Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/b8fc55-b4cd-4d1f-9990-47ac389d3261/1/hc-dHi0cM316JTuDlNnq2KmbUNo.roa
File: hc-dHi0cM316JTuDlNnq2KmbUNo.roa (raw, json)
Hash identifier: zHI069B+I2NkTOzUM8TBceeTh+HSUCWiu/cOwCbVUbM=
Subject key identifier: 85:CF:9D:1E:2D:1C:33:7D:7A:25:3B:83:94:D9:EA:D8:A9:9B:50:DA
Certificate issuer: /CN=ff711054a89446a76f493ce2c127a948eba4a8ff
Certificate serial: 01913AF4C1CD9275E2E3FEC00861F567D225
Authority key identifier: FF:71:10:54:A8:94:46:A7:6F:49:3C:E2:C1:27:A9:48:EB:A4:A8:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_3EQVKiURqdvSTziwSepSOukqP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/b8fc55-b4cd-4d1f-9990-47ac389d3261/1/hc-dHi0cM316JTuDlNnq2KmbUNo.roa
Signing time: Sat 10 Aug 2024 06:23:24 +0000
ROA not before: Sat 10 Aug 2024 06:23:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7488
IP address blocks: 185.170.76.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3a:f4:c1:cd:92:75:e2:e3:fe:c0:08:61:f5:67:d2:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff711054a89446a76f493ce2c127a948eba4a8ff
Validity
Not Before: Aug 10 06:23:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=85cf9d1e2d1c337d7a253b8394d9ead8a99b50da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e4:8e:b1:0d:1f:02:c3:29:a6:46:cf:80:ff:
ce:fc:9e:9b:3f:bb:61:99:18:bc:02:de:97:d0:f8:
74:06:42:69:cf:7c:59:23:f6:3f:33:57:7d:9b:ed:
8d:96:5e:a5:4a:5f:2f:73:3b:47:02:3b:0b:d6:d6:
c2:5d:91:f3:43:35:5d:c7:5c:e3:fa:6b:39:39:e1:
5f:22:54:31:c9:b6:bf:62:c1:8a:fc:cf:c1:1d:f5:
68:f3:87:b8:ad:66:a3:11:c1:78:8d:95:61:df:c5:
8d:ed:84:c5:a0:9e:c7:5d:1a:4e:08:7b:f4:e8:02:
b5:de:9f:c9:7c:ab:d3:cd:5f:c1:78:7e:36:98:d4:
fb:d6:e0:4e:d6:1a:bf:e1:a6:7b:a2:7a:0a:9e:2d:
8e:13:d2:9d:9a:d1:c9:e1:a8:15:fe:22:c1:44:74:
50:f2:8f:65:02:7a:d4:bf:7e:fb:b2:25:10:24:8a:
6b:99:27:3a:37:25:46:fd:30:68:cc:7a:0b:21:52:
98:bb:6a:7e:c5:3d:89:67:74:f9:c4:6e:84:0e:66:
aa:c2:6c:46:16:99:7e:96:96:99:87:44:03:c5:e4:
2d:86:34:a9:2e:1e:bd:74:4d:75:21:80:b0:8b:e4:
10:93:b5:35:e9:d4:6e:9b:92:15:7c:b3:1d:6d:33:
44:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:CF:9D:1E:2D:1C:33:7D:7A:25:3B:83:94:D9:EA:D8:A9:9B:50:DA
X509v3 Authority Key Identifier:
keyid:FF:71:10:54:A8:94:46:A7:6F:49:3C:E2:C1:27:A9:48:EB:A4:A8:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_3EQVKiURqdvSTziwSepSOukqP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b8fc55-b4cd-4d1f-9990-47ac389d3261/1/hc-dHi0cM316JTuDlNnq2KmbUNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/b8fc55-b4cd-4d1f-9990-47ac389d3261/1/_3EQVKiURqdvSTziwSepSOukqP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.76.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:72:6c:23:3d:41:11:4a:2e:56:35:b5:ab:14:89:ab:c8:13:
e3:18:1e:94:48:03:5c:97:4f:a3:a9:0c:50:f3:12:e0:a8:d2:
06:56:04:c9:81:14:a9:5d:bf:a4:13:25:09:fa:35:92:6a:44:
89:0d:75:43:16:37:9a:8d:dd:39:71:ca:0a:61:ac:52:0c:84:
00:0f:f1:13:01:1e:bc:01:c7:55:a5:18:ef:e1:0c:5d:f7:4d:
c1:1a:30:56:9f:b6:0d:65:f5:cf:ac:32:63:9a:f4:fd:b8:0d:
18:8c:56:29:20:26:91:13:32:f5:fb:1b:5c:d1:70:91:3e:43:
df:a3:51:05:06:1f:21:6b:80:1d:0e:d4:15:b8:25:10:0a:d0:
fa:a3:ce:18:bb:30:b6:cd:ad:ac:73:b2:b1:9a:39:1c:f9:b5:
17:39:b9:91:f9:71:10:79:5d:0e:71:08:99:cc:48:8d:46:1b:
e3:f0:85:72:b6:3a:e9:a3:a6:41:be:e0:7e:e3:2e:8f:5d:cf:
db:86:48:48:30:fa:2e:c1:68:57:24:ac:55:15:dd:12:1d:01:
6f:dd:68:22:bf:9f:cf:26:00:a7:3e:eb:cd:85:4a:47:20:71:
bd:c3:38:8c:89:ef:ea:26:b2:e0:c7:a5:cb:f3:fe:9a:92:69:
ea:a2:73:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 06:13:22 2024 by rpki-client on console.sobornost.net