Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/lHt_Mh1w-7vs8I-ZaeWKv1xW2Ps.roa
File: lHt_Mh1w-7vs8I-ZaeWKv1xW2Ps.roa (raw, json)
Hash identifier: /8Glm1hc9AeZKEAxOBVRVagGt2gyvK5usk/gBvfbgls=
Subject key identifier: 94:7B:7F:32:1D:70:FB:BB:EC:F0:8F:99:69:E5:8A:BF:5C:56:D8:FB
Certificate issuer: /CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Certificate serial: 0194221FBDBD7B51E72F12A1CAF6C3DD27C7
Authority key identifier: 1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/lHt_Mh1w-7vs8I-ZaeWKv1xW2Ps.roa
Signing time: Wed 01 Jan 2025 13:48:13 +0000
ROA not before: Wed 01 Jan 2025 13:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211095
IP address blocks: 185.68.234.0/24 maxlen: 24
185.68.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:bd:bd:7b:51:e7:2f:12:a1:ca:f6:c3:dd:27:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d65b7b7b898faaee70767d09715c436a83fcdc2
Validity
Not Before: Jan 1 13:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=947b7f321d70fbbbecf08f9969e58abf5c56d8fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a5:ed:00:eb:86:9c:f2:18:e0:be:25:f8:1a:
98:e0:24:0e:70:2d:69:53:42:c7:98:52:91:61:8b:
12:71:30:da:ed:aa:02:5d:cc:98:2f:07:f0:20:34:
d7:ea:0e:62:67:b8:e3:f2:a5:cb:31:9e:0b:61:97:
f2:65:bc:3f:94:56:b1:ba:ec:41:1e:16:7b:38:b7:
40:13:d4:94:9e:8a:af:92:64:3d:1b:50:bf:a2:f6:
07:3d:ba:ef:f8:f0:e9:7d:bb:d9:cf:3a:f9:5d:24:
9e:4b:15:b5:85:d2:37:6f:38:62:a1:34:ea:a4:9f:
da:51:90:37:56:85:17:c8:56:27:7f:11:e2:af:3a:
6b:7a:de:01:9f:1c:b6:4f:29:13:6d:aa:d7:3c:33:
94:bc:e0:46:36:3c:88:15:d4:81:81:7b:cb:79:7e:
85:35:09:f2:b7:29:c9:ec:44:a3:51:ca:3c:72:ba:
e9:e0:ec:ac:7c:db:9d:f8:0d:61:9b:af:24:51:a3:
44:c9:dc:22:bb:e4:26:90:c3:0f:a4:9c:8a:77:70:
dd:45:8e:c3:55:d8:cb:0c:5f:77:b4:c6:b2:e6:64:
6d:41:e2:e3:da:da:3e:90:fc:f2:52:9c:9b:62:64:
ef:c6:7a:0e:2b:ac:61:70:5c:64:10:cc:a0:1a:c7:
42:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:7B:7F:32:1D:70:FB:BB:EC:F0:8F:99:69:E5:8A:BF:5C:56:D8:FB
X509v3 Authority Key Identifier:
keyid:1D:65:B7:B7:B8:98:FA:AE:E7:07:67:D0:97:15:C4:36:A8:3F:CD:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HWW3t7iY-q7nB2fQlxXENqg_zcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/lHt_Mh1w-7vs8I-ZaeWKv1xW2Ps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/deaef1-6241-49ab-9825-8fc373757684/1/HWW3t7iY-q7nB2fQlxXENqg_zcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.234.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:62:3a:50:01:c1:e6:93:1f:03:72:f7:ee:b1:c3:44:26:3a:
2f:f8:96:5e:ba:5f:63:a0:fd:9d:de:e0:38:01:db:4b:fa:5f:
e3:57:b4:34:9d:cb:dc:5b:b6:ed:01:e7:74:0a:89:7b:ff:7e:
3c:26:04:c5:c1:dc:20:cd:37:d8:38:7d:ad:de:34:cd:e0:a6:
b6:49:d2:6a:30:11:62:03:55:9d:ae:9d:4b:16:45:d6:8c:9d:
a2:cc:76:cf:4a:15:c9:6b:a2:1a:48:c0:fd:03:62:19:78:8e:
cb:9a:46:e5:d9:79:50:b2:11:f0:b7:ac:32:de:71:81:b4:4c:
51:ed:be:41:d0:00:9d:5e:d4:d0:64:ae:f0:66:41:4b:90:49:
dd:1e:34:72:75:da:ce:b4:17:9e:f9:22:e6:a9:ed:6a:08:9c:
9b:dd:88:4a:fa:cb:fb:32:f2:9b:08:e6:e4:48:2a:20:0d:0a:
95:ac:bd:6a:4e:52:12:dc:21:89:f3:c0:53:db:d5:85:f9:82:
5c:60:eb:e2:64:ea:b0:4e:62:77:fb:71:48:99:16:9d:45:57:
5f:c0:93:00:dd:31:59:65:60:cb:68:82:93:39:c1:7f:07:7c:
be:6e:0f:0b:22:d5:05:2c:47:6d:e8:ce:d6:c4:da:56:3f:d3:
37:ad:3a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:09 2025 by rpki-client on console.sobornost.net