Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/hq7jtf5ICa4EJEy0wPEdH54LMsQ.roa
File: hq7jtf5ICa4EJEy0wPEdH54LMsQ.roa (raw, json)
Hash identifier: hQZHACaQ0GwdOVsEe6YRTXBBd0Cnu1k3R9qsNp1994s=
Subject key identifier: 86:AE:E3:B5:FE:48:09:AE:04:24:4C:B4:C0:F1:1D:1F:9E:0B:32:C4
Certificate issuer: /CN=6eab53640b0931924b73f760925845150a6ccca5
Certificate serial: 0194252228E747A51FFD6DCC27313A517794
Authority key identifier: 6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/hq7jtf5ICa4EJEy0wPEdH54LMsQ.roa
Signing time: Thu 02 Jan 2025 03:49:43 +0000
ROA not before: Thu 02 Jan 2025 03:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41557
IP address blocks: 188.117.204.0/22 maxlen: 22
188.117.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:28:e7:47:a5:1f:fd:6d:cc:27:31:3a:51:77:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eab53640b0931924b73f760925845150a6ccca5
Validity
Not Before: Jan 2 03:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86aee3b5fe4809ae04244cb4c0f11d1f9e0b32c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0a:7c:f4:ea:57:67:22:37:c3:23:5c:3d:68:
35:50:4d:9f:87:0c:dc:bc:f8:83:3a:58:7f:66:fe:
a4:f9:90:aa:25:25:0b:a3:70:ee:3a:b3:d6:35:05:
ab:bd:5f:aa:0c:d4:c8:44:c9:c7:72:47:dd:ab:69:
91:fa:8e:f9:8c:40:81:cb:1d:94:02:64:dc:d6:b9:
11:cd:bb:29:9a:c2:bd:04:af:f2:d6:91:01:6b:e3:
36:01:c2:e6:aa:65:ae:92:ed:97:0a:77:cb:44:3e:
e0:57:6b:80:5f:da:58:cf:cd:2e:db:90:fb:e7:51:
d0:99:77:f3:fd:c4:06:1b:93:f4:60:c0:61:e9:85:
69:f5:63:fb:90:b8:64:21:5a:0e:07:df:eb:78:06:
5a:77:b4:05:52:9e:d2:ed:41:45:c2:aa:71:fa:05:
1c:46:f4:9c:83:ec:6f:d5:fa:f5:c1:b9:e2:7c:43:
33:48:47:d6:36:3a:2d:36:53:54:92:59:17:ea:bf:
50:d1:19:40:a5:50:eb:78:14:01:82:37:31:31:c5:
24:77:89:94:09:8b:c1:61:17:3b:84:bf:12:d2:db:
fd:ac:8d:b5:68:e6:f0:cf:f3:78:3f:38:49:4f:0d:
a4:d9:47:e1:00:82:44:77:34:88:fe:45:0f:40:d7:
a9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AE:E3:B5:FE:48:09:AE:04:24:4C:B4:C0:F1:1D:1F:9E:0B:32:C4
X509v3 Authority Key Identifier:
keyid:6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/hq7jtf5ICa4EJEy0wPEdH54LMsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/bqtTZAsJMZJLc_dgklhFFQpszKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.117.204.0/22
188.117.212.0/22
Signature Algorithm: sha256WithRSAEncryption
12:ad:a6:9d:72:b5:e9:a1:fd:5c:5b:b2:2b:8e:b5:ad:dd:8f:
7f:17:e1:dd:86:1a:98:c2:1d:6b:61:6f:71:40:06:8c:35:f6:
8f:d9:cb:fc:6e:0c:36:df:0d:9f:58:a9:ac:29:a6:3d:c9:44:
4f:df:87:ee:78:84:60:e3:32:73:a7:69:51:1e:b2:3f:41:b9:
0b:1b:08:b8:64:43:bc:72:e0:da:5e:5c:6c:e1:e9:89:70:19:
fb:72:1a:a9:c0:8f:4f:ee:f3:a0:e4:77:c3:d1:f3:bd:5c:76:
92:5f:c0:68:0d:a4:31:65:68:d9:65:97:b7:e8:d9:25:60:66:
d2:5c:e6:3a:23:d9:fb:60:34:10:3b:21:f2:b2:c8:2b:83:5e:
51:10:8d:2d:25:b2:6e:e3:92:e4:13:f3:5c:5a:19:0d:2a:f8:
a7:df:a0:e2:30:2f:a7:ed:8e:9f:2e:8f:ca:e7:2c:93:22:fd:
a1:4e:b7:ce:e6:28:de:e3:11:39:0d:37:f9:10:c1:19:0e:6c:
f5:b9:56:f2:02:06:65:62:d5:e7:d3:39:72:76:3c:e6:36:e9:
1e:cc:c9:54:9f:7d:fd:e3:26:10:b5:99:62:11:00:34:45:d2:
69:79:9d:07:c3:01:db:7d:89:59:21:44:39:00:ea:2d:d0:b0:
5a:7c:4d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:31 2025 by rpki-client on console.sobornost.net