35UY/1uBhtoou5cO2lYP/btHnOxqtgK5AKrlopNnT2syHUM
VPMACFqsh3oPNJ25SNg+WwTzEFeqb//Ob/gwbYeG9wQXdEbiRjRrRMvJHAzLkCFu
o+60HTGT5zy/uiQQH18BDRmJMdacbApcoQsa0t6TUmMt0V3gxiPZJQNMHUf6Ubz1
FhieYcwpRa9XoZOTybivZ8UTBqSETutv9puybwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFI2XkL+nJhFPz3X8vn/NG5radIdNMB8GA1UdIwQYMBaAFGSja1Eyb3C1t3K5
SBOErH3qNxwfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WktOclVUSnZjTFczY3JsSUU0U3NmZW8zSEI4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xYy9iMjU1ZTEtYWJmNy00NjdmLTlkMjEtMTViNWEzYzQwYTU2LzEv
alplUXY2Y21FVV9QZGZ5LWY4MGJtdHAwaDAwLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9i
MjU1ZTEtYWJmNy00NjdmLTlkMjEtMTViNWEzYzQwYTU2LzEvWktOclVUSnZjTFcz
Y3JsSUU0U3NmZW8zSEI4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf0BMA0GCSqGSIb3DQEBCwUAA4IB
AQDArt2Gf55xV85a2kzY5RWPeqHnm0hz4b1Izxhe+gvEPWnbNZ7DWKneKE8DVApS
nwa6hG78RaopG5pUXOJeHH4CVoheLt4nPb2HJ+kCKsTYoV5+LqIQ7rVTkhQPZQ2a
x7i2jp3iKR9SjPeXTnjNDAAFT/S5T3+qh9BIvbN923lzOG67qJ5Tgr66odv3t/hK
OOguSqtOVBSRoQcODBJojVWO2v/3bHZ0yHPu4rk1nN7RVKMxPQaHPJzFQjkZcPuZ
C7LyqCAXLp87OgWcetnhpnH/7uZciV/6Zr9TggrypJk58iLBNfrLcy0IiCi2Emai
DKBkHAskuLzNsK4HCCDZ2AlQ
-----END CERTIFICATE-----
Generated at Mon May 12 17:03:08 2025 by rpki-client