Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/9f4282-dfeb-40c1-af84-a564ec011c5d/1/hhHnsqFssAy3cZ6p2eic8J_5Jkg.roa
File: hhHnsqFssAy3cZ6p2eic8J_5Jkg.roa (raw, json)
Hash identifier: 4+RUythcb8WdsV0R43hgKvkcYTcHEmIS4/pDs5LGxZk=
Subject key identifier: 86:11:E7:B2:A1:6C:B0:0C:B7:71:9E:A9:D9:E8:9C:F0:9F:F9:26:48
Certificate issuer: /CN=bc8c1a8032f57f22b01454a65ef32dea77496d0b
Certificate serial: 0194221FF87CEFE07389B835CC49849D15AA
Authority key identifier: BC:8C:1A:80:32:F5:7F:22:B0:14:54:A6:5E:F3:2D:EA:77:49:6D:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIwagDL1fyKwFFSmXvMt6ndJbQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/9f4282-dfeb-40c1-af84-a564ec011c5d/1/hhHnsqFssAy3cZ6p2eic8J_5Jkg.roa
Signing time: Wed 01 Jan 2025 13:48:28 +0000
ROA not before: Wed 01 Jan 2025 13:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215186
IP address blocks: 31.12.73.0/24 maxlen: 24
2a12:99c0::/29 maxlen: 29
2a12:99c0::/32 maxlen: 32
2a12:99c1::/32 maxlen: 32
2a12:99c2::/32 maxlen: 32
2a12:99c3::/32 maxlen: 32
2a12:99c4::/32 maxlen: 32
2a12:99c5::/32 maxlen: 32
2a12:99c6::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:f8:7c:ef:e0:73:89:b8:35:cc:49:84:9d:15:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc8c1a8032f57f22b01454a65ef32dea77496d0b
Validity
Not Before: Jan 1 13:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8611e7b2a16cb00cb7719ea9d9e89cf09ff92648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:52:27:c1:54:45:b7:90:41:89:a7:7d:e9:74:
3b:c7:7c:bf:25:80:16:00:fe:45:e6:73:86:da:fd:
c4:18:93:ad:66:46:be:f0:37:9d:7f:dd:07:ff:12:
ed:8d:38:56:db:ce:a1:2d:2a:88:09:8b:f9:7e:ec:
22:a8:00:e2:d3:fc:7b:a9:a1:bc:10:82:21:47:38:
cc:dc:2e:dc:5c:18:61:7e:d2:b9:b3:dc:e5:5b:97:
dd:e2:ef:79:a4:69:b7:dd:83:c1:4e:58:ad:c0:34:
e1:97:ef:35:e4:85:ee:e4:c4:03:39:c3:ec:3c:39:
02:62:00:8f:5f:33:0e:71:bf:bb:60:51:b7:47:63:
43:01:03:6d:ff:07:cf:9c:fd:33:ba:0c:3a:6c:49:
cf:0a:82:98:39:17:4c:15:9c:cc:65:64:af:13:6b:
70:c5:eb:68:54:54:43:73:8e:c5:de:0f:4e:f0:44:
a9:5a:f3:a9:39:0e:e1:ac:de:19:14:3e:95:13:52:
66:5c:84:f3:76:eb:cd:a6:05:62:c6:b1:10:60:ad:
cc:81:15:8c:8d:ad:84:5c:96:18:98:c9:76:ce:94:
11:c0:f7:65:24:c8:18:fa:5e:58:5f:d0:55:78:03:
13:68:45:ce:06:1a:49:b0:2a:5a:64:45:7c:fd:67:
36:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:11:E7:B2:A1:6C:B0:0C:B7:71:9E:A9:D9:E8:9C:F0:9F:F9:26:48
X509v3 Authority Key Identifier:
keyid:BC:8C:1A:80:32:F5:7F:22:B0:14:54:A6:5E:F3:2D:EA:77:49:6D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIwagDL1fyKwFFSmXvMt6ndJbQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9f4282-dfeb-40c1-af84-a564ec011c5d/1/hhHnsqFssAy3cZ6p2eic8J_5Jkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9f4282-dfeb-40c1-af84-a564ec011c5d/1/vIwagDL1fyKwFFSmXvMt6ndJbQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.12.73.0/24
IPv6:
2a12:99c0::/29
Signature Algorithm: sha256WithRSAEncryption
08:96:ad:16:ab:79:36:ff:0b:d7:23:61:fc:00:d1:f8:6c:91:
c5:52:64:18:fb:79:33:81:89:39:d6:ed:9d:d5:ba:a2:0c:78:
d0:72:30:e1:c7:db:e7:c2:9f:43:fe:8f:47:2d:b0:3e:fa:94:
0c:c1:95:38:51:73:1f:85:25:0d:16:95:cf:39:7a:1f:2a:37:
be:87:4e:30:dd:ec:7f:4f:17:24:2e:a9:34:5a:5d:10:08:bc:
36:d1:b2:85:d3:0d:0b:03:e0:7f:a6:33:bc:94:b9:40:d1:fe:
74:c3:86:e3:3a:34:39:d4:dd:15:bc:63:ed:01:96:f8:94:81:
81:71:f6:d4:28:67:7e:db:39:84:bf:60:4d:e4:25:7a:53:de:
fc:01:04:86:2c:2b:7e:92:04:18:0d:c6:45:9b:8c:a1:d1:63:
f9:df:12:36:bc:f0:4c:b0:e5:3f:e3:90:b1:da:36:12:99:67:
2a:3c:88:11:a2:80:df:a3:39:a8:d8:25:b6:b0:a0:51:6a:8e:
c8:ca:3a:99:2c:d2:97:5f:23:5d:42:b2:43:22:59:3d:f8:b1:
d2:c2:00:ce:56:85:d4:64:5b:be:68:83:00:fe:8c:dc:dc:26:
bd:97:3f:90:91:94:03:32:00:5a:87:dd:a7:0e:04:cc:ba:79:
b7:b4:16:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:12 2025 by rpki-client on console.sobornost.net