Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/57d30a-0552-45f6-9ebc-c2bd5fc04424/1/BHWwRry-UijUF9-7a9qe-3in6HE.roa
File: BHWwRry-UijUF9-7a9qe-3in6HE.roa (raw, json)
Hash identifier: GplxxbcF603HuP5zyFWWBxSgE208s+IGY7yLNmT6LyQ=
Subject key identifier: 04:75:B0:46:BC:BE:52:28:D4:17:DF:BB:6B:DA:9E:FB:78:A7:E8:71
Certificate issuer: /CN=b795582c73302eb0a974477603049850833bd210
Certificate serial: 01941F8C827EB6E8045F2CB5ECCE380F97BC
Authority key identifier: B7:95:58:2C:73:30:2E:B0:A9:74:47:76:03:04:98:50:83:3B:D2:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t5VYLHMwLrCpdEd2AwSYUIM70hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/57d30a-0552-45f6-9ebc-c2bd5fc04424/1/BHWwRry-UijUF9-7a9qe-3in6HE.roa
Signing time: Wed 01 Jan 2025 01:48:09 +0000
ROA not before: Wed 01 Jan 2025 01:48:09 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206640
IP address blocks: 185.180.112.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:82:7e:b6:e8:04:5f:2c:b5:ec:ce:38:0f:97:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b795582c73302eb0a974477603049850833bd210
Validity
Not Before: Jan 1 01:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0475b046bcbe5228d417dfbb6bda9efb78a7e871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5d:5a:5d:7b:51:1c:4b:81:f1:15:d1:c0:f4:
ed:e2:7c:50:c7:fe:fb:08:ce:30:ec:7a:25:41:15:
87:11:b8:aa:05:d2:43:1e:b3:90:5d:f1:7b:bf:60:
53:d7:10:28:4b:da:b6:8b:17:70:8f:92:b4:07:bb:
5e:59:63:f6:bd:74:52:75:fc:f4:ca:1a:8d:78:b9:
c9:fc:9e:eb:45:a3:00:91:f4:b5:d2:d9:1b:50:cc:
da:dd:f1:32:f8:dd:24:be:af:6d:4d:ea:95:cd:f5:
32:d2:74:75:4f:3e:06:2b:6a:32:23:39:6e:23:50:
c5:35:ce:e9:12:05:b6:b4:35:37:e0:cb:ed:95:17:
ec:68:fe:58:21:fe:fc:93:0b:e3:53:c1:62:3a:5a:
74:99:70:c9:e6:48:9f:07:7b:38:4f:64:39:bd:75:
85:9e:1a:ed:89:60:0d:56:50:5b:55:60:6f:48:1b:
ce:dd:e9:98:55:a1:9f:65:27:12:f5:58:ef:00:16:
0b:33:39:79:3e:a7:b8:44:d8:61:94:09:be:d0:72:
69:46:f5:29:a4:f3:8c:db:46:39:c2:53:16:07:b4:
75:87:f6:5a:fb:b3:c7:fa:69:a3:7b:48:e2:29:3d:
1f:56:51:eb:6d:0a:32:e3:2f:87:18:14:da:04:72:
e3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:75:B0:46:BC:BE:52:28:D4:17:DF:BB:6B:DA:9E:FB:78:A7:E8:71
X509v3 Authority Key Identifier:
keyid:B7:95:58:2C:73:30:2E:B0:A9:74:47:76:03:04:98:50:83:3B:D2:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t5VYLHMwLrCpdEd2AwSYUIM70hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/57d30a-0552-45f6-9ebc-c2bd5fc04424/1/BHWwRry-UijUF9-7a9qe-3in6HE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/57d30a-0552-45f6-9ebc-c2bd5fc04424/1/t5VYLHMwLrCpdEd2AwSYUIM70hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.112.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:6c:97:25:9b:ed:0d:0a:0c:da:46:ca:ad:89:ff:80:86:67:
6f:66:52:28:49:d2:0d:ca:d1:67:36:62:72:08:ad:d4:33:0c:
3d:14:ff:ff:65:a2:84:b5:d3:b1:7a:72:8c:1a:73:c7:eb:ff:
61:76:3c:7c:f3:d3:f0:3b:e0:f8:ee:cd:8b:1a:f9:56:71:82:
29:b3:b2:9c:17:19:ac:11:28:9a:a5:15:f9:1b:36:a2:2f:dd:
78:ce:a5:6c:6a:83:43:c7:63:4e:6d:09:b8:dc:a6:a2:26:21:
90:68:ad:f7:9d:25:a2:c0:35:ce:73:10:9c:ec:0d:52:2c:50:
24:45:75:d0:9d:a1:3c:95:9b:1e:97:60:2b:e2:c6:d6:cc:0f:
20:1f:d9:f1:d9:a6:a7:bc:b9:47:e7:1a:d3:74:7b:30:3e:ef:
86:60:cb:c8:25:03:7f:9f:4b:41:b8:99:c7:fa:86:4c:c2:a3:
42:db:7d:f8:92:2e:d7:15:c8:57:e1:d8:67:b5:c3:2a:c6:af:
f6:c6:61:b4:84:40:f0:81:a4:8f:a3:ea:f1:f0:d2:04:79:c2:
42:f7:39:b6:87:cc:98:91:c8:28:72:c3:23:63:3c:1c:11:ec:
65:72:eb:09:68:32:fe:e2:23:b6:78:7f:37:38:fe:e1:b2:bd:
f4:f5:47:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:56 2025 by rpki-client on console.sobornost.net