Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/HpcoPHWXelsEc83A5lrjHQcz4ck.roa
File: HpcoPHWXelsEc83A5lrjHQcz4ck.roa (raw, json)
Hash identifier: z5HkkcDJsILTMlUiHF/hxZcjE8u956W+aTccBwWVcDI=
Subject key identifier: 1E:97:28:3C:75:97:7A:5B:04:73:CD:C0:E6:5A:E3:1D:07:33:E1:C9
Certificate issuer: /CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Certificate serial: 019424B3A9D63E69E6D91599A3B5531A91C5
Authority key identifier: 6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/HpcoPHWXelsEc83A5lrjHQcz4ck.roa
Signing time: Thu 02 Jan 2025 01:49:01 +0000
ROA not before: Thu 02 Jan 2025 01:49:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201533
IP address blocks: 185.71.232.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:a9:d6:3e:69:e6:d9:15:99:a3:b5:53:1a:91:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecb3fb3bea8cc8e36e3da7d9c47049bfc6ffb14
Validity
Not Before: Jan 2 01:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e97283c75977a5b0473cdc0e65ae31d0733e1c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b7:db:66:22:45:09:6d:be:c1:75:14:fa:09:
26:48:f3:97:95:6a:9c:a0:0f:50:d5:1c:17:2e:1f:
d6:13:85:98:1e:54:dd:c6:cc:d1:d2:75:6d:18:fb:
76:18:cc:e5:7d:bf:f5:2d:dc:d9:8c:c8:86:b1:9a:
e1:c7:c1:5f:1b:ab:e9:d3:bf:63:8c:aa:6d:86:d1:
63:46:7d:e5:bf:0e:8a:89:95:87:90:35:9c:91:11:
18:10:18:f6:ac:f0:53:36:8c:ab:cc:b3:f2:21:a6:
f1:97:f1:36:03:5a:9d:53:2b:b2:f4:6a:15:77:be:
44:4e:e3:49:63:8b:15:4a:51:0c:85:b9:1b:8b:9a:
0c:21:cb:88:fe:06:75:68:93:44:f1:42:f4:20:96:
c6:c8:d7:a6:bd:11:96:d9:b8:da:d2:3a:48:da:4b:
35:15:ea:50:00:62:f4:4f:db:be:83:6e:85:df:80:
33:b8:d9:07:49:8d:84:b4:3c:3f:29:c6:48:d4:94:
d2:8f:b9:3a:5e:27:52:03:e6:74:8b:5e:80:a1:2f:
3d:0d:8d:f0:be:8d:0d:46:72:a5:6a:18:c9:52:7b:
0d:ad:5c:47:cb:76:d8:72:8a:8d:af:f2:54:a2:d3:
2f:63:a3:5e:cb:dd:ad:2e:ce:c8:73:c4:d7:d6:10:
3c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:97:28:3C:75:97:7A:5B:04:73:CD:C0:E6:5A:E3:1D:07:33:E1:C9
X509v3 Authority Key Identifier:
keyid:6E:CB:3F:B3:BE:A8:CC:8E:36:E3:DA:7D:9C:47:04:9B:FC:6F:FB:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bss_s76ozI4249p9nEcEm_xv-xQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/HpcoPHWXelsEc83A5lrjHQcz4ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/0ba7e2-63a2-4c41-86b5-a370f4ba2d2b/1/bss_s76ozI4249p9nEcEm_xv-xQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.232.0/22
Signature Algorithm: sha256WithRSAEncryption
49:51:53:a5:fe:62:8e:31:f2:e0:f8:cb:93:c6:c9:59:08:33:
29:93:b0:3d:c5:5a:38:54:c1:d4:5f:28:2c:7c:8d:81:d9:c8:
aa:f1:fc:f7:f9:23:4d:4f:7e:06:e0:30:20:44:56:c8:fb:f9:
75:e9:31:40:6b:e0:fd:60:eb:17:06:96:28:28:24:c4:40:04:
1e:ff:e5:77:97:77:a7:82:f0:b3:ea:3f:6a:d2:c2:7d:9e:cc:
c0:6f:2e:c2:62:89:f5:d7:ee:f8:cd:bf:c5:ba:97:fd:8c:cd:
12:da:f3:b8:61:d1:33:f5:5d:6a:0c:a6:dd:f1:b4:b5:0b:7c:
c1:34:13:91:82:88:6f:2c:84:82:37:3f:50:55:42:12:ba:3c:
5f:2e:8a:5b:43:52:08:30:d1:39:59:4d:d4:58:31:b9:d5:23:
04:8b:ee:68:71:c1:b1:88:33:55:d6:45:7a:09:1a:0e:9b:df:
bc:a3:d4:7d:fb:ef:ff:b9:9b:82:cd:47:ac:6d:11:da:03:6d:
12:2c:3d:20:04:57:03:91:52:86:1d:2e:d2:ce:5e:cf:b3:3e:
a2:66:92:91:ad:08:fd:3f:93:09:10:d2:a7:b1:bc:b8:ec:68:
4b:a7:97:04:ac:be:b0:50:6c:71:e2:af:61:e2:5a:7a:53:68:
d7:e3:a1:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:12 2025 by rpki-client on console.sobornost.net