Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/9aa058-384c-4234-b492-c68d7f9c7818/1/hv7umvI_Ed2T9Pd9d7RaxMNZ_A4.roa
File: hv7umvI_Ed2T9Pd9d7RaxMNZ_A4.roa (raw, json)
Hash identifier: JaoBtJPnKetAcsAKSYzZugD1L/s0rkCRonZhSkC43s8=
Subject key identifier: 86:FE:EE:9A:F2:3F:11:DD:93:F4:F7:7D:77:B4:5A:C4:C3:59:FC:0E
Certificate issuer: /CN=3b413164a13c24ca77847774a6eb57105ee7809f
Certificate serial: 019420D5B1A9CCE74D8A236CB90163817C55
Authority key identifier: 3B:41:31:64:A1:3C:24:CA:77:84:77:74:A6:EB:57:10:5E:E7:80:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O0ExZKE8JMp3hHd0putXEF7ngJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/9aa058-384c-4234-b492-c68d7f9c7818/1/hv7umvI_Ed2T9Pd9d7RaxMNZ_A4.roa
Signing time: Wed 01 Jan 2025 07:47:43 +0000
ROA not before: Wed 01 Jan 2025 07:47:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61129
IP address blocks: 185.67.156.0/24 maxlen: 24
185.67.157.0/24 maxlen: 24
185.67.158.0/24 maxlen: 24
185.67.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:b1:a9:cc:e7:4d:8a:23:6c:b9:01:63:81:7c:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b413164a13c24ca77847774a6eb57105ee7809f
Validity
Not Before: Jan 1 07:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86feee9af23f11dd93f4f77d77b45ac4c359fc0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:ac:7c:87:a1:1f:ba:53:34:70:63:80:22:c9:
68:a1:88:56:c0:25:4a:cf:c6:26:f5:47:0c:67:63:
25:d0:63:1c:78:ff:28:fe:13:06:2a:a8:26:e7:0b:
48:94:c4:aa:b2:49:72:0c:c5:b0:cf:f2:e1:96:3d:
5e:d2:e6:4d:b4:99:ad:4b:53:20:a9:8c:39:d2:8e:
34:cc:ea:94:3c:71:81:24:aa:71:89:54:be:21:fa:
8b:e0:1f:0a:63:b9:69:cd:66:da:08:d1:63:34:4b:
1e:18:98:4a:fd:43:f0:9a:dd:5b:6d:ba:b7:68:b7:
a0:ad:88:f2:12:95:fe:cc:85:c4:5a:8a:dd:5f:3f:
6f:39:2e:e5:ef:63:ee:ca:8b:ce:81:68:86:81:5e:
5f:bf:ff:41:c4:f1:f0:ce:1b:a0:e2:03:e8:1b:69:
55:41:86:13:4e:f8:3f:d2:54:0c:86:a4:84:2e:ff:
72:ad:7f:28:bb:f9:7c:26:70:08:54:fc:6e:00:c4:
9d:49:83:c0:9c:c7:a5:80:e4:58:f7:28:48:f7:ae:
92:75:f6:42:f6:17:b3:69:6e:6d:71:49:38:04:86:
9f:db:c6:7a:c0:08:cc:3e:24:3f:93:92:b8:b3:ae:
d2:f1:88:39:a1:00:8f:0e:cd:cf:ef:62:f7:0b:f4:
cb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FE:EE:9A:F2:3F:11:DD:93:F4:F7:7D:77:B4:5A:C4:C3:59:FC:0E
X509v3 Authority Key Identifier:
keyid:3B:41:31:64:A1:3C:24:CA:77:84:77:74:A6:EB:57:10:5E:E7:80:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O0ExZKE8JMp3hHd0putXEF7ngJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/9aa058-384c-4234-b492-c68d7f9c7818/1/hv7umvI_Ed2T9Pd9d7RaxMNZ_A4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/9aa058-384c-4234-b492-c68d7f9c7818/1/O0ExZKE8JMp3hHd0putXEF7ngJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.156.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:fb:70:85:a1:9a:9c:14:fe:0a:ba:95:1c:c4:19:ce:7f:ef:
06:5c:bb:ee:d9:77:93:36:a6:6c:bc:7e:8a:b3:4a:57:b3:ec:
c6:98:03:cf:23:d4:46:4b:c5:a1:27:d4:ad:2c:5f:4e:8c:c6:
28:0d:77:29:09:0b:b9:e1:52:01:f8:db:47:c2:e1:00:93:8a:
6a:ab:c4:13:49:bc:29:a4:0c:6a:7f:d4:eb:07:33:96:c8:84:
64:4f:a0:9a:17:d7:54:5a:c2:1e:6c:72:65:4a:a3:3c:a5:71:
9e:7a:92:9d:26:09:83:ed:5e:60:31:1a:92:0f:34:dd:ad:5d:
51:f0:32:e8:78:a3:69:31:a5:49:14:92:ad:3a:ba:85:fa:40:
1a:58:67:d4:3d:b3:75:d9:4a:d4:22:cc:c1:74:ef:ba:93:d8:
0d:7e:76:f7:71:e9:6f:ff:09:ae:36:56:1a:9f:05:3f:86:5a:
ae:98:09:96:b3:77:f4:01:4c:0a:7d:dd:f5:b1:f2:27:d5:10:
73:8b:b2:7e:c0:f3:00:d5:84:fe:0d:2d:fc:df:d7:10:74:c7:
f5:93:5d:b5:c6:99:bc:d2:2f:3f:51:0e:02:ad:9d:d9:9b:9d:
7f:da:bf:c4:93:8d:51:12:75:fa:08:3a:d2:82:36:4b:c8:1d:
4d:51:89:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:18 2025 by rpki-client on console.sobornost.net