Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/HUQfSbUXQ8o5sejAFjmqjv9tlM4.roa
File: HUQfSbUXQ8o5sejAFjmqjv9tlM4.roa (raw, json)
Hash identifier: 0zqsTYbHTNoaCDejiRL7Xvvp739hTKFX211y1GkZqpw=
Subject key identifier: 1D:44:1F:49:B5:17:43:CA:39:B1:E8:C0:16:39:AA:8E:FF:6D:94:CE
Certificate issuer: /CN=6417b1e13d32ed3a64a7c3522751623eefabe5f3
Certificate serial: 01941F8C756CB80E1D8C85668848B68A1BBE
Authority key identifier: 64:17:B1:E1:3D:32:ED:3A:64:A7:C3:52:27:51:62:3E:EF:AB:E5:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/HUQfSbUXQ8o5sejAFjmqjv9tlM4.roa
Signing time: Wed 01 Jan 2025 01:48:06 +0000
ROA not before: Wed 01 Jan 2025 01:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212800
IP address blocks: 195.69.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:75:6c:b8:0e:1d:8c:85:66:88:48:b6:8a:1b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6417b1e13d32ed3a64a7c3522751623eefabe5f3
Validity
Not Before: Jan 1 01:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d441f49b51743ca39b1e8c01639aa8eff6d94ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c8:6a:ec:a5:c1:f6:37:b2:02:0d:a3:40:0c:
ac:20:cb:f7:2c:1d:2c:18:46:78:1b:08:53:47:d1:
96:87:8f:95:b5:f9:6b:74:f0:a3:1a:a5:7d:ad:38:
a8:7b:76:8a:e0:67:46:e1:af:f8:37:8e:f3:e1:73:
9b:7e:86:e7:dc:77:97:dc:9f:1c:fe:ee:6e:3f:c2:
1d:c7:be:4c:f7:ce:85:6b:ab:8c:de:80:a6:6b:3c:
e6:20:f0:90:bf:2a:71:58:c7:5e:a1:60:6b:5c:8f:
53:f4:dc:3a:99:19:cb:32:f1:45:40:f8:f2:f7:22:
5b:a5:ba:92:6d:5b:4a:74:41:c6:71:b2:bd:db:e5:
db:a3:82:30:51:aa:87:a6:a1:d4:5c:d9:5a:06:15:
fb:54:cf:ca:b6:81:b2:65:64:2a:f4:bb:d9:d5:d8:
00:32:9a:8d:7a:af:96:c8:e5:34:cf:0a:9b:93:45:
df:4a:67:13:54:4a:dd:89:e0:63:93:67:b3:ed:4c:
27:a9:44:92:7a:a9:75:0c:f3:4e:48:4e:eb:69:14:
2d:d7:4b:b5:e7:ca:a6:36:5b:42:85:19:3a:68:14:
49:39:75:7a:e0:36:0c:7e:cd:a6:c6:82:87:14:30:
c6:b4:8c:d7:f5:4f:f3:91:1e:94:3c:7f:6a:81:a9:
5a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:44:1F:49:B5:17:43:CA:39:B1:E8:C0:16:39:AA:8E:FF:6D:94:CE
X509v3 Authority Key Identifier:
keyid:64:17:B1:E1:3D:32:ED:3A:64:A7:C3:52:27:51:62:3E:EF:AB:E5:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/HUQfSbUXQ8o5sejAFjmqjv9tlM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/445228-b442-4e16-ad69-8ffddb5e3c26/1/ZBex4T0y7Tpkp8NSJ1FiPu-r5fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.158.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:e8:06:fd:5a:97:5f:4a:e8:4c:18:8b:24:8b:69:3a:a1:91:
82:4e:81:42:03:c0:22:17:aa:9b:6e:f2:4d:53:57:08:47:1a:
99:78:37:b3:e5:eb:4e:7c:71:61:9c:d7:79:8c:3c:4a:98:b8:
4b:96:82:51:d3:62:0d:5c:63:b3:be:7a:19:14:69:d7:c6:7e:
77:58:ba:f4:e3:ab:88:7b:60:7a:49:70:7a:54:ac:2c:2a:d7:
da:c5:10:bb:99:63:59:d0:c3:cb:93:49:f1:80:c4:40:38:2d:
c3:d7:76:97:f2:01:1d:1e:29:54:a2:06:54:33:c6:f2:16:9c:
c1:ae:27:9e:b5:a2:14:ca:f8:3a:54:5d:dc:c6:4c:4b:86:d0:
c8:63:31:7e:52:11:0b:33:c6:3d:1f:24:88:7a:ee:7a:92:40:
c3:fc:15:14:a8:6c:16:c3:b6:f5:27:27:7b:72:cc:46:b2:c5:
55:c8:b4:42:19:3b:3a:3d:9e:0b:f6:d0:cb:eb:96:c1:49:3f:
bf:ec:4e:18:25:4e:da:d9:d9:8a:ca:0c:5e:d9:73:51:75:6c:
9c:9c:e2:7d:97:7e:3e:17:87:d6:d5:9a:1e:cf:22:f1:85:a2:
a1:fd:ea:4a:77:a9:7c:6a:e7:9f:a9:7b:2c:62:c4:c9:81:41:
7b:1f:63:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:17 2025 by rpki-client on console.sobornost.net