Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/hhzUk5P34fAewxviCp7L4orLbt4.roa
File: hhzUk5P34fAewxviCp7L4orLbt4.roa (raw, json)
Hash identifier: anfj4g1I4XRHIljE+q3F4S8rJ8XQNKffMq+11otVUbI=
Subject key identifier: 86:1C:D4:93:93:F7:E1:F0:1E:C3:1B:E2:0A:9E:CB:E2:8A:CB:6E:DE
Certificate issuer: /CN=7e4b54dfd41610774fe7f242d7dd3873a658473b
Certificate serial: 019422FAF1FA329A6D6202DDED5D8DA12A1A
Authority key identifier: 7E:4B:54:DF:D4:16:10:77:4F:E7:F2:42:D7:DD:38:73:A6:58:47:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fktU39QWEHdP5_JC1904c6ZYRzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/hhzUk5P34fAewxviCp7L4orLbt4.roa
Signing time: Wed 01 Jan 2025 17:47:38 +0000
ROA not before: Wed 01 Jan 2025 17:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41232
IP address blocks: 185.207.140.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fa:f1:fa:32:9a:6d:62:02:dd:ed:5d:8d:a1:2a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e4b54dfd41610774fe7f242d7dd3873a658473b
Validity
Not Before: Jan 1 17:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=861cd49393f7e1f01ec31be20a9ecbe28acb6ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2a:99:42:fb:29:00:db:12:95:eb:54:c8:e5:
55:e9:35:ac:73:65:e8:3b:39:e9:b9:68:e1:4d:2b:
9e:40:73:93:fb:9f:be:1e:8f:fb:21:f9:26:88:15:
fb:1e:15:34:cf:c2:ad:2e:91:75:72:05:da:59:cd:
d0:63:0c:72:b8:7c:d4:06:4f:23:20:d7:1c:95:00:
8c:31:a4:3a:c1:91:61:cf:0b:b9:8c:25:3d:55:62:
4a:6b:08:6e:87:93:2e:6a:cb:59:96:28:77:7c:e4:
7d:f4:c5:fa:a1:87:3c:31:10:a7:1b:f8:45:5a:49:
d5:48:c4:46:80:cb:a8:d1:44:d0:13:8d:f5:78:7a:
cb:97:66:9d:fc:77:63:bf:e3:63:43:df:f5:8d:3b:
b1:98:bb:a1:9b:25:34:62:06:48:70:ee:03:9f:f8:
26:b9:fd:d0:22:b9:89:45:05:0b:17:64:fc:85:52:
01:bf:d1:f9:19:2e:27:ab:aa:26:c0:92:0e:e0:95:
2d:bd:68:88:d9:3c:b0:45:57:67:5b:cb:81:c5:1c:
41:ee:ce:c1:18:56:50:f6:73:16:10:a0:98:35:61:
1d:5a:06:71:10:fc:88:c4:21:05:b7:e8:e8:5b:c0:
1d:1b:61:10:2b:3e:a5:21:c6:90:67:9f:55:a5:81:
34:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:1C:D4:93:93:F7:E1:F0:1E:C3:1B:E2:0A:9E:CB:E2:8A:CB:6E:DE
X509v3 Authority Key Identifier:
keyid:7E:4B:54:DF:D4:16:10:77:4F:E7:F2:42:D7:DD:38:73:A6:58:47:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fktU39QWEHdP5_JC1904c6ZYRzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/hhzUk5P34fAewxviCp7L4orLbt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1b35c5-7ac6-4253-86ea-7744ef3c0b99/1/fktU39QWEHdP5_JC1904c6ZYRzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.140.0/22
Signature Algorithm: sha256WithRSAEncryption
81:24:22:95:48:0d:36:c0:35:d8:71:de:bd:3c:8e:ca:79:6d:
38:be:3f:e8:d4:8a:1e:e3:3a:91:a4:8b:9a:79:22:d2:88:e7:
92:f8:f3:12:d6:6f:f5:b3:34:ad:cb:f7:75:6a:13:42:99:3e:
2d:82:f9:a7:35:3e:06:20:ff:04:03:9f:38:0c:4c:e5:9c:41:
59:f3:75:d6:6f:c7:ac:70:25:65:69:00:fb:0e:da:e4:44:21:
fb:d5:d5:37:04:fe:16:7e:3b:b4:b6:39:a2:3d:c4:2a:b4:58:
ea:60:86:40:f2:6d:57:75:ae:a4:c9:0a:fc:7e:80:2c:2a:f4:
af:0c:f7:4d:84:06:6f:d3:19:02:db:18:e2:3b:a9:b0:f0:9e:
f9:23:30:19:0a:1f:f1:06:c7:a3:9b:f8:06:cd:bf:b4:b6:6f:
a9:f9:24:df:82:73:45:bb:2b:a3:8b:cb:1e:4b:53:99:f1:e3:
e8:21:8e:fe:70:64:7f:a3:af:34:10:ca:fe:27:8b:32:a5:da:
92:83:30:c0:0a:97:88:d6:09:6a:bf:fc:50:1c:65:ce:c4:7e:
a3:6c:48:65:47:c0:7d:79:f9:4c:e3:40:dd:6b:ac:57:cc:fd:
89:9b:51:84:24:81:6f:c0:7e:c6:ba:7a:dc:83:35:1f:4d:3e:
19:b1:60:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:44 2025 by rpki-client on console.sobornost.net