Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7438dd-e362-4034-a040-de835458da8d/1/HbzqPjxV2gzVXrBA-nWLmjfTDxo.roa
File: HbzqPjxV2gzVXrBA-nWLmjfTDxo.roa (raw, json)
Hash identifier: cWFkMXXdUpsLxuuBafoKiMAojPQ1C+2JXUGxa/p9/qQ=
Subject key identifier: 1D:BC:EA:3E:3C:55:DA:0C:D5:5E:B0:40:FA:75:8B:9A:37:D3:0F:1A
Certificate issuer: /CN=196523fe0d6bd9c67e0bcb0098a3c363f2f90f7c
Certificate serial: 01954263AAE7F155C9B1E1E9016158FD25BD
Authority key identifier: 19:65:23:FE:0D:6B:D9:C6:7E:0B:CB:00:98:A3:C3:63:F2:F9:0F:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GWUj_g1r2cZ-C8sAmKPDY_L5D3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7438dd-e362-4034-a040-de835458da8d/1/HbzqPjxV2gzVXrBA-nWLmjfTDxo.roa
Signing time: Wed 26 Feb 2025 13:13:02 +0000
ROA not before: Wed 26 Feb 2025 13:13:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205984
IP address blocks: 62.192.160.0/24 maxlen: 24
62.192.163.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:42:63:aa:e7:f1:55:c9:b1:e1:e9:01:61:58:fd:25:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=196523fe0d6bd9c67e0bcb0098a3c363f2f90f7c
Validity
Not Before: Feb 26 13:13:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1dbcea3e3c55da0cd55eb040fa758b9a37d30f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:ac:e6:27:25:b2:54:0d:e7:92:38:6f:d9:
1d:a1:58:52:75:fd:cb:25:a1:df:40:91:a7:b4:6c:
5d:45:a6:a8:36:56:98:9d:0a:1c:80:40:88:68:64:
36:ad:7a:09:38:24:86:5d:2c:61:0f:21:09:61:61:
98:ef:2e:7b:cf:62:6d:9b:73:7b:f8:48:94:9f:fd:
22:20:fb:2b:a9:1d:fd:ea:cd:47:9b:6f:64:e1:c8:
a3:fe:3d:eb:0a:ff:94:92:ca:0f:dc:bf:c1:e8:36:
ad:5f:08:af:b2:2c:b7:8b:a2:53:5e:84:8b:67:99:
3b:f0:f2:43:93:2e:1b:5e:7d:67:98:bc:7a:91:ad:
5a:63:f6:6f:b7:7d:7c:58:f2:a0:37:7c:2f:08:48:
a0:91:55:18:9d:b7:50:ad:0d:e5:d7:7e:f8:b1:0b:
d9:93:0b:4d:88:d8:c1:79:91:c8:1d:67:ac:7b:d9:
e2:c2:2c:c3:5b:b8:79:9c:95:2d:25:78:a5:a0:93:
d0:b5:8f:95:13:41:1f:62:a4:46:ea:00:0e:c1:93:
ba:c1:a3:96:42:fb:a0:5f:8a:7c:0a:cf:fd:4d:2f:
95:53:cb:7b:26:76:a0:a1:19:f9:cf:55:44:32:4f:
09:41:69:b1:f7:d8:d2:ab:13:fb:9f:73:e6:a3:4f:
65:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:BC:EA:3E:3C:55:DA:0C:D5:5E:B0:40:FA:75:8B:9A:37:D3:0F:1A
X509v3 Authority Key Identifier:
keyid:19:65:23:FE:0D:6B:D9:C6:7E:0B:CB:00:98:A3:C3:63:F2:F9:0F:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GWUj_g1r2cZ-C8sAmKPDY_L5D3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7438dd-e362-4034-a040-de835458da8d/1/HbzqPjxV2gzVXrBA-nWLmjfTDxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7438dd-e362-4034-a040-de835458da8d/1/GWUj_g1r2cZ-C8sAmKPDY_L5D3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.160.0/24
62.192.163.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:81:eb:5a:c4:a7:6f:29:db:15:d2:52:f2:77:43:49:7c:66:
97:39:9f:4f:e6:aa:05:17:c6:39:d4:d1:f3:ed:e9:97:d3:2b:
23:82:f5:62:2a:14:87:c3:d1:2e:3d:6e:3c:78:32:1e:27:dc:
c0:8b:26:2b:f4:75:c3:a5:e3:0a:2a:36:98:d3:b5:6b:ba:b4:
08:cd:cf:f0:fb:56:f6:43:10:f8:f5:77:1c:c4:0b:f5:3f:dc:
c9:d0:c9:57:c4:a2:13:e0:ea:44:53:41:9c:6a:18:ad:cc:ea:
d5:58:ec:df:f8:0a:8c:da:6f:a8:de:a6:8a:47:eb:15:80:d6:
3d:ee:72:51:75:9e:61:82:40:c6:46:4c:81:c2:ab:91:2b:c5:
9a:c4:77:9e:94:a0:5f:e5:c9:fa:27:30:ef:80:08:5b:d5:f9:
8c:93:9a:2b:25:20:87:e6:10:22:32:28:9d:db:4e:73:33:f9:
d5:cd:4d:64:19:76:61:a6:77:36:b8:5d:8a:ba:44:70:12:ca:
94:2e:1e:ee:59:7a:a4:52:c6:b0:29:b3:42:db:4a:ed:d4:04:
fc:cb:dc:90:2f:b9:1f:f7:29:0c:79:97:29:ba:0d:0f:5d:96:
28:0f:c3:25:ae:64:85:33:d8:3e:0e:9e:e7:5f:bc:a9:00:c4:
b5:bb:0d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:49 2025 by rpki-client on console.sobornost.net