Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/hzvdFJqBVHfmFYtISUPFHuIwGxI.roa
File: hzvdFJqBVHfmFYtISUPFHuIwGxI.roa (raw, json)
Hash identifier: 94WJqhAyvB7y04ov+ACEGw9RoM7ttJ7Qyf8CLDdI9Tw=
Subject key identifier: 87:3B:DD:14:9A:81:54:77:E6:15:8B:48:49:43:C5:1E:E2:30:1B:12
Certificate issuer: /CN=ed64691c31892cc991ad4e9a9671147759e417ab
Certificate serial: 0193A13199EF602C246330CFAAA7D870DDE3
Authority key identifier: ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/hzvdFJqBVHfmFYtISUPFHuIwGxI.roa
Signing time: Sat 07 Dec 2024 12:56:42 +0000
ROA not before: Sat 07 Dec 2024 12:56:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34689
IP address blocks: 95.131.202.0/24 maxlen: 24
185.75.242.0/24 maxlen: 24
2a05:5502::/32 maxlen: 32
2a13:9401::/32 maxlen: 32
2a13:9402::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:a1:31:99:ef:60:2c:24:63:30:cf:aa:a7:d8:70:dd:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed64691c31892cc991ad4e9a9671147759e417ab
Validity
Not Before: Dec 7 12:56:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=873bdd149a815477e6158b484943c51ee2301b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:15:da:01:50:23:b6:1d:93:87:aa:31:00:96:
cb:7d:5f:02:fd:3e:7b:f7:89:8d:7e:b3:e0:ce:07:
1d:ce:ce:91:b2:4a:9b:50:89:f6:90:b6:a2:72:e9:
2b:fa:40:9a:70:eb:3f:ac:43:f4:81:c6:12:96:e9:
67:70:70:b3:16:e9:17:1d:c4:76:66:11:53:e5:10:
69:82:f2:ef:71:50:00:db:0f:9d:cd:1f:8f:fb:5e:
a5:fe:3e:57:ac:4b:11:f4:e9:cb:92:5f:23:cd:f1:
eb:2e:a9:87:77:88:ac:cf:71:5f:f8:2b:6e:b3:1e:
bb:cd:fc:04:b0:8e:42:5e:7c:67:6a:66:b1:49:33:
68:de:d3:2d:ca:5f:41:3f:4d:a1:48:a5:18:ee:80:
63:7e:a3:39:84:b0:63:09:7b:44:20:74:7e:12:d0:
6b:06:81:2e:a3:3e:9a:6e:64:b7:16:16:d0:c5:de:
cb:8b:ef:f0:e4:60:eb:9d:67:95:8c:b6:23:8c:a8:
4c:46:90:e1:d8:68:83:1c:3e:bf:07:ae:68:8f:d2:
80:3d:44:ab:89:ae:78:ba:f2:48:d7:9d:9c:8c:cc:
c0:27:78:08:7e:fe:ef:01:44:7d:2b:42:02:b1:15:
c6:c0:84:c9:da:cc:a3:71:5f:f1:e8:06:3e:46:5d:
a5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3B:DD:14:9A:81:54:77:E6:15:8B:48:49:43:C5:1E:E2:30:1B:12
X509v3 Authority Key Identifier:
keyid:ED:64:69:1C:31:89:2C:C9:91:AD:4E:9A:96:71:14:77:59:E4:17:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WRpHDGJLMmRrU6alnEUd1nkF6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/hzvdFJqBVHfmFYtISUPFHuIwGxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f67d09-8923-4152-95f2-7c7db21230a3/1/7WRpHDGJLMmRrU6alnEUd1nkF6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.202.0/24
185.75.242.0/24
IPv6:
2a05:5502::/32
2a13:9401::-2a13:9402:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
ac:c0:3c:33:1b:76:c3:e7:d2:df:33:8f:24:b5:8f:40:e4:b1:
b4:e4:71:8c:4c:36:36:48:a1:6b:72:4e:1f:78:db:22:2b:97:
af:8a:07:b1:b2:40:b7:94:c9:56:e9:84:ac:d0:99:11:28:06:
71:8f:7b:10:90:ed:f9:e2:92:74:7b:36:91:41:d7:b3:6e:ea:
0c:23:d4:e1:bd:48:ef:90:fd:5a:44:df:3c:26:5a:f2:0b:df:
c1:d5:12:12:17:28:32:cd:16:39:f7:1e:5b:2e:aa:2f:f9:e6:
87:d3:bd:c0:f7:5c:57:f3:f4:88:5c:87:f9:91:4c:85:3f:23:
1d:04:38:65:dd:d9:4a:08:e3:8a:bf:c3:de:63:ab:c4:e0:af:
13:cd:bd:1c:d9:1a:6e:ba:22:f0:20:8d:0d:62:03:d0:30:bc:
ec:e8:8a:2f:5c:6f:b5:80:9e:76:f1:1a:c5:86:ca:19:d0:50:
b7:c5:c8:b3:88:87:56:08:eb:8c:b2:0b:c8:bd:df:e2:89:97:
fa:d2:5f:a8:3d:be:68:ea:3b:23:96:b3:96:ca:ca:56:70:98:
c3:ba:39:13:cf:4e:3f:9e:59:c9:a4:35:b5:61:0f:b7:7d:be:
98:b9:9f:4b:df:76:6a:5c:3f:93:b9:e0:7e:64:7c:4b:1f:6a:
86:4f:f7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:00 2024 by rpki-client on console.sobornost.net