Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/03bab8-6c43-4a20-a960-c37a5982f466/1/hQJK6zQLhYj5qTjnWHPVq5_Ggwc.roa
File: hQJK6zQLhYj5qTjnWHPVq5_Ggwc.roa (raw, json)
Hash identifier: qWKatLGe/VjD4eV5U12XcGzsbBr23W6H5teeHc7VO7g=
Subject key identifier: 85:02:4A:EB:34:0B:85:88:F9:A9:38:E7:58:73:D5:AB:9F:C6:83:07
Certificate issuer: /CN=a1f7882861c29ed599be4a937480c4d13e25bfc2
Certificate serial: 0194266BF44F0E36A9EB55F568593151614B
Authority key identifier: A1:F7:88:28:61:C2:9E:D5:99:BE:4A:93:74:80:C4:D1:3E:25:BF:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ofeIKGHCntWZvkqTdIDE0T4lv8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/03bab8-6c43-4a20-a960-c37a5982f466/1/hQJK6zQLhYj5qTjnWHPVq5_Ggwc.roa
Signing time: Thu 02 Jan 2025 09:49:56 +0000
ROA not before: Thu 02 Jan 2025 09:49:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206459
IP address blocks: 5.181.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:f4:4f:0e:36:a9:eb:55:f5:68:59:31:51:61:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1f7882861c29ed599be4a937480c4d13e25bfc2
Validity
Not Before: Jan 2 09:49:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=85024aeb340b8588f9a938e75873d5ab9fc68307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9a:f5:d4:e8:53:9c:4f:11:55:3e:7f:e6:e3:
e8:ec:b4:45:6b:67:ec:83:df:e8:58:9e:a0:34:cd:
c4:b8:84:b7:f6:00:ae:d3:e6:a5:02:00:50:5f:89:
21:db:b5:6b:e6:76:71:a5:7a:aa:db:62:6f:a7:72:
01:30:fa:70:bb:2c:ab:1f:3d:85:45:c2:95:81:b3:
a9:85:84:0a:ec:77:18:81:fd:7f:b0:ca:0e:a3:8e:
a2:a2:d3:13:40:0b:28:f0:e1:a4:da:3e:2a:32:83:
14:d2:5a:45:38:7b:f1:60:12:b4:ed:3e:0b:28:00:
28:69:de:af:58:a1:a5:35:63:a3:b5:d5:d3:81:2e:
07:e5:7a:23:d3:ea:cf:a3:e5:a5:73:af:a3:22:c7:
76:c2:40:f0:d5:90:2b:d6:71:da:a9:54:79:e6:a9:
70:3c:a9:b2:63:2b:32:c5:71:13:db:07:b8:26:3f:
47:ef:d0:d9:e5:1c:4d:3f:1b:55:1d:d0:19:4f:f0:
8d:f3:92:f4:2e:e4:e1:98:95:f5:2e:36:c1:e8:fb:
21:f3:5b:e7:cd:dc:a9:98:d9:63:bf:4b:a7:c1:67:
28:8a:20:5f:f1:3d:b1:42:d1:09:2c:86:67:55:c2:
18:9d:ae:ee:8f:e2:8e:01:e5:20:aa:d9:87:81:dc:
d2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:02:4A:EB:34:0B:85:88:F9:A9:38:E7:58:73:D5:AB:9F:C6:83:07
X509v3 Authority Key Identifier:
keyid:A1:F7:88:28:61:C2:9E:D5:99:BE:4A:93:74:80:C4:D1:3E:25:BF:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ofeIKGHCntWZvkqTdIDE0T4lv8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/03bab8-6c43-4a20-a960-c37a5982f466/1/hQJK6zQLhYj5qTjnWHPVq5_Ggwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/03bab8-6c43-4a20-a960-c37a5982f466/1/ofeIKGHCntWZvkqTdIDE0T4lv8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.160.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:05:03:b5:03:44:9f:d4:c9:5f:b7:0e:bf:83:d0:ba:cf:1d:
92:69:08:77:33:d6:9b:0e:69:87:df:d5:b3:aa:45:63:c7:85:
0a:c0:ba:c6:6e:0f:25:fe:9f:ab:8f:a9:3f:00:cd:83:67:d0:
e5:b7:4c:bb:2d:35:99:2d:07:48:0d:97:fd:19:13:7f:1c:87:
6e:11:73:d5:f7:28:10:90:9e:02:be:ac:0a:48:c1:6f:d0:58:
94:a4:38:7c:fa:29:30:c8:b6:42:e6:68:bb:4d:f6:84:29:29:
8b:f7:cf:be:d9:4c:e9:d9:7f:f8:35:b0:c8:d7:da:b7:fc:ca:
b0:6b:d8:c1:4b:3a:61:a9:65:c4:90:d2:17:6d:71:ed:66:91:
35:3e:3b:33:6e:1f:87:5d:89:2b:6a:11:96:51:82:13:b5:94:
9a:c8:bf:1f:21:9a:c2:84:a4:67:b9:af:04:90:ac:22:a3:1c:
3b:6a:1c:f4:6a:00:ac:62:ec:c5:36:17:3e:c8:3d:1b:ff:d9:
68:c0:db:ef:b9:be:7f:c3:9c:9a:01:fe:81:8b:f5:ad:7a:fc:
75:32:ab:68:cf:00:54:e0:1d:a4:bf:b1:71:a4:ae:af:5b:e4:
0f:90:0d:32:7b:76:70:df:09:3e:84:2f:72:12:73:ed:fc:05:
1c:71:fc:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:15 2025 by rpki-client on console.sobornost.net