Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/HLx6iCmMMDpYRb9tNbseaLrGKvA.roa
File: HLx6iCmMMDpYRb9tNbseaLrGKvA.roa (raw, json)
Hash identifier: TOs8Ytk/pFjZ5gPTmPvZm4xtqBKLGBNbhqH8wQKQFi0=
Subject key identifier: 1C:BC:7A:88:29:8C:30:3A:58:45:BF:6D:35:BB:1E:68:BA:C6:2A:F0
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01960E335EE2C645B1E179C3F3FA5D7A6892
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/HLx6iCmMMDpYRb9tNbseaLrGKvA.roa
Signing time: Mon 07 Apr 2025 03:02:49 +0000
ROA not before: Mon 07 Apr 2025 03:02:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214025
IP address blocks: 95.214.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0e:33:5e:e2:c6:45:b1:e1:79:c3:f3:fa:5d:7a:68:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Apr 7 03:02:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1cbc7a88298c303a5845bf6d35bb1e68bac62af0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bc:ae:16:87:94:3b:56:c8:de:e6:be:4e:41:
25:5d:47:da:85:16:0b:80:9d:75:ad:f6:3e:5e:da:
2d:90:9d:68:c7:eb:f1:f6:da:1d:21:07:33:9c:57:
56:a9:7e:59:41:6a:03:c2:01:ef:50:f5:19:fa:a7:
63:94:8e:83:4e:d1:83:a5:50:c4:5a:ce:51:3a:1c:
ba:84:43:46:61:57:00:a5:48:3f:8d:b5:2b:7b:53:
5e:d7:c6:ec:b9:a0:8b:31:05:b8:e2:c3:ce:f2:b2:
be:f7:4e:75:4d:75:6e:af:a8:fa:17:6d:c4:34:64:
cf:86:77:09:1c:ad:bf:44:21:7a:9b:ba:63:f0:f1:
28:14:dc:b4:99:b9:12:a6:02:cc:d9:fd:8e:a3:9a:
8f:76:4e:46:33:dd:bb:22:51:67:7b:c2:8d:42:d1:
e7:ef:92:07:0e:28:c8:9d:b1:94:a6:9f:20:36:03:
9a:2d:61:36:c3:06:45:46:7e:71:26:5e:05:6b:75:
9d:9f:8b:43:0b:25:e9:f7:47:73:27:f5:69:67:8e:
bc:ec:c1:3e:e8:b8:f3:cb:5b:71:8b:59:e4:28:55:
b0:0f:d4:d5:b0:20:ea:1d:dc:69:41:3a:94:db:65:
e6:47:1d:ea:ce:2c:2c:f3:ad:36:59:ee:9d:e2:9a:
0e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:BC:7A:88:29:8C:30:3A:58:45:BF:6D:35:BB:1E:68:BA:C6:2A:F0
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/HLx6iCmMMDpYRb9tNbseaLrGKvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.181.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f5:02:c5:31:8c:73:0a:da:fb:c4:0d:30:2f:2a:d7:63:8b:
cb:0d:d8:66:63:6d:be:d4:8d:b9:5d:fe:80:45:9e:6b:0d:2e:
a8:cb:60:02:3a:c8:70:48:5d:e6:55:9c:01:e2:e5:0b:9a:c4:
3e:5a:6a:af:39:7c:a5:38:c7:9e:33:86:de:2b:ae:29:12:13:
bd:2b:31:a0:58:71:80:56:06:4f:8f:6a:6f:f3:58:5d:7e:d8:
ec:da:48:96:37:7a:06:3f:12:37:30:90:ae:6b:14:96:6a:8b:
c5:77:47:7a:e3:93:79:ab:7f:f0:01:05:6d:c1:2e:18:8c:1a:
e0:62:c7:8a:96:9b:4e:62:7a:ed:23:6b:3d:7e:bf:85:5a:08:
af:2e:2f:6e:f2:57:7c:85:0a:f0:bd:49:c7:3b:f5:fa:7a:55:
f9:99:ca:57:83:e8:c4:90:3d:b1:61:f9:1b:02:4d:92:a3:03:
80:93:49:72:7b:15:1d:79:eb:6e:f2:29:72:3c:77:03:3f:6a:
57:57:94:34:d0:26:95:3a:5e:b6:d2:5e:20:a2:76:d8:03:b9:
ee:c8:cc:2f:2a:68:b9:c1:04:09:5c:4e:a3:11:e6:cc:4a:c3:
86:1e:6c:ab:79:cd:7e:17:f3:b0:07:6c:47:a9:ec:c7:0d:3c:
29:dd:0a:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:21 2025 by rpki-client on console.sobornost.net