Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/HuuruuJUnyizGG7iC01ujDUd5zE.roa
File: HuuruuJUnyizGG7iC01ujDUd5zE.roa (raw, json)
Hash identifier: zJUuXbnFQXiP5Cz81qdrVSNYrr0dHAG+T0ZkZ/sUgdY=
Subject key identifier: 1E:EB:AB:BA:E2:54:9F:28:B3:18:6E:E2:0B:4D:6E:8C:35:1D:E7:31
Certificate issuer: /CN=6dc85b6788e450c054134ae8c365748b23f74267
Certificate serial: 019421B1F02636EBB0F74DB7B14BDB908932
Authority key identifier: 6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/HuuruuJUnyizGG7iC01ujDUd5zE.roa
Signing time: Wed 01 Jan 2025 11:48:16 +0000
ROA not before: Wed 01 Jan 2025 11:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199889
IP address blocks: 185.207.20.0/24 maxlen: 24
2a13:ca00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:f0:26:36:eb:b0:f7:4d:b7:b1:4b:db:90:89:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc85b6788e450c054134ae8c365748b23f74267
Validity
Not Before: Jan 1 11:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1eebabbae2549f28b3186ee20b4d6e8c351de731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:04:76:21:18:d6:bf:b0:16:3c:00:b8:46:d6:
e2:a9:09:e5:e4:61:0f:dc:4c:a6:ea:43:b0:c8:75:
c5:ac:90:af:3f:6e:e1:51:90:a8:42:23:3e:29:11:
eb:84:d6:00:36:1d:dc:90:e1:e4:8f:52:3f:92:ea:
b8:28:18:da:ed:4a:a7:23:0f:81:f7:7e:dc:8e:f3:
f6:5a:6d:5f:0c:00:4c:f0:c9:c1:5f:03:8e:d1:fe:
c3:c0:c4:a3:7c:7d:30:45:c1:45:82:31:77:63:bd:
10:37:1e:bd:67:e4:6b:f0:86:ee:06:fc:7e:3e:ec:
d6:7b:e1:e5:4f:dc:bf:45:2a:8f:40:ad:56:04:c9:
a2:04:55:64:a0:e8:af:cf:1a:26:9a:d7:55:4a:12:
15:b3:10:a3:ad:53:49:e3:93:c8:dc:7c:27:b1:9e:
40:13:f1:18:5b:b7:08:8f:58:88:04:ab:8d:a4:6d:
7c:0d:13:9d:0a:6b:ac:da:d7:ec:80:c1:9a:30:4a:
91:b0:39:ab:e1:ee:9b:0e:82:29:cf:51:14:75:53:
94:af:57:93:ae:8d:8b:7f:a8:8f:dc:21:4a:31:7a:
bc:0d:cd:49:50:ba:82:ce:05:2b:89:21:62:b8:0e:
d2:fe:9b:b5:58:ce:52:71:10:76:71:bb:1d:6a:ac:
3b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:EB:AB:BA:E2:54:9F:28:B3:18:6E:E2:0B:4D:6E:8C:35:1D:E7:31
X509v3 Authority Key Identifier:
keyid:6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/HuuruuJUnyizGG7iC01ujDUd5zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.20.0/24
IPv6:
2a13:ca00::/29
Signature Algorithm: sha256WithRSAEncryption
57:bb:54:0c:de:99:50:8e:eb:1c:83:75:d7:ef:54:d1:ff:25:
86:cc:e8:9e:06:23:99:dc:85:ff:cc:96:1a:59:d4:94:cd:9a:
4c:0d:24:30:f7:5e:f0:64:1d:a2:a6:c5:74:7b:a2:3e:0f:48:
9d:ac:2e:04:40:be:00:03:59:41:67:28:08:de:dd:47:98:ba:
f6:2d:a1:d5:fb:3d:6f:d0:4c:e9:11:05:d9:5e:38:9c:54:1e:
47:f2:a7:3a:be:5e:eb:a4:cf:c7:ff:3b:79:8d:c8:7a:89:b1:
75:bf:43:78:22:75:cd:52:e2:36:9d:0e:80:78:ab:ca:a6:5b:
2b:b9:34:7a:8f:20:31:c4:13:1a:b1:bb:fc:5f:b7:3c:51:3e:
48:4c:d2:50:b9:5c:32:7e:21:16:c1:b2:4b:48:25:3e:60:f4:
f0:24:97:cb:ca:cb:f8:ad:82:f3:a6:f2:ac:8d:d3:b4:c0:bc:
8c:d4:68:56:b0:1e:7a:d0:d0:69:52:2c:3c:09:c6:55:78:55:
b7:9f:61:15:2c:8e:1a:df:20:12:f6:c6:a7:25:8e:2a:bf:46:
f4:33:d4:d3:cd:b5:87:fa:99:d2:da:23:88:3c:73:21:4b:62:
00:14:07:8e:79:c9:97:52:22:50:b1:52:0d:f9:f2:0c:31:df:
54:ea:a1:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:30:26 2025 by rpki-client