Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/hOsUXVARCl8NqYdv3cI6OIcfqwU.roa
File: hOsUXVARCl8NqYdv3cI6OIcfqwU.roa (raw, json)
Hash identifier: w1gjvrKQRUt3hmiD9OYkOr05DsegCS6tRj5zStTTlPE=
Subject key identifier: 84:EB:14:5D:50:11:0A:5F:0D:A9:87:6F:DD:C2:3A:38:87:1F:AB:05
Certificate issuer: /CN=43d518d7307788fca3891878490e4f32d9aaf6af
Certificate serial: 0194258F6FE0EE3B08AB6AA95AAEF7DC2AC0
Authority key identifier: 43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/hOsUXVARCl8NqYdv3cI6OIcfqwU.roa
Signing time: Thu 02 Jan 2025 05:49:04 +0000
ROA not before: Thu 02 Jan 2025 05:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20592
IP address blocks: 185.178.96.0/22 maxlen: 22
212.115.116.0/23 maxlen: 23
212.115.118.0/24 maxlen: 24
2a11:6f00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:6f:e0:ee:3b:08:ab:6a:a9:5a:ae:f7:dc:2a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43d518d7307788fca3891878490e4f32d9aaf6af
Validity
Not Before: Jan 2 05:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=84eb145d50110a5f0da9876fddc23a38871fab05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5c:d2:f8:c1:50:f3:19:2d:c0:2b:d4:ef:1d:
79:6b:2e:ec:16:c0:9d:c8:d2:f6:79:92:ce:07:72:
f9:50:74:e9:6f:a5:bc:cc:f4:fe:af:3b:ab:4c:fd:
3f:b6:78:86:af:4a:ba:3d:3d:1a:0f:be:9e:28:73:
be:de:3b:68:dc:01:52:61:e8:af:8e:af:55:1a:72:
27:b1:a4:97:7c:d1:4c:64:78:a9:4c:5b:da:d5:32:
5e:a0:cc:04:68:b3:a9:10:31:b5:ba:3c:5d:65:98:
ff:77:4e:84:c9:97:dd:28:4e:0b:c2:87:66:70:17:
10:02:0c:a4:67:d7:36:f9:d5:cf:bd:39:f8:66:fd:
97:ac:d8:d2:67:bf:71:1e:16:11:a8:e2:80:6b:b8:
8f:5f:32:8a:f6:2d:8e:9b:38:2e:40:de:06:dc:c6:
bf:0f:1c:42:ab:5a:90:f4:1d:25:d4:7c:d0:67:73:
11:8f:12:b7:95:28:53:3a:34:91:4b:4a:4e:22:f2:
7f:43:b9:28:eb:3b:e0:f8:4b:f8:a1:64:41:f2:03:
e4:f3:04:09:f0:83:87:06:c6:ec:7f:c3:d7:0e:17:
1e:b6:5a:3b:f0:16:ff:21:97:76:ce:5c:a0:43:a0:
cb:bf:e3:1d:de:4d:8b:78:0f:62:8e:ab:98:d7:8e:
36:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EB:14:5D:50:11:0A:5F:0D:A9:87:6F:DD:C2:3A:38:87:1F:AB:05
X509v3 Authority Key Identifier:
keyid:43:D5:18:D7:30:77:88:FC:A3:89:18:78:49:0E:4F:32:D9:AA:F6:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/hOsUXVARCl8NqYdv3cI6OIcfqwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ab7caa-8bc5-4bce-a130-eddf320d50e2/1/Q9UY1zB3iPyjiRh4SQ5PMtmq9q8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.96.0/22
212.115.116.0-212.115.118.255
IPv6:
2a11:6f00::/29
Signature Algorithm: sha256WithRSAEncryption
20:36:52:ef:f7:1b:46:6d:8e:e2:3c:bb:1f:b5:cf:e2:81:c3:
81:d3:ef:8a:b4:b0:2d:45:ac:38:e0:51:52:e3:ab:c2:f6:03:
a5:b6:27:8a:d7:fb:9c:21:56:74:95:82:56:2d:6c:eb:c3:97:
47:3d:42:70:5d:a5:66:f4:90:0a:a3:aa:cd:df:3e:4d:9e:b2:
0c:6c:d1:2a:d0:12:31:54:7d:27:e3:69:5e:5c:89:69:1e:76:
89:54:e2:0c:e5:b2:70:81:7e:6a:9b:6a:9d:c8:b9:5b:f1:94:
4e:99:fc:30:5b:00:42:50:af:f6:62:a0:51:d0:b9:02:ab:61:
4d:30:78:b3:c0:a5:42:91:ef:be:e5:e3:87:54:3d:01:a5:28:
f6:78:3f:88:1a:70:8c:40:e8:95:65:c5:67:e5:12:7d:22:37:
70:c8:da:59:e0:c3:59:b4:e2:ae:e7:cc:3d:c0:2a:08:7f:fa:
34:c9:c2:01:77:a0:49:4b:f8:7e:a6:91:7a:6b:32:04:7d:9a:
8f:a8:8c:60:27:b3:d6:73:0a:8d:80:a3:4b:40:8a:ba:d2:c9:
db:ac:a0:86:f8:99:06:ee:b8:84:98:60:d2:39:2a:0a:5f:db:
5a:4c:f0:f9:15:0a:48:7f:15:10:b7:7c:7a:d4:bf:a5:9a:a3:
7a:3f:29:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:15 2025 by rpki-client on console.sobornost.net