Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/Hg_LuWwF2PqnDP--QEmiR8s_JMw.roa
File: Hg_LuWwF2PqnDP--QEmiR8s_JMw.roa (raw, json)
Hash identifier: pTVkg9vcSnhojGDdhaJdcSnTn9EzuAwvN69LeVjj+eI=
Subject key identifier: 1E:0F:CB:B9:6C:05:D8:FA:A7:0C:FF:BE:40:49:A2:47:CB:3F:24:CC
Certificate issuer: /CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Certificate serial: 0194206853745C99DAE8EB184F0DE3B617D4
Authority key identifier: A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/Hg_LuWwF2PqnDP--QEmiR8s_JMw.roa
Signing time: Wed 01 Jan 2025 05:48:15 +0000
ROA not before: Wed 01 Jan 2025 05:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 25081
IP address blocks: 195.234.216.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:53:74:5c:99:da:e8:eb:18:4f:0d:e3:b6:17:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20018648c7afa144464d47bb1e2cb2ba786ebb1
Validity
Not Before: Jan 1 05:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e0fcbb96c05d8faa70cffbe4049a247cb3f24cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:13:6d:76:57:9f:87:b2:c1:41:5e:ba:65:5f:
1d:1b:f1:5b:e4:bd:f7:3b:9f:eb:ce:d7:af:8c:39:
de:3e:cc:15:c0:1c:ba:0d:52:ee:2e:16:41:6a:d1:
d7:71:3c:56:6e:2e:f3:f1:15:92:02:cc:98:76:ad:
d5:0f:15:c4:46:62:dc:22:f7:09:62:b6:f4:66:6a:
27:0b:50:99:49:b0:d4:42:8b:d9:22:00:26:ab:5a:
02:af:bc:80:1e:5a:5b:4a:b0:7a:d8:1c:09:45:ee:
92:9f:28:d6:ad:b9:4e:32:d0:df:43:fe:42:55:4a:
45:15:f4:02:55:51:b2:73:79:2d:b8:01:4d:bf:44:
ac:43:fa:6c:d1:ea:ff:80:66:d0:4e:ca:9f:ca:43:
d9:b2:02:23:d5:3a:9f:cc:eb:0a:32:02:5c:c9:80:
af:78:ce:ea:7b:a5:c1:e3:c8:24:62:9e:ee:be:9d:
35:a5:2c:6e:0e:21:ec:0b:bc:f1:ba:23:72:27:2e:
90:60:a4:f8:df:e9:76:3f:71:19:99:8c:16:78:f8:
3c:9b:28:a2:54:8c:1f:0c:1a:a4:05:d6:f6:ae:bb:
61:8c:ec:9e:85:09:75:51:1b:30:4c:83:40:1b:5e:
c4:ff:17:47:30:b1:44:d6:e1:f7:3a:48:a5:98:f0:
e5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:0F:CB:B9:6C:05:D8:FA:A7:0C:FF:BE:40:49:A2:47:CB:3F:24:CC
X509v3 Authority Key Identifier:
keyid:A2:00:18:64:8C:7A:FA:14:44:64:D4:7B:B1:E2:CB:2B:A7:86:EB:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogAYZIx6-hREZNR7seLLK6eG67E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/Hg_LuWwF2PqnDP--QEmiR8s_JMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/83a77d-9cad-40de-abed-c4d42b7f6270/1/ogAYZIx6-hREZNR7seLLK6eG67E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.216.0/22
Signature Algorithm: sha256WithRSAEncryption
50:77:bf:3c:8e:5a:63:e9:5c:69:5c:90:e5:c5:01:71:1f:66:
42:b0:36:d7:85:99:a5:d6:c9:bf:06:ff:5d:d1:0f:31:d4:c5:
97:73:cb:c7:eb:88:c9:f7:cc:da:a3:d6:d2:5e:95:b6:ff:9b:
60:d4:89:70:af:94:16:76:1d:1d:29:74:97:73:7b:76:99:9f:
c1:79:6e:72:ae:54:61:c4:74:dc:04:3d:e6:fb:b5:df:e0:08:
90:97:a3:98:da:c8:17:65:e4:8c:8b:e7:cb:13:10:a7:ee:91:
de:d1:04:d4:c5:80:39:69:81:a0:00:a1:cd:59:ef:2a:ed:f0:
f7:4f:a1:1e:b7:ce:96:d0:63:78:53:47:83:a2:a7:c8:c3:f4:
be:14:31:fc:3e:dd:5a:89:0e:35:50:17:65:d3:56:34:03:ae:
77:f2:72:4c:e4:11:35:eb:33:65:f7:a4:3c:be:b2:ee:52:18:
b2:3a:ef:58:cc:e1:e3:e6:67:b4:40:fb:0c:39:e6:a6:a5:c5:
c4:c2:23:54:a5:7b:c3:36:8d:ba:b5:d4:1b:24:28:ae:0b:a0:
28:ea:4b:92:bd:7a:bd:26:e7:1d:0b:37:2a:89:93:d0:cc:2f:
9f:ee:c3:4b:1a:3d:61:51:de:22:21:c9:70:f6:eb:81:d6:00:
37:e0:21:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:18 2025 by rpki-client on console.sobornost.net