Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/HV6okiZ_Mm9pgAnQyp-neXvD9Ys.roa
File: HV6okiZ_Mm9pgAnQyp-neXvD9Ys.roa (raw, json)
Hash identifier: Z8kbWAqPsQVcPrsGh46E3DnYGpnTYUasQHe7qcWJi5s=
Subject key identifier: 1D:5E:A8:92:26:7F:32:6F:69:80:09:D0:CA:9F:A7:79:7B:C3:F5:8B
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 01942445630EC0D0C7FE39D70BFF959B10D5
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/HV6okiZ_Mm9pgAnQyp-neXvD9Ys.roa
Signing time: Wed 01 Jan 2025 23:48:34 +0000
ROA not before: Wed 01 Jan 2025 23:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205550
IP address blocks: 82.99.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:63:0e:c0:d0:c7:fe:39:d7:0b:ff:95:9b:10:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Jan 1 23:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d5ea892267f326f698009d0ca9fa7797bc3f58b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a2:cb:a2:2d:35:9b:de:88:12:f4:26:14:8e:
6f:b8:42:21:e2:cb:10:1e:db:e0:91:d1:e9:49:06:
3a:b2:18:f5:64:e2:6c:e6:89:61:35:3a:46:9e:af:
5f:cd:59:af:2c:d3:7f:4c:b1:d1:a7:ce:0a:da:79:
e4:e5:a5:42:5f:5c:02:00:07:a1:94:b9:cd:d7:01:
ff:f1:1a:46:ea:09:8e:9a:1a:f2:91:4a:da:42:02:
dc:cd:2e:32:c0:d3:97:60:74:8a:d4:89:25:49:6c:
14:59:b0:87:f1:8a:e9:9a:ac:1b:22:8d:7f:c1:09:
3b:98:b2:a5:80:9b:5f:7c:b0:db:93:88:70:79:2c:
11:82:9a:05:23:44:fa:bb:c4:d1:c1:e1:2c:56:ab:
f7:e8:c3:50:22:ba:4a:bd:cb:81:01:2e:bb:2e:df:
6e:37:0b:45:70:97:15:25:6f:e1:7d:7a:fd:5b:52:
28:99:fd:8c:f1:81:66:d0:d6:61:a4:28:fb:d5:fc:
9f:a0:58:08:ec:23:91:29:f2:06:e4:38:c7:0d:e1:
c6:8c:ca:14:be:6b:95:eb:d6:57:8f:66:7b:65:08:
4e:f6:22:30:27:45:df:98:0f:7d:75:fa:23:61:f2:
c2:d5:eb:50:9c:63:0d:95:31:22:87:c6:04:5c:5e:
bf:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:5E:A8:92:26:7F:32:6F:69:80:09:D0:CA:9F:A7:79:7B:C3:F5:8B
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/HV6okiZ_Mm9pgAnQyp-neXvD9Ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.99.224.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:53:30:58:66:54:ee:45:32:d1:61:04:a3:c0:c9:02:05:78:
3a:87:5f:46:85:f0:7d:44:fe:9b:8e:49:07:ff:bb:c7:80:1f:
26:d8:06:f4:9d:4d:7f:02:32:7f:8a:2f:80:df:f0:49:f3:b8:
f7:aa:b6:df:ed:e3:c7:ec:88:d7:2a:fa:d2:c2:f1:d7:1b:b1:
a2:b7:0b:ec:a8:eb:98:70:d3:19:e1:dc:b3:48:fa:09:43:43:
15:b5:cc:0c:3d:8a:d2:cb:f7:f0:0c:32:5f:88:e5:ed:a2:71:
fd:fa:a4:fa:e7:6b:e0:88:1d:c4:a3:d1:33:b3:7e:51:29:4a:
68:f3:66:4a:01:d9:42:14:1d:8b:9a:e6:3f:fc:1e:16:2e:48:
c0:f8:e8:c7:ec:15:7d:36:cb:94:f1:ae:91:ad:20:9a:c7:dc:
46:fa:66:91:87:c8:bb:d3:5e:d7:49:b1:31:a0:3b:71:f6:68:
da:cf:b5:ad:7c:0d:2d:89:7b:bd:d6:bc:5f:3e:20:42:57:ea:
8f:02:6d:30:43:a1:35:83:2b:7e:c5:36:30:eb:65:1e:9b:a7:
77:a6:bb:2f:2f:5f:80:13:09:dd:c7:42:d8:44:8c:29:dc:83:
23:c3:95:53:f7:7b:0a:f4:49:92:e0:63:af:da:85:ae:0a:14:
94:9b:47:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:42 2025 by rpki-client on console.sobornost.net