Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/hgPRrGnHa6fpFg4JOZXmh5Kugz0.roa
File: hgPRrGnHa6fpFg4JOZXmh5Kugz0.roa (raw, json)
Hash identifier: WE34GZzYhpaV24ydZVp5cUxFd5dBY//1RpKX0HLyzss=
Subject key identifier: 86:03:D1:AC:69:C7:6B:A7:E9:16:0E:09:39:95:E6:87:92:AE:83:3D
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0194708FE8413EE32D92A036DBCE42F2530C
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/hgPRrGnHa6fpFg4JOZXmh5Kugz0.roa
Signing time: Thu 16 Jan 2025 19:21:06 +0000
ROA not before: Thu 16 Jan 2025 19:21:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206286
IP address blocks: 95.214.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:70:8f:e8:41:3e:e3:2d:92:a0:36:db:ce:42:f2:53:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 16 19:21:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8603d1ac69c76ba7e9160e093995e68792ae833d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2f:18:aa:02:cd:b0:9a:2b:e6:36:9a:1e:ec:
47:4f:4c:bb:f0:f9:b7:14:bb:49:2e:b6:f1:a1:9c:
d5:8c:a4:ce:b0:a8:d7:ad:4c:c0:38:b4:1d:10:5b:
7b:36:59:a9:06:56:2a:82:64:c6:aa:5a:0b:6c:98:
9d:e1:96:fe:76:13:be:75:0c:2b:a1:2e:ed:79:f9:
92:63:53:1c:2f:11:e3:88:7a:87:d4:88:05:cd:78:
ff:c6:af:c9:58:ad:81:c8:ed:c4:e3:23:ee:cd:87:
80:b6:b7:04:b5:52:b1:eb:1b:7f:3c:0f:73:c0:e4:
8a:a7:49:4f:76:17:4d:b8:9b:8e:ee:2c:d6:36:c6:
1e:34:f6:42:48:91:23:42:9c:58:83:cc:a8:2d:dc:
e9:34:09:d0:9e:b3:84:5c:46:63:aa:18:d8:df:9c:
dc:5f:62:e8:89:0a:8a:41:a6:37:3e:63:dd:78:b9:
23:3d:ad:96:e2:d3:a8:13:4e:c5:f2:89:28:46:eb:
c8:3a:ef:b0:85:d0:cd:69:96:34:0e:43:a6:19:c1:
d0:90:95:3a:b3:2a:e9:52:db:2f:92:d7:a0:07:a3:
ba:35:01:3b:e9:80:ee:60:d3:f6:08:07:95:59:94:
89:7f:1c:f0:fa:bb:98:d5:b2:da:82:1d:84:e8:f1:
7c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:03:D1:AC:69:C7:6B:A7:E9:16:0E:09:39:95:E6:87:92:AE:83:3D
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/hgPRrGnHa6fpFg4JOZXmh5Kugz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.177.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:d8:16:77:22:36:70:7e:b9:27:74:73:36:ab:8c:0b:0e:18:
2d:50:eb:dc:d2:0c:43:fd:25:4a:b8:f2:a8:7a:e9:82:83:75:
1c:11:af:4c:97:dc:c3:b3:57:7d:31:01:7a:07:31:66:1f:b0:
4f:d1:8a:d5:c0:df:4e:6e:c8:70:09:8a:27:a3:16:40:c4:54:
5a:0f:4a:a6:2a:25:1e:d9:8f:3c:5f:5f:9e:18:d3:c4:a1:8d:
e5:ef:a5:e4:46:b5:f3:51:30:34:bf:fe:d6:44:49:b0:64:ee:
5d:d7:bc:fe:b8:e1:9c:79:36:94:46:3b:3f:dc:a7:88:b3:1f:
fd:3d:f0:1e:e3:f4:a1:17:7e:48:1f:64:82:66:38:ba:61:b7:
d5:e5:78:60:5b:aa:1d:89:60:a9:92:ba:55:1a:eb:a9:d7:38:
3a:0b:3b:6c:a5:1b:74:a6:b6:04:19:b2:72:71:9b:16:1c:4c:
ad:01:47:7d:8f:3d:53:ed:e6:ac:53:16:b8:09:2f:0f:a3:ed:
67:c2:3c:85:d4:b1:54:59:10:6d:09:30:3f:d1:bd:61:51:b5:
b2:b4:cd:15:97:59:6e:88:e9:d7:0a:94:ac:ac:3c:b1:af:76:
31:5d:b1:99:d4:9b:a9:50:55:3f:5c:c0:31:e5:d6:2d:bf:61:
30:8c:ef:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZRwj+hBPuMtkqA2285C8lMMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjUwMTE2MTkyMTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjAzZDFhYzY5Yzc2YmE3ZTkxNjBlMDkzOTk1ZTY4NzkyYWU4MzNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvy8YqgLNsJor5jaaHuxHT0y78Pm3
FLtJLrbxoZzVjKTOsKjXrUzAOLQdEFt7NlmpBlYqgmTGqloLbJid4Zb+dhO+dQwr
oS7tefmSY1McLxHjiHqH1IgFzXj/xq/JWK2ByO3E4yPuzYeAtrcEtVKx6xt/PA9z
wOSKp0lPdhdNuJuO7izWNsYeNPZCSJEjQpxYg8yoLdzpNAnQnrOEXEZjqhjY35zc
X2LoiQqKQaY3PmPdeLkjPa2W4tOoE07F8okoRuvIOu+whdDNaZY0DkOmGcHQkJU6
syrpUtsvktegB6O6NQE76YDuYNP2CAeVWZSJfxzw+ruY1bLagh2E6PF8EwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIYD0axpx2un6RYOCTmV5oeSroM9MB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvaGdQUnJHbkhhNmZwRmc0Sk9aWG1oNUt1Z3owLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX9axMA0G
CSqGSIb3DQEBCwUAA4IBAQDJ2BZ3IjZwfrkndHM2q4wLDhgtUOvc0gxD/SVKuPKo
eumCg3UcEa9Ml9zDs1d9MQF6BzFmH7BP0YrVwN9ObshwCYonoxZAxFRaD0qmKiUe
2Y88X1+eGNPEoY3l76XkRrXzUTA0v/7WREmwZO5d17z+uOGceTaURjs/3KeIsx/9
PfAe4/ShF35IH2SCZji6YbfV5XhgW6odiWCpkrpVGuup1zg6CztspRt0prYEGbJy
cZsWHEytAUd9jz1T7easUxa4CS8Po+1nwjyF1LFUWRBtCTA/0b1hUbWytM0Vl1lu
iOnXCpSsrDyxr3YxXbGZ1JupUFU/XMAx5dYtv2EwjO89
-----END CERTIFICATE-----
Generated at Tue Jan 21 15:04:05 2025 by rpki-client on console.sobornost.net