Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/5c3b99-b8ef-4ed1-857c-b65cd136262e/1/hwiO597jiOerCy1jD6kKNf_z4mE.roa
File: hwiO597jiOerCy1jD6kKNf_z4mE.roa (raw, json)
Hash identifier: At2Ig8rywEMbpAnMXYd8IjR4QLHdmR+nptBnEkQohjg=
Subject key identifier: 87:08:8E:E7:DE:E3:88:E7:AB:0B:2D:63:0F:A9:0A:35:FF:F3:E2:61
Certificate issuer: /CN=f1f186e97097c8417d9437d70cfdfc527331b5a8
Certificate serial: 0194266BD0CD02000F6473368E1C44070504
Authority key identifier: F1:F1:86:E9:70:97:C8:41:7D:94:37:D7:0C:FD:FC:52:73:31:B5:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8fGG6XCXyEF9lDfXDP38UnMxtag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/5c3b99-b8ef-4ed1-857c-b65cd136262e/1/hwiO597jiOerCy1jD6kKNf_z4mE.roa
Signing time: Thu 02 Jan 2025 09:49:47 +0000
ROA not before: Thu 02 Jan 2025 09:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39183
IP address blocks: 185.252.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:d0:cd:02:00:0f:64:73:36:8e:1c:44:07:05:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1f186e97097c8417d9437d70cfdfc527331b5a8
Validity
Not Before: Jan 2 09:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=87088ee7dee388e7ab0b2d630fa90a35fff3e261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:da:10:69:b3:13:c6:7a:f7:94:c9:c3:0a:2d:
f6:c0:59:c7:ed:40:dd:be:a4:8a:e0:bb:52:cb:72:
4d:cd:98:b0:ba:81:13:33:a2:f1:de:35:06:3e:a1:
13:fe:bb:9d:15:c5:bd:95:31:85:af:3f:ba:b3:09:
8e:48:74:9c:6d:27:41:71:eb:64:a1:f8:a4:2f:99:
6a:75:51:73:1c:32:81:3e:9e:de:9f:85:09:eb:b7:
c3:a1:43:71:84:17:a8:aa:ec:6b:09:be:36:41:37:
2f:e2:0b:b0:16:fd:12:d7:05:f3:91:2b:61:b0:c8:
91:de:09:62:c0:e8:89:6d:4a:a3:d6:7f:51:e0:33:
f1:89:3f:b5:0a:dd:93:1d:5b:e8:37:62:8b:13:2f:
c0:62:7c:e2:a0:10:e1:ac:2d:a8:24:1f:f1:e4:db:
c9:f9:65:07:6f:47:fa:7a:5b:0e:22:4c:27:11:4d:
34:c2:f9:1a:d0:9e:d9:ff:4d:1d:b8:29:84:75:e4:
0c:a9:2a:07:82:71:95:d5:2f:45:d5:ed:d3:25:77:
60:cc:72:4c:39:d2:4b:a5:f8:1d:5a:54:e2:93:98:
65:a5:0a:a4:a4:d8:18:85:de:3a:8e:c8:39:68:36:
1b:bb:b0:d5:f8:8a:c0:c1:27:2b:a4:27:6a:16:17:
cb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:08:8E:E7:DE:E3:88:E7:AB:0B:2D:63:0F:A9:0A:35:FF:F3:E2:61
X509v3 Authority Key Identifier:
keyid:F1:F1:86:E9:70:97:C8:41:7D:94:37:D7:0C:FD:FC:52:73:31:B5:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8fGG6XCXyEF9lDfXDP38UnMxtag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5c3b99-b8ef-4ed1-857c-b65cd136262e/1/hwiO597jiOerCy1jD6kKNf_z4mE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5c3b99-b8ef-4ed1-857c-b65cd136262e/1/8fGG6XCXyEF9lDfXDP38UnMxtag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.20.0/24
Signature Algorithm: sha256WithRSAEncryption
77:db:03:50:20:e3:cc:14:1d:5c:8c:8a:18:84:0b:7b:9f:74:
d1:c8:3f:bb:a8:1c:6b:41:7b:a1:29:5f:49:c3:09:aa:3a:4b:
a6:02:6f:3c:46:ca:29:e6:64:53:62:d2:85:69:1b:5e:c0:08:
6e:dc:60:4a:d8:de:52:60:e3:5d:f0:12:ce:af:ff:99:45:6a:
bd:30:7e:4e:63:51:f3:9b:1c:22:1f:73:15:b3:61:77:04:62:
88:69:fb:4d:d2:82:81:2b:5e:a0:98:f7:9d:be:c9:67:74:57:
0e:3d:b1:45:71:12:c4:9a:86:d2:b8:32:24:13:01:70:b5:c7:
3b:ca:bc:69:df:22:94:30:e0:94:3a:8b:94:5c:9b:6e:70:45:
cf:6d:08:41:da:f4:f0:d7:64:22:b2:c9:c3:10:45:8b:6b:d2:
a7:6e:d5:0f:6f:de:ad:8a:1d:73:09:4f:55:df:a7:58:df:98:
d7:6e:3c:a1:cc:30:15:13:bf:77:31:55:cf:d2:d5:f9:23:dc:
ce:1e:31:fb:31:e7:3b:0d:4f:9a:5d:dc:ea:f4:a7:6a:27:a2:
78:00:c4:df:af:25:95:d3:34:5a:63:4f:2e:98:8c:91:e0:f5:
1e:b7:32:ee:f7:cf:ec:85:9c:39:4f:be:8e:7b:98:04:9e:79:
d6:f6:70:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:05 2025 by rpki-client on console.sobornost.net