Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/88d56c-6720-4fdc-9a13-d09bee137baa/1/HGPBJo9LNOYcsb_eStHvliG2Cc8.roa
File: HGPBJo9LNOYcsb_eStHvliG2Cc8.roa (raw, json)
Hash identifier: kD0vIkvyLO7/L5TxDXNYHXeti247Un5s4JmG4ySQo9U=
Subject key identifier: 1C:63:C1:26:8F:4B:34:E6:1C:B1:BF:DE:4A:D1:EF:96:21:B6:09:CF
Certificate issuer: /CN=a47a81e6d6b3e0312307dca1d863982cc90bc673
Certificate serial: 05DA2164
Authority key identifier: A4:7A:81:E6:D6:B3:E0:31:23:07:DC:A1:D8:63:98:2C:C9:0B:C6:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHqB5taz4DEjB9yh2GOYLMkLxnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/88d56c-6720-4fdc-9a13-d09bee137baa/1/HGPBJo9LNOYcsb_eStHvliG2Cc8.roa
Signing time: Sat 01 Jan 2022 00:57:48 +0000
ROA not before: Sat 01 Jan 2022 00:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206208
IP address blocks: 185.158.52.0/22 maxlen: 24
95.178.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98181476 (0x5da2164)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a47a81e6d6b3e0312307dca1d863982cc90bc673
Validity
Not Before: Jan 1 00:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c63c1268f4b34e61cb1bfde4ad1ef9621b609cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ca:df:9c:0f:f7:25:1e:81:97:73:53:fc:c3:
29:26:bd:70:0c:95:c7:a0:94:17:08:ba:8d:73:76:
8c:e3:03:b0:dc:6c:91:a8:e7:9a:a6:5e:f2:bf:c4:
8b:d5:2f:41:7c:fc:2e:41:b1:74:18:c2:d5:32:62:
ec:5c:21:cc:4a:ca:6d:10:cc:52:55:3d:6f:6f:e4:
34:17:21:b7:cd:eb:37:cb:8e:9a:c9:48:6b:f6:82:
79:d0:43:36:8a:cb:88:32:dc:32:5f:29:00:cc:1c:
f6:76:b1:b5:d0:6d:6b:de:04:ea:75:0a:62:ae:c2:
34:c1:f2:88:33:be:59:55:30:92:7a:8e:43:92:a5:
90:41:d1:60:2a:d8:94:01:3c:07:09:24:8f:d0:8b:
af:02:60:92:ff:21:00:32:55:43:ba:73:62:e6:e6:
7d:15:10:90:72:32:92:c2:b5:6f:62:4b:67:a0:c2:
7d:60:55:bd:b2:f8:cc:38:46:ee:23:6c:11:2b:13:
5b:a5:85:17:ab:25:e4:87:7f:7e:19:ca:a7:b5:1d:
47:0d:0f:cd:12:bd:74:8c:cd:bb:92:bd:b5:99:f2:
6a:e8:de:58:f2:3e:9b:29:70:19:c2:5f:16:c0:d6:
dc:af:2e:66:0b:b2:d8:fa:f4:f1:a5:3a:32:5b:6b:
b0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:63:C1:26:8F:4B:34:E6:1C:B1:BF:DE:4A:D1:EF:96:21:B6:09:CF
X509v3 Authority Key Identifier:
keyid:A4:7A:81:E6:D6:B3:E0:31:23:07:DC:A1:D8:63:98:2C:C9:0B:C6:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHqB5taz4DEjB9yh2GOYLMkLxnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/88d56c-6720-4fdc-9a13-d09bee137baa/1/HGPBJo9LNOYcsb_eStHvliG2Cc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/88d56c-6720-4fdc-9a13-d09bee137baa/1/pHqB5taz4DEjB9yh2GOYLMkLxnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.178.39.0/24
185.158.52.0/22
Signature Algorithm: sha256WithRSAEncryption
75:20:f4:6f:01:df:9e:7c:2b:c9:f9:c7:8d:95:d6:b4:74:74:
33:8c:16:71:f0:9a:28:b6:e6:c2:2e:33:df:2d:2a:5e:ee:fe:
82:1d:91:ba:c8:29:89:47:06:3c:fe:2b:30:4b:86:d4:a7:2c:
08:48:7d:ed:c6:f3:74:d0:64:64:2e:bf:aa:bd:d9:3e:15:5c:
90:1b:ba:17:74:8d:ea:bd:a2:0c:97:6a:61:30:9c:e4:ab:5a:
af:ad:27:b7:c0:fd:87:61:09:8b:4a:73:cb:c0:84:7c:50:29:
89:5e:6a:35:fc:69:38:87:4d:1d:0b:a0:7c:cd:3d:e0:d1:ba:
00:24:3d:d9:65:0c:ea:98:a1:82:2e:89:92:ad:47:2a:92:0c:
b0:c5:ef:22:10:a0:7e:90:dc:dc:35:96:32:56:19:43:0f:83:
62:c9:f7:41:25:3e:7b:ac:b8:63:3b:dd:b8:11:34:e4:bc:bc:
42:39:26:37:6f:77:66:b8:ea:bc:3b:7e:cb:4d:57:71:5c:f6:
ad:03:1c:6a:91:c5:33:f1:93:94:1f:b2:b3:8f:95:9e:e0:69:
62:85:47:52:41:9f:14:2f:ee:b4:56:03:0e:07:bb:71:6c:d2:
11:26:00:c8:3f:4d:b6:4d:62:c4:09:15:f8:b4:8c:a8:70:1f:
57:10:6e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:19 2023 by rpki-client on console.sobornost.net