Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/HJn90z4GPpjZcUc6F9SH2SlR2kM.roa
File: HJn90z4GPpjZcUc6F9SH2SlR2kM.roa (raw, json)
Hash identifier: 95O90ZiMYRhElRwa59KPPMPVrBy8O7FfuYvpWbDopGw=
Subject key identifier: 1C:99:FD:D3:3E:06:3E:98:D9:71:47:3A:17:D4:87:D9:29:51:DA:43
Certificate issuer: /CN=341fbe0751e211889374d15d6312c224f695faa2
Certificate serial: 018CC4937A6E0687B55C5E7618CB9DF7E521
Authority key identifier: 34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/HJn90z4GPpjZcUc6F9SH2SlR2kM.roa
Signing time: Mon 01 Jan 2024 10:30:48 +0000
ROA not before: Mon 01 Jan 2024 10:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197046
IP address blocks: 178.248.56.0/21 maxlen: 21
185.22.236.0/22 maxlen: 22
2a03:ab00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:7a:6e:06:87:b5:5c:5e:76:18:cb:9d:f7:e5:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=341fbe0751e211889374d15d6312c224f695faa2
Validity
Not Before: Jan 1 10:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c99fdd33e063e98d971473a17d487d92951da43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:76:22:13:69:cf:fc:df:c7:43:a6:27:06:92:
a9:d6:ac:b9:18:a7:35:81:f8:6c:1a:e0:4f:4a:08:
dd:b4:8b:3d:50:8c:ed:d3:f5:59:f1:d5:5d:65:8a:
b2:4a:6e:0b:aa:9d:76:1d:a1:27:22:07:fb:bc:bb:
cd:4b:2c:1e:e3:e1:e5:99:dd:68:3d:c0:c3:be:42:
c5:c0:6e:19:20:e0:b0:7c:a3:55:5e:b8:91:d4:e6:
ae:94:20:af:72:61:7c:97:0f:e8:68:c1:6f:7f:a4:
39:f2:15:03:27:2d:ac:c1:41:f8:60:38:04:9d:e4:
90:a2:e1:5f:f7:fc:ed:0a:d1:d4:9a:87:16:71:18:
dd:9a:73:c7:83:3d:76:8d:01:f0:82:ce:e2:d3:1d:
cd:ed:7a:32:38:99:18:ff:7c:3d:62:31:46:40:ef:
ba:e0:c0:8a:82:b7:71:bb:ed:63:34:5f:38:82:21:
1b:23:0a:19:3d:6f:ea:5d:ef:4c:4a:9d:b7:2d:c2:
e4:f6:5d:9e:d8:28:a9:6f:d8:91:bc:8e:17:d2:7d:
5f:44:c6:38:7e:98:53:4e:2f:65:f7:48:40:33:cb:
6d:d3:16:33:87:3e:cc:3e:fb:fc:51:46:cf:16:c0:
3f:dc:42:44:e3:28:62:6f:a3:25:fa:d8:ef:f6:57:
17:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:99:FD:D3:3E:06:3E:98:D9:71:47:3A:17:D4:87:D9:29:51:DA:43
X509v3 Authority Key Identifier:
keyid:34:1F:BE:07:51:E2:11:88:93:74:D1:5D:63:12:C2:24:F6:95:FA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB--B1HiEYiTdNFdYxLCJPaV-qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/HJn90z4GPpjZcUc6F9SH2SlR2kM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/014a63-ca18-41df-91e9-c28ee869faa0/1/NB--B1HiEYiTdNFdYxLCJPaV-qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.248.56.0/21
185.22.236.0/22
IPv6:
2a03:ab00::/32
Signature Algorithm: sha256WithRSAEncryption
63:d6:c3:eb:33:ef:9e:6e:d6:bf:1a:01:a0:9e:c9:d7:ef:57:
c4:ff:7b:d2:57:65:87:37:35:86:60:fc:59:6e:22:41:b3:ce:
8f:e5:34:da:fd:bf:e4:7d:0f:f6:57:70:b4:b0:a1:81:05:bf:
b2:50:7d:5c:d3:6b:3d:ab:e9:e6:80:f0:89:cd:5e:a9:51:fe:
0f:62:55:94:12:ff:a8:57:b7:cb:b3:f0:ab:fb:7e:97:c5:34:
67:f9:08:9f:28:cc:e7:6e:c6:22:09:79:ee:41:0f:3d:96:ad:
65:13:e9:4f:ad:f7:a8:08:f9:e8:85:e9:b9:7f:c7:39:e3:2f:
99:45:49:87:f7:e6:a2:f5:68:72:e7:5b:07:ae:a5:63:73:c3:
47:c9:cf:c8:77:70:f9:03:a5:56:76:ea:2c:f6:ad:a5:35:71:
59:dd:2f:fa:d3:93:42:e4:b9:cb:56:7c:2b:91:3c:85:bd:42:
6c:e4:95:13:36:aa:ba:e9:d8:a0:61:2a:48:9f:b3:d2:69:a6:
8c:57:25:3e:ef:bd:f9:c2:a7:21:f3:32:33:e9:aa:8c:76:46:
4e:0f:51:c2:43:18:3b:cd:28:73:ea:e4:67:90:44:a0:26:d7:
42:d6:77:e0:03:b4:59:1b:47:5d:8d:2f:5b:e6:99:da:67:5e:
20:ca:b5:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:27 2024 by rpki-client on console.sobornost.net