Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/H0n8P5aPQHseeKnJo3nngqt0Bb4.roa
File: H0n8P5aPQHseeKnJo3nngqt0Bb4.roa (raw, json)
Hash identifier: vekoOzv7AXfSwGG7vsOm+Jeh01cJs9qXf1Z3DvAgd9g=
Subject key identifier: 1F:49:FC:3F:96:8F:40:7B:1E:78:A9:C9:A3:79:E7:82:AB:74:05:BE
Certificate issuer: /CN=6228417361c1c406ae9a7257daa9fb0620782d35
Certificate serial: 019420D65A04F828917759A93C24EF3D8BFC
Authority key identifier: 62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/H0n8P5aPQHseeKnJo3nngqt0Bb4.roa
Signing time: Wed 01 Jan 2025 07:48:26 +0000
ROA not before: Wed 01 Jan 2025 07:48:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204856
IP address blocks: 45.129.93.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:5a:04:f8:28:91:77:59:a9:3c:24:ef:3d:8b:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228417361c1c406ae9a7257daa9fb0620782d35
Validity
Not Before: Jan 1 07:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1f49fc3f968f407b1e78a9c9a379e782ab7405be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:05:1b:9f:ff:32:6d:56:3f:33:f6:46:80:48:
28:07:84:a4:c9:86:dc:33:4c:55:bd:65:8a:2f:c6:
0a:86:3b:14:e2:2e:9f:fe:32:28:b3:c9:70:6b:ea:
8b:64:3e:0f:63:fb:92:09:4b:f8:04:42:9d:08:32:
6e:d9:bf:cf:14:94:91:42:b5:c2:24:0a:90:0c:58:
8d:b9:81:71:e6:c0:ed:2a:b9:56:09:50:15:dc:c3:
66:4f:48:83:e7:91:b7:49:d4:98:83:14:bf:f3:c0:
71:fa:67:19:72:13:a7:70:ae:c1:d3:cd:c4:10:ca:
2a:db:aa:d7:5f:3b:7f:a3:4a:89:09:52:52:2a:17:
2a:43:e3:02:a1:b5:39:de:c6:be:9f:f2:68:6e:4a:
37:71:cb:b5:0c:c9:e5:fb:c4:71:e1:5f:ca:14:d0:
e7:38:e6:10:c9:af:73:d6:f2:4c:66:e1:c5:15:34:
f2:32:10:d3:16:12:72:99:74:9d:ec:28:34:97:90:
d3:55:59:a3:40:69:af:3d:95:41:f6:9f:7e:a0:81:
c8:e5:68:11:16:2e:d2:ed:03:76:22:2c:6b:7a:d2:
1f:2d:f2:04:55:46:9d:4d:be:81:55:b0:73:ff:d8:
21:2a:43:37:c8:81:4b:74:71:3e:06:84:32:8c:13:
14:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:49:FC:3F:96:8F:40:7B:1E:78:A9:C9:A3:79:E7:82:AB:74:05:BE
X509v3 Authority Key Identifier:
keyid:62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/H0n8P5aPQHseeKnJo3nngqt0Bb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.93.0/24
Signature Algorithm: sha256WithRSAEncryption
89:54:4b:f0:77:a0:b8:9c:57:8f:7a:78:99:4d:85:8c:e8:7a:
2a:24:a2:06:94:29:9a:13:29:3c:55:be:aa:92:ad:16:e2:50:
df:5c:b3:c6:c8:af:8d:bb:3b:02:b5:66:32:1c:4f:03:e2:27:
24:cc:77:bb:54:73:c1:96:cf:8c:51:95:14:aa:3e:43:69:e6:
cd:e4:17:29:cd:c6:5d:32:6d:f8:89:da:87:af:72:92:98:7f:
a0:1d:4a:af:78:2b:f5:fc:c7:db:7a:f8:14:72:56:af:dd:3d:
65:74:31:38:43:b9:09:df:42:76:ad:dd:d7:da:36:b9:9d:24:
04:e0:cc:59:93:50:ea:a9:0e:5d:cb:c1:27:5f:73:17:10:de:
fa:34:9b:eb:7a:87:b7:d5:8f:c3:a1:11:3a:7a:5d:a7:64:cd:
9a:6b:fc:e2:d3:6a:a6:e8:03:80:91:76:5d:6c:bc:90:6f:52:
e3:55:1b:3a:a1:13:c8:a7:33:73:0a:63:9c:89:8e:1d:8a:c7:
0b:7c:14:1a:22:1e:33:f4:f7:6d:8c:ec:c3:bf:2b:6b:a1:68:
ea:4c:68:54:db:f8:09:1b:4d:a7:c9:fc:c5:f1:a9:5e:b6:96:
43:de:51:73:b7:a6:06:20:4b:53:f9:df:81:6e:e1:d9:e0:23:
30:33:8a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:16:12 2025 by rpki-client on console.sobornost.net