Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/hk-A5uz1ySXatzaz27aYTEhOR54.roa
File: hk-A5uz1ySXatzaz27aYTEhOR54.roa (raw, json)
Hash identifier: bUbIipM9rboMZxoZKLaYCDGfGtKjDqMhXpCV22oJRd8=
Subject key identifier: 86:4F:80:E6:EC:F5:C9:25:DA:B7:36:B3:DB:B6:98:4C:48:4E:47:9E
Certificate issuer: /CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Certificate serial: 0190AF69089F669C5A58F28EE92079935A2B
Authority key identifier: F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/hk-A5uz1ySXatzaz27aYTEhOR54.roa
Signing time: Sun 14 Jul 2024 04:03:34 +0000
ROA not before: Sun 14 Jul 2024 04:03:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204203
IP address blocks: 95.38.197.0/24 maxlen: 24
95.38.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:af:69:08:9f:66:9c:5a:58:f2:8e:e9:20:79:93:5a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0c104041691dc384f3b1a8cdf95c96628ea6daf
Validity
Not Before: Jul 14 04:03:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=864f80e6ecf5c925dab736b3dbb6984c484e479e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:bf:2f:6c:41:96:0d:06:60:76:43:e2:f0:da:
9f:8b:dd:f9:66:6a:ee:ab:68:d8:4a:3b:71:8a:60:
7f:cf:2d:01:5b:ae:c8:b2:46:98:4b:61:80:62:4f:
12:ad:53:f4:2b:dc:18:08:79:2e:3b:00:2f:3b:ee:
d9:4d:3c:89:59:9f:6a:8b:bb:26:a7:59:e4:a1:ea:
9c:da:91:36:b4:b1:16:e2:45:e9:b0:99:04:81:1e:
ba:9c:30:ca:8c:71:a2:5b:55:3b:c5:4b:86:0e:bb:
69:22:1d:3d:18:c1:85:73:e1:4b:bc:18:a9:f3:a9:
ea:dd:e0:6f:d6:a0:28:70:e4:3b:15:c7:e4:b1:ee:
e5:ae:b9:fa:2f:b9:75:41:2e:6d:77:c8:80:3b:ce:
93:f6:92:fa:a9:b9:0e:e6:ee:67:42:42:01:c1:67:
40:e2:65:01:91:f4:d1:b2:5e:4d:3d:ec:77:da:af:
26:d6:73:f6:57:43:cd:7b:b8:75:7b:99:d8:79:10:
a4:5a:44:a4:2a:6c:8a:3c:e6:ff:dc:5b:a5:00:e8:
e7:4a:42:c6:41:a7:fb:51:eb:de:6c:37:10:a5:48:
f2:b6:c6:2f:3b:84:6d:44:d6:1e:b7:7d:91:f9:37:
e4:fa:14:e5:b0:76:e9:f8:99:93:27:1b:33:16:51:
4a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:4F:80:E6:EC:F5:C9:25:DA:B7:36:B3:DB:B6:98:4C:48:4E:47:9E
X509v3 Authority Key Identifier:
keyid:F0:C1:04:04:16:91:DC:38:4F:3B:1A:8C:DF:95:C9:66:28:EA:6D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8MEEBBaR3DhPOxqM35XJZijqba8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/hk-A5uz1ySXatzaz27aYTEhOR54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/789caf-c8d2-419e-ae04-691422311729/1/8MEEBBaR3DhPOxqM35XJZijqba8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.38.197.0/24
95.38.219.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:1c:73:f7:98:5b:de:d5:12:b4:89:a5:5f:56:00:a4:20:78:
74:df:16:a7:68:dc:64:84:dc:da:aa:99:fc:b7:ae:9f:96:b6:
cc:6b:02:3d:44:44:01:97:7f:49:04:69:c5:88:dd:2e:3e:37:
27:a8:bf:0c:78:f7:d3:84:a8:e2:41:84:b7:3a:c4:e9:75:70:
77:9f:01:7b:85:32:70:bc:62:60:36:72:f0:18:03:51:8a:4b:
a9:63:27:a5:a2:87:59:b8:b1:b2:e6:c3:50:24:7b:a3:01:40:
3b:af:33:78:dd:4e:e5:49:04:a7:24:eb:e1:33:1a:f6:ed:61:
24:56:34:cc:bf:6f:d4:c7:ff:9e:8d:7f:71:73:2d:e5:41:28:
83:c2:e8:f6:c7:b9:00:e0:c0:35:42:93:19:4a:55:cf:e7:52:
e9:12:f2:0d:9c:32:28:25:17:8c:10:f1:b7:2c:e7:7a:78:30:
33:16:b0:d6:5a:96:c6:eb:03:7f:3c:08:2c:b5:5e:dd:a2:31:
1f:a8:ad:16:f5:25:2c:00:c8:23:e2:57:84:c1:87:29:b2:24:
9f:16:95:16:76:36:5d:64:f3:4c:2e:73:f7:da:9f:a6:32:5c:
57:a4:10:06:90:48:e1:99:f6:0c:93:ad:55:65:b2:11:de:47:
b3:ba:6f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 12:38:49 2024 by rpki-client on console.sobornost.net