Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/HCnZ4QlNrjo4-1ShjXI6eoqgF7Q.roa
File: HCnZ4QlNrjo4-1ShjXI6eoqgF7Q.roa (raw, json)
Hash identifier: RVcqorqVBH1UK65HrDodp8HEtA0dkfr8CZIvgxvJk/w=
Subject key identifier: 1C:29:D9:E1:09:4D:AE:3A:38:FB:54:A1:8D:72:3A:7A:8A:A0:17:B4
Certificate issuer: /CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Certificate serial: 01961411C073D617B1EE49625F0912D2E875
Authority key identifier: 29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/HCnZ4QlNrjo4-1ShjXI6eoqgF7Q.roa
Signing time: Tue 08 Apr 2025 06:23:49 +0000
ROA not before: Tue 08 Apr 2025 06:23:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 21840
IP address blocks: 185.19.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:11:c0:73:d6:17:b1:ee:49:62:5f:09:12:d2:e8:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Validity
Not Before: Apr 8 06:23:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c29d9e1094dae3a38fb54a18d723a7a8aa017b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4f:42:21:e2:60:cc:b6:ec:d5:1e:e4:72:e9:
99:1f:58:30:a1:89:f6:c7:1f:93:b5:39:fe:87:e8:
49:16:6c:ff:68:da:6f:dd:8b:17:4a:9b:c3:55:ca:
a9:0a:c8:70:79:a9:d8:ca:ac:df:52:c0:9a:0f:b2:
d6:a8:e1:c4:50:a9:3d:d6:51:9c:00:1d:45:f4:90:
91:1b:f6:fd:f7:23:15:f8:37:11:64:0f:74:a5:de:
6c:18:d3:00:a9:ce:00:97:5f:b9:e0:79:db:10:1d:
5b:e6:82:c9:56:be:29:0e:06:00:03:82:5c:45:f7:
c0:8b:ed:71:ad:60:56:82:3b:ec:e6:a4:85:49:05:
f3:4b:40:87:7f:71:da:32:bc:e0:5e:67:f4:bf:dc:
06:a8:58:ea:57:fd:06:e8:33:5e:fc:42:5c:fe:b1:
82:60:bb:16:aa:4f:9d:13:98:c8:7f:97:ca:75:95:
3e:2c:c2:74:91:b7:97:44:b3:17:96:c8:87:0f:27:
08:7b:5d:5f:fd:02:f1:22:33:32:6b:0b:3e:8d:48:
ff:76:e3:1b:7e:5a:1a:9c:3a:e9:c7:97:f1:b4:a4:
b2:f8:46:ff:8c:1a:a9:7b:65:db:c0:c1:df:1b:25:
e0:4f:c8:77:8f:16:d4:77:86:63:3b:00:6b:25:11:
de:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:29:D9:E1:09:4D:AE:3A:38:FB:54:A1:8D:72:3A:7A:8A:A0:17:B4
X509v3 Authority Key Identifier:
keyid:29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/HCnZ4QlNrjo4-1ShjXI6eoqgF7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.34.0/24
Signature Algorithm: sha256WithRSAEncryption
09:db:bc:a7:38:e4:08:a3:b5:1a:74:db:f3:23:15:2d:4e:50:
04:4d:88:8e:10:72:02:56:7a:2c:49:0f:4e:fd:c2:63:a2:f2:
2a:46:9f:fa:30:b6:02:b7:de:ee:a5:3e:2f:f6:a5:41:25:bc:
30:31:55:89:05:40:03:3e:91:47:4a:e7:d8:4c:bb:59:7e:6c:
92:81:fa:7d:d7:a8:b5:ce:73:0a:a9:dc:62:91:61:af:f0:69:
c8:e0:c6:f0:95:9f:a1:00:64:43:1c:6d:8a:26:61:a2:9d:66:
d2:a3:0d:d8:26:f5:d5:54:cd:df:22:c6:9f:e5:82:1b:56:68:
6a:b5:08:86:6a:d4:7e:ef:6c:45:81:10:58:2a:8e:0d:13:59:
3e:29:b9:e5:04:66:03:ec:19:91:9f:50:ff:d4:92:21:e9:a4:
a6:8e:51:38:41:ad:6b:61:28:b4:c6:94:83:9f:b0:43:f6:c4:
1a:f9:7e:4a:e7:a3:0b:56:09:51:a4:18:31:d4:d7:4a:24:66:
59:cf:40:7f:3c:17:11:cc:d3:57:f9:2e:2d:9a:e0:68:bf:c3:
f2:b1:b2:04:5b:2a:88:e0:f7:89:11:bf:65:b4:01:c4:66:3e:
bc:d6:75:24:9e:43:a6:fd:8b:ca:b7:93:40:e8:e6:2e:f9:2d:
9f:97:78:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:45 2025 by rpki-client on console.sobornost.net