Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/HtV3FEKPYRYDY8G-1hRWsnLwlC0.roa
File: HtV3FEKPYRYDY8G-1hRWsnLwlC0.roa (raw, json)
Hash identifier: Fe1/XdGKNSuTPZCZpZdJHVC5upZbn8MH26YO1cQpOgY=
Subject key identifier: 1E:D5:77:14:42:8F:61:16:03:63:C1:BE:D6:14:56:B2:72:F0:94:2D
Certificate issuer: /CN=0af61798dd18965c027afa7f93ae030ff5e1d76e
Certificate serial: 019423697E7A3FC2B15241F052B4CBF985D0
Authority key identifier: 0A:F6:17:98:DD:18:96:5C:02:7A:FA:7F:93:AE:03:0F:F5:E1:D7:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CvYXmN0YllwCevp_k64DD_Xh124.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/HtV3FEKPYRYDY8G-1hRWsnLwlC0.roa
Signing time: Wed 01 Jan 2025 19:48:23 +0000
ROA not before: Wed 01 Jan 2025 19:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61225
IP address blocks: 86.106.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:7e:7a:3f:c2:b1:52:41:f0:52:b4:cb:f9:85:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0af61798dd18965c027afa7f93ae030ff5e1d76e
Validity
Not Before: Jan 1 19:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1ed57714428f61160363c1bed61456b272f0942d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f2:ed:d7:9a:b6:03:b0:21:b9:2c:8a:2b:59:
13:46:66:13:a4:e4:fa:a2:27:4a:0f:bb:88:d4:23:
7b:af:de:5f:f8:99:0f:a6:73:00:ef:ab:dd:ca:27:
3d:3d:02:8e:88:cb:da:80:1d:f7:d7:17:55:ae:64:
b7:fc:6b:8a:b7:d6:5f:f2:85:8e:da:ef:5c:86:44:
39:59:77:6a:f9:c7:f4:77:ba:51:bf:55:67:46:61:
16:82:b8:a0:35:f6:2b:19:06:a9:dd:03:08:f6:0e:
62:2a:67:65:8d:da:f2:44:82:19:32:ae:15:9f:a2:
83:2f:9b:63:60:02:1b:df:9e:04:aa:02:89:d1:1a:
54:7d:4a:24:cb:34:c1:e8:db:a1:05:9d:db:fe:40:
c4:2b:a3:12:ab:b3:3e:a3:14:51:9b:02:73:51:4c:
1c:55:0e:9b:3b:96:21:dc:4f:3d:df:a1:b7:dc:2e:
16:04:50:a8:2d:eb:43:5a:4a:c5:ef:86:f0:9a:02:
7f:3f:5d:7f:c0:87:bc:b8:06:0c:b7:d8:a2:d3:ec:
27:a2:04:dc:a6:aa:92:2b:26:c5:c9:42:20:38:d8:
88:d9:02:09:00:80:a8:7b:a6:82:e7:f3:98:88:b9:
29:f7:47:83:1c:52:e7:f8:7a:7e:2b:3c:9c:00:2c:
b5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D5:77:14:42:8F:61:16:03:63:C1:BE:D6:14:56:B2:72:F0:94:2D
X509v3 Authority Key Identifier:
keyid:0A:F6:17:98:DD:18:96:5C:02:7A:FA:7F:93:AE:03:0F:F5:E1:D7:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CvYXmN0YllwCevp_k64DD_Xh124.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/HtV3FEKPYRYDY8G-1hRWsnLwlC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/615164-6d96-488a-96ba-d6e1e347f9c7/1/CvYXmN0YllwCevp_k64DD_Xh124.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.106.159.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:38:c0:4e:4d:0b:ad:2a:93:5b:25:11:6b:7b:bb:2b:9b:bb:
92:4f:b2:32:70:4b:fe:ff:27:07:2e:d1:78:19:ae:02:d1:d0:
e2:fd:5a:a6:2a:04:ca:84:f1:ba:d5:bc:0f:f8:db:7d:6c:5d:
de:04:ab:54:26:4d:c4:71:3f:81:22:2f:10:78:68:02:49:60:
7e:08:c0:09:d3:59:08:a9:e5:ab:08:61:fa:5b:5c:4f:96:55:
23:56:1e:bd:07:09:74:66:46:75:09:d9:5d:12:21:b0:9d:5a:
d5:37:9b:ed:a6:b8:e4:ac:85:73:c7:48:f7:1c:49:aa:44:d2:
1b:9d:17:ec:3e:56:5b:0b:48:45:2d:43:8c:23:a1:7c:a6:33:
bb:b8:96:a4:00:71:2d:72:f5:90:f4:6d:d8:9e:0e:d4:52:49:
60:db:dd:cc:75:96:5d:3c:34:72:0a:f5:e8:a8:ad:1c:f5:69:
61:72:cc:05:42:e9:d3:5c:69:a4:23:f0:30:e4:6c:a3:6e:8c:
c3:e5:bf:ff:ae:ab:75:9d:86:18:99:84:cf:1a:01:51:be:0b:
08:22:0c:c6:93:b1:1d:37:88:8c:f0:6f:fc:93:33:7a:48:f1:
80:33:f1:67:53:e0:3c:91:b6:43:bd:92:44:9f:f4:c8:0e:c4:
19:1e:30:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:28 2025 by rpki-client