Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/hvCCVUZ3vm78utey9zVykeFfmZg.roa
File: hvCCVUZ3vm78utey9zVykeFfmZg.roa (raw, json)
Hash identifier: 8LKNeWR/ydRJi6I0838T1dU97Q8jY2cXv/vQVdAuDbQ=
Subject key identifier: 86:F0:82:55:46:77:BE:6E:FC:BA:D7:B2:F7:35:72:91:E1:5F:99:98
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 019424B263D8C8378C9AB98536BB5DBF4A83
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/hvCCVUZ3vm78utey9zVykeFfmZg.roa
Signing time: Thu 02 Jan 2025 01:47:38 +0000
ROA not before: Thu 02 Jan 2025 01:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201713
IP address blocks: 185.233.244.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:63:d8:c8:37:8c:9a:b9:85:36:bb:5d:bf:4a:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Jan 2 01:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86f082554677be6efcbad7b2f7357291e15f9998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b0:1b:03:75:3e:0c:10:4b:48:b2:01:ec:ee:
6e:82:de:e5:cb:46:3f:3b:26:ca:26:06:93:15:47:
60:2e:df:cf:a4:4a:7a:b6:36:f8:34:b3:3d:b5:98:
39:4c:6e:17:75:17:34:9a:fc:a3:e5:96:21:23:b3:
1c:e5:f4:4e:bd:73:8b:67:40:fa:c8:30:7e:ef:c4:
bb:98:f9:4c:eb:75:d5:68:fb:89:78:f7:54:55:cb:
48:02:e6:b4:e9:68:09:c2:0e:a3:f0:64:d2:e1:93:
72:ce:95:2a:9d:fd:da:06:62:ff:d4:e4:f1:b2:47:
e2:26:d7:a7:2f:89:80:fb:0d:9b:e0:d9:ce:dc:b8:
05:89:7f:75:7d:9d:2e:b6:7c:9f:7e:42:45:30:c1:
3d:cf:3c:ac:d1:a5:c6:24:7f:1a:4c:e1:8f:b1:6a:
a2:2a:65:42:3d:99:e2:31:a0:52:99:82:49:28:18:
20:45:85:3f:de:6c:d7:54:7f:78:ee:23:39:29:bf:
a9:4c:b2:d6:71:18:cb:ff:72:75:c4:06:e1:a5:cf:
15:be:45:87:8d:a1:c6:7c:78:cc:c0:70:29:f4:47:
0f:35:45:76:99:5d:58:3d:11:8b:9a:81:c4:66:27:
ad:61:37:fc:64:96:9b:39:17:e0:36:27:9e:8b:cb:
f7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F0:82:55:46:77:BE:6E:FC:BA:D7:B2:F7:35:72:91:E1:5F:99:98
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/hvCCVUZ3vm78utey9zVykeFfmZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.244.0/24
Signature Algorithm: sha256WithRSAEncryption
32:ba:ba:3c:52:c2:8a:a9:3e:64:01:e2:64:38:8d:9a:57:1a:
3e:f4:aa:85:bc:d0:f3:94:e2:e1:d0:0a:40:ab:8c:64:53:94:
7b:20:bd:5d:e8:8a:91:fe:3e:b4:18:8e:43:79:48:11:20:04:
d5:36:98:74:0b:89:f5:f7:bb:8c:e1:b9:35:20:14:fc:15:bc:
f4:24:33:6d:e9:24:4b:76:e8:b0:a2:fa:5d:44:00:93:2c:02:
44:bb:ba:cd:a5:b0:ab:33:a2:3a:2d:47:b7:17:97:ce:25:ef:
d1:80:b4:a0:4d:37:f8:67:56:41:5f:26:44:c6:3b:13:d5:a2:
a2:e8:3b:b0:b1:64:69:19:05:bd:8b:a4:6a:e8:2b:63:45:0c:
f4:e8:ab:8d:f4:7e:9d:41:08:92:64:f0:4e:0c:c8:b4:1b:6d:
8f:4a:b9:b5:ab:82:f4:f2:79:e8:c4:b2:ea:5a:9d:4e:ac:c3:
be:ab:03:74:8d:71:c2:a4:63:3e:b5:50:9d:f8:f4:8f:c4:ae:
c2:a2:85:2b:99:61:24:f5:29:bb:2a:58:49:09:14:bf:dc:89:
2a:d8:04:7d:ec:46:bd:e2:7c:6b:0a:02:7a:39:ff:e6:0f:1d:
13:dc:f4:10:19:35:8a:33:2c:2b:16:97:00:20:47:0a:ed:7e:
fc:08:ca:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:29:55 2025 by rpki-client