Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/hD0ar_tHc7p3YZ1QwpI7BJcBiok.roa
File: hD0ar_tHc7p3YZ1QwpI7BJcBiok.roa (raw, json)
Hash identifier: wT7KNqysLUSBZ2MK1PEYcvNRcVleye9t9OdQ04Vtz2U=
Subject key identifier: 84:3D:1A:AF:FB:47:73:BA:77:61:9D:50:C2:92:3B:04:97:01:8A:89
Certificate issuer: /CN=758621623ac6cab8f6bde5526e7a2931d626fe8c
Certificate serial: 019422FC37BCA3E527897B3E9155E17999C2
Authority key identifier: 75:86:21:62:3A:C6:CA:B8:F6:BD:E5:52:6E:7A:29:31:D6:26:FE:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/hD0ar_tHc7p3YZ1QwpI7BJcBiok.roa
Signing time: Wed 01 Jan 2025 17:49:02 +0000
ROA not before: Wed 01 Jan 2025 17:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21385
IP address blocks: 194.88.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:37:bc:a3:e5:27:89:7b:3e:91:55:e1:79:99:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=758621623ac6cab8f6bde5526e7a2931d626fe8c
Validity
Not Before: Jan 1 17:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=843d1aaffb4773ba77619d50c2923b0497018a89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4a:aa:ae:6e:5d:66:9c:02:0c:74:8d:fe:f0:
43:52:0f:10:e1:98:b3:2c:7b:df:29:69:98:b2:34:
44:5f:36:17:d7:0e:c6:d2:b0:2c:59:64:21:dd:d2:
7b:bf:cf:9c:c0:6f:4d:fc:01:0a:03:7a:df:c4:f5:
f7:bf:73:a9:e3:18:a9:d8:19:16:2d:68:ee:64:04:
0c:53:0c:ea:8d:8a:f6:b2:ed:b1:c4:9f:5a:06:8e:
07:54:94:2b:16:e1:c2:86:fe:e1:5f:c3:57:74:c5:
34:a4:d4:08:0c:72:19:7b:31:24:66:7e:fa:86:51:
72:75:a0:07:65:42:67:4a:79:35:cb:34:b7:cf:15:
64:90:58:43:38:40:a8:6a:7e:1c:0d:69:7a:3a:37:
37:f5:9a:76:9c:8e:ac:5e:0f:80:f5:32:11:25:3a:
a5:5a:1f:1c:5e:65:72:65:75:26:0e:42:9e:a4:4f:
a3:9c:5d:26:82:53:95:52:f6:8b:6f:11:35:64:f9:
73:11:39:b6:18:b2:72:da:f7:f6:8c:0a:cb:a0:78:
68:46:76:9c:92:b2:e7:ba:a4:c4:1a:d2:a3:f1:62:
95:3e:52:29:ba:df:cc:54:2d:fc:82:ea:79:f4:88:
32:b4:3e:9e:28:06:11:f2:65:c0:de:98:b6:f6:56:
d6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:3D:1A:AF:FB:47:73:BA:77:61:9D:50:C2:92:3B:04:97:01:8A:89
X509v3 Authority Key Identifier:
keyid:75:86:21:62:3A:C6:CA:B8:F6:BD:E5:52:6E:7A:29:31:D6:26:FE:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dYYhYjrGyrj2veVSbnopMdYm_ow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/hD0ar_tHc7p3YZ1QwpI7BJcBiok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/36708b-d66b-407f-9547-f02116226a88/1/dYYhYjrGyrj2veVSbnopMdYm_ow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.10.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:93:3b:c3:3f:8a:14:af:04:ad:e5:85:9c:8e:49:00:39:36:
d1:12:eb:01:ed:67:67:6e:10:a0:e6:08:03:ad:39:15:3b:52:
14:be:78:08:e3:74:ad:d0:04:00:2e:d1:7b:cd:97:61:ff:21:
a5:d7:d2:e0:c2:ef:6e:62:c3:b8:03:70:7e:35:b0:85:a7:96:
c2:b2:e0:58:e0:11:19:cc:64:43:33:e1:5a:bc:00:94:25:dc:
cf:d2:bc:7c:30:7d:d4:a8:39:12:b2:76:39:77:92:a6:26:64:
0d:a7:da:04:39:f9:d3:bb:48:25:7d:cf:75:e2:58:6b:ad:ae:
9b:96:57:6a:df:41:33:23:1a:19:31:cd:cf:7e:b8:b0:d7:ca:
4b:eb:26:ca:c0:cf:4b:a0:96:fd:0e:ec:2d:e5:0d:92:d4:a3:
f5:27:24:21:7f:c7:42:80:c8:90:90:41:89:4a:9f:7d:ef:b1:
d8:9b:2d:37:e0:21:61:94:dc:31:42:70:89:48:b4:04:87:e9:
01:81:3f:83:62:03:1c:ec:7e:5f:ca:42:f0:7d:a2:41:b0:ed:
d7:9f:18:fd:77:c2:43:49:72:89:3e:c7:0f:2a:30:82:f6:47:
06:29:44:51:a2:fa:2b:62:24:d0:b6:44:44:f2:d8:17:76:c6:
4b:cc:85:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:27 2025 by rpki-client on console.sobornost.net