Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/HlCBaMj51Dn2Tz2S41tW2Fk8xPQ.roa
File: HlCBaMj51Dn2Tz2S41tW2Fk8xPQ.roa (raw, json)
Hash identifier: /7yi7Ya0XkfIBAe9xgobKAaFgeYKZaTXRYdjcvjut5s=
Subject key identifier: 1E:50:81:68:C8:F9:D4:39:F6:4F:3D:92:E3:5B:56:D8:59:3C:C4:F4
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 019424B3B1385ADB363B6DBE158BF1F699B8
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/HlCBaMj51Dn2Tz2S41tW2Fk8xPQ.roa
Signing time: Thu 02 Jan 2025 01:49:03 +0000
ROA not before: Thu 02 Jan 2025 01:49:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56435
IP address blocks: 212.86.103.0/24 maxlen: 24
212.86.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:b1:38:5a:db:36:3b:6d:be:15:8b:f1:f6:99:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 2 01:49:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e508168c8f9d439f64f3d92e35b56d8593cc4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c3:ad:98:82:dc:71:dc:e1:24:62:c1:86:be:
5c:fe:e3:17:f1:ab:6f:0e:2e:96:f5:c6:6c:59:af:
fb:f3:7f:08:4b:73:d5:7b:08:3a:30:cb:05:7b:fd:
99:be:00:00:ef:c5:c9:79:21:d1:e8:cf:cf:11:61:
b7:8d:c3:12:b7:4d:bc:86:47:98:fa:47:a7:94:38:
4a:41:7d:23:b2:97:a1:8a:92:06:98:b7:1c:66:ef:
ba:67:20:1e:27:c2:b4:d8:6a:b3:6f:45:45:a5:3c:
8b:bb:5e:d5:2e:99:e7:27:21:a8:c6:c6:52:6e:6c:
70:8f:4f:7a:cd:3e:23:df:13:c5:eb:de:4d:f5:75:
12:70:d1:6c:f0:81:4b:e4:06:94:06:55:72:59:c1:
cf:54:d7:1b:2c:7d:c4:4b:9c:d2:b0:2c:fe:91:26:
47:e6:fa:ec:35:1f:db:80:23:cc:b4:3c:37:e4:82:
ab:b0:1d:f2:40:10:c9:d1:06:d0:dd:b7:bb:67:55:
d7:d8:4c:dc:d8:59:31:fa:2e:ef:52:22:ec:1c:78:
7b:cc:75:b9:c3:b0:46:c3:28:ff:7d:f9:29:e0:0f:
0a:8a:a0:fe:6a:61:a5:fb:01:ea:ed:b9:5a:3c:fd:
c4:d3:ee:d0:6e:fb:9b:02:62:22:f1:6e:34:33:98:
ea:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:50:81:68:C8:F9:D4:39:F6:4F:3D:92:E3:5B:56:D8:59:3C:C4:F4
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/HlCBaMj51Dn2Tz2S41tW2Fk8xPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.86.103.0/24
212.86.112.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:a5:23:ba:34:da:82:58:72:5d:9a:6e:f9:d1:93:59:75:a9:
d7:99:b5:c4:ca:c5:18:ff:94:e6:cc:9b:ea:02:00:43:e7:fe:
a5:3c:9d:ca:c5:45:43:38:14:4a:ad:de:2e:4a:75:45:46:65:
67:7e:dc:6b:71:a7:c9:46:c7:a9:7b:7b:a1:37:29:5e:54:dd:
c5:9c:fc:e5:d8:4a:f3:cc:8f:62:ab:3c:9c:85:17:1d:a4:2d:
78:33:26:72:c2:5b:65:76:df:d6:9e:3a:8b:f4:56:70:bf:cc:
3a:4a:5e:86:db:04:b2:94:d7:ff:a7:41:c7:50:d3:15:07:61:
bf:c0:26:67:8d:7d:62:2c:f8:00:3d:e7:fe:64:5f:6d:e0:50:
3b:1e:55:70:90:bf:c5:a5:6f:d9:90:70:b7:24:76:4d:21:75:
05:29:8c:f8:4b:4e:b8:b0:ed:1a:ca:3c:a0:18:c8:5f:e2:30:
2c:8f:e0:c4:66:bd:bf:34:a5:93:6c:ea:16:72:ed:fa:c2:cb:
9c:1e:72:19:cd:5c:a0:30:12:20:08:32:40:ab:83:52:f4:51:
42:69:07:0b:7f:ed:20:50:2b:02:46:01:7a:36:66:d9:68:72:
a1:67:3f:3e:5a:d2:79:81:06:40:b4:ef:ad:e5:4d:20:0c:9d:
4f:4b:1c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:31 2025 by rpki-client on console.sobornost.net