Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/HVDZDhI_37xAwlJHexTnzDzb8E0.roa
File: HVDZDhI_37xAwlJHexTnzDzb8E0.roa (raw, json)
Hash identifier: Ji8VlsF3ugwSnv+9ttxfjrdS99znlwRonFvgsU5yaHA=
Subject key identifier: 1D:50:D9:0E:12:3F:DF:BC:40:C2:52:47:7B:14:E7:CC:3C:DB:F0:4D
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 019421B22DC173C99DBBF2BC0FA2031A99D2
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/HVDZDhI_37xAwlJHexTnzDzb8E0.roa
Signing time: Wed 01 Jan 2025 11:48:32 +0000
ROA not before: Wed 01 Jan 2025 11:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201374
IP address blocks: 195.251.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:2d:c1:73:c9:9d:bb:f2:bc:0f:a2:03:1a:99:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 1 11:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d50d90e123fdfbc40c252477b14e7cc3cdbf04d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:47:2c:74:dc:43:09:16:53:7f:ac:0e:38:98:
dd:24:70:84:53:31:fb:b6:a4:d6:fb:f8:ec:02:c6:
ba:27:85:ea:7e:09:ba:7a:be:d7:2f:47:76:30:ae:
cc:f4:6f:d4:e4:1c:d2:59:cb:b2:ff:17:01:e6:ce:
76:f3:00:8c:4a:23:17:db:82:e8:9d:9e:0f:df:86:
c6:60:e4:73:a6:4b:15:d6:73:f3:fd:4a:0d:02:23:
3d:f0:b6:31:ce:fc:eb:b8:f3:e3:96:46:76:20:23:
ba:0e:df:96:bc:71:b4:46:bb:36:dd:bb:ed:f8:73:
af:fb:0f:3c:8c:99:75:42:e8:85:18:10:76:f8:75:
15:ed:de:50:2d:91:e4:b6:70:ac:23:cf:95:48:5a:
0b:69:79:9b:a1:b4:d7:55:ac:61:d4:c3:5d:d5:3b:
4d:07:e2:98:e5:c0:8a:01:ee:a4:e9:91:13:08:f3:
5b:04:c2:7b:4f:c8:41:ec:1a:37:07:09:b7:9b:52:
49:60:7e:b4:58:bb:d9:f8:4e:2c:f6:78:8f:a1:5b:
20:40:88:09:d2:36:57:4e:0c:28:e2:b5:19:a8:ab:
27:c9:7b:ea:72:a7:19:8f:6b:91:97:1e:bb:f7:0c:
e1:8e:71:5c:98:c7:5b:64:99:ee:1e:2e:c5:d0:ff:
5f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:50:D9:0E:12:3F:DF:BC:40:C2:52:47:7B:14:E7:CC:3C:DB:F0:4D
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/HVDZDhI_37xAwlJHexTnzDzb8E0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.251.32.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:f9:78:19:10:37:01:5f:b7:8c:8b:0a:71:44:e3:0a:7f:78:
10:46:35:d0:e1:ec:83:67:02:c5:cc:76:fb:66:02:47:11:67:
7b:9f:21:a7:f6:ec:1d:99:ac:69:a3:4d:bd:6f:14:cf:71:37:
b9:8f:2c:0e:8a:19:31:62:7a:e2:92:a1:44:63:2a:14:66:1c:
6e:94:6c:09:1a:ad:4d:c0:f2:46:3c:f2:4e:3a:fc:47:ae:4c:
41:47:69:30:b8:96:13:48:df:f1:8d:d5:9b:52:0f:b1:32:55:
63:60:7a:79:62:8a:39:5a:d8:e5:57:bd:3a:96:52:3c:48:29:
6f:8c:9d:18:13:d1:3a:bc:f4:0c:23:80:cc:aa:dc:e1:d1:55:
f0:25:96:a4:d4:d2:6b:17:bb:02:67:e2:f9:94:0d:88:ba:99:
ae:8c:6f:74:9b:a0:aa:0b:52:d3:3c:23:e7:72:68:a5:a6:07:
07:44:69:c0:aa:71:cb:2f:2b:2c:0b:a3:75:d1:25:36:43:b5:
21:20:d9:39:06:5f:9b:13:79:c4:c5:2c:ea:2f:b5:08:09:97:
04:53:63:62:5e:39:c4:f7:5a:be:fa:58:8a:e8:4b:9e:d0:8d:
3c:c9:01:44:ce:3d:e6:52:cd:bc:16:d8:bc:cd:c1:f9:94:ec:
d9:98:d4:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:02 2025 by rpki-client on console.sobornost.net