Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/331659-30ca-4a88-a26c-440848c0cf71/1/HwPSOEXYPBj2vOQj-AxA63yKh6U.roa
File: HwPSOEXYPBj2vOQj-AxA63yKh6U.roa (raw, json)
Hash identifier: QihdD7hiltGxaPAqAq5VQH3PetWGuexWN5ntvfVrmtM=
Subject key identifier: 1F:03:D2:38:45:D8:3C:18:F6:BC:E4:23:F8:0C:40:EB:7C:8A:87:A5
Certificate issuer: /CN=81724e7b0cb233ae7e7f2eb3766959fc6827fb1b
Certificate serial: 14F116BC
Authority key identifier: 81:72:4E:7B:0C:B2:33:AE:7E:7F:2E:B3:76:69:59:FC:68:27:FB:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gXJOewyyM65-fy6zdmlZ_Ggn-xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/331659-30ca-4a88-a26c-440848c0cf71/1/HwPSOEXYPBj2vOQj-AxA63yKh6U.roa
Signing time: Thu 24 Feb 2022 15:16:36 +0000
ROA not before: Thu 24 Feb 2022 15:16:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 185.14.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351344316 (0x14f116bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81724e7b0cb233ae7e7f2eb3766959fc6827fb1b
Validity
Not Before: Feb 24 15:16:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f03d23845d83c18f6bce423f80c40eb7c8a87a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a2:e1:1d:75:4d:21:91:92:7c:a3:f5:39:94:
f2:df:ad:e2:e1:4a:0b:6f:d1:58:69:8b:4d:4c:f5:
23:ec:d1:ca:55:03:26:58:c5:db:bc:81:3e:80:75:
cc:51:e8:67:a2:a4:c4:ff:d0:7c:e1:ae:a3:2f:a6:
09:4e:63:b4:76:06:10:4f:26:8a:d1:bb:72:d8:fd:
05:5c:41:27:3c:c3:76:6a:3c:32:08:4e:ea:f5:2e:
32:d6:84:7a:8e:9d:35:61:18:71:d3:62:02:78:3c:
27:25:5a:d6:15:1d:72:f8:fd:ea:06:89:25:59:a7:
c8:d0:50:12:92:d5:32:39:3a:33:ac:d6:bf:92:8e:
f6:10:ec:58:e7:7e:f8:06:e4:48:e1:4b:ec:13:31:
46:84:55:0e:52:3b:f4:52:7a:30:1b:bd:9c:a7:6d:
a3:c0:06:44:6a:c1:3a:10:61:89:5d:09:f3:ce:13:
64:4a:fc:30:f1:9c:66:d9:68:d6:42:b8:ac:2d:88:
4b:15:53:bd:b3:61:79:66:b9:6e:68:7b:46:d4:db:
92:4c:39:ce:ac:fb:38:41:86:fc:a7:12:31:cc:0a:
ad:c4:bb:dc:4c:30:2c:a8:20:7a:62:ae:21:67:d1:
ef:23:9a:cb:d3:3b:5c:c6:5b:42:6b:d8:6e:a1:b0:
bf:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:03:D2:38:45:D8:3C:18:F6:BC:E4:23:F8:0C:40:EB:7C:8A:87:A5
X509v3 Authority Key Identifier:
keyid:81:72:4E:7B:0C:B2:33:AE:7E:7F:2E:B3:76:69:59:FC:68:27:FB:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gXJOewyyM65-fy6zdmlZ_Ggn-xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/331659-30ca-4a88-a26c-440848c0cf71/1/HwPSOEXYPBj2vOQj-AxA63yKh6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/331659-30ca-4a88-a26c-440848c0cf71/1/gXJOewyyM65-fy6zdmlZ_Ggn-xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.172.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:1d:68:35:00:97:91:33:b2:68:d3:1b:7d:dd:a4:5d:82:82:
d4:e1:36:29:bf:26:6f:6b:37:d8:20:16:b1:d8:ee:50:b7:9e:
a0:5c:c9:d4:3a:3b:12:6b:11:d2:44:65:07:f6:ff:a0:7d:7e:
a8:c2:2f:1e:c2:e3:39:38:af:8c:01:99:a4:a5:42:fe:88:86:
22:4b:6f:cb:b9:4c:58:2e:4f:31:1f:7a:58:2c:cd:bd:d0:76:
3b:c5:11:43:af:e5:63:29:db:47:84:e7:9b:f8:7f:b1:1b:90:
de:10:4d:4e:04:57:94:07:8e:c1:d5:09:73:eb:07:c5:de:f9:
86:ad:98:73:86:d6:a4:52:91:3c:04:f0:40:bc:90:81:11:a3:
3f:fb:06:01:5b:01:7d:78:92:52:18:ae:0c:c8:ff:d8:cd:58:
ed:7e:d5:6e:73:0e:07:27:e2:83:f7:54:e0:48:76:97:f9:87:
cb:81:c5:89:14:08:7d:5b:75:c0:ea:b1:de:87:28:c0:23:b8:
33:cb:d5:00:57:58:62:24:74:82:f2:20:7a:e2:6c:bc:4a:a4:
3c:bb:f6:ce:0e:60:6b:16:31:20:cd:bf:72:3d:92:b9:08:7e:
69:ef:de:07:78:84:bc:20:b4:55:d6:4b:3f:0f:a5:d7:67:7b:
a7:3f:48:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:37 2025 by rpki-client