Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/HSIGTUT73FiVRmJ6_AThpubXSVc.roa
File: HSIGTUT73FiVRmJ6_AThpubXSVc.roa (raw, json)
Hash identifier: aGE48Goq8RLz/6w/MoamvMKq+xzhif3OaHm6vac/wiA=
Subject key identifier: 1D:22:06:4D:44:FB:DC:58:95:46:62:7A:FC:04:E1:A6:E6:D7:49:57
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 019427B59B4E2A40B478728CE22A0E294014
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/HSIGTUT73FiVRmJ6_AThpubXSVc.roa
Signing time: Thu 02 Jan 2025 15:50:00 +0000
ROA not before: Thu 02 Jan 2025 15:50:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34866
IP address blocks: 146.185.254.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:9b:4e:2a:40:b4:78:72:8c:e2:2a:0e:29:40:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 15:50:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d22064d44fbdc589546627afc04e1a6e6d74957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3f:14:a6:3b:e7:73:fa:de:4c:98:7e:6b:56:
8a:83:fd:c3:f5:c1:d2:5b:82:aa:31:f5:72:f3:3c:
e2:c7:ad:59:45:b7:f9:5e:d6:6d:a0:b4:0c:44:b7:
e0:07:02:08:cc:fb:b4:68:b2:36:64:f4:4b:15:66:
c3:f3:92:35:67:7f:1d:43:99:00:a2:63:55:97:f8:
04:af:cc:b4:5c:01:9f:5d:cc:e9:9b:d7:10:1f:ca:
98:82:7a:2d:f5:b4:30:2c:70:09:01:d3:af:db:3e:
b3:ef:9d:d0:b6:9b:53:b7:df:ae:cf:aa:cf:dc:ea:
0e:59:50:13:cc:86:43:6c:cd:1b:10:1a:64:9e:89:
1e:eb:ac:dc:30:5a:b5:76:00:89:41:e8:2c:14:67:
dd:d9:85:38:c5:11:73:9f:d8:b0:3a:cc:c2:d4:f1:
9f:b5:ea:5e:b9:45:d0:48:68:ae:c0:93:1f:9e:25:
1c:8c:da:65:fb:3d:e8:a9:c9:a7:59:19:19:de:c2:
aa:93:a2:29:cc:67:27:cf:b9:24:95:0b:1e:55:b8:
e6:7b:56:c2:46:33:b7:66:40:ed:60:9f:83:e4:b2:
da:bb:3c:25:85:83:31:6f:22:47:bd:ea:e4:1d:07:
b4:73:2d:34:75:93:b8:4e:62:0c:fa:98:35:2c:4d:
19:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:22:06:4D:44:FB:DC:58:95:46:62:7A:FC:04:E1:A6:E6:D7:49:57
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/HSIGTUT73FiVRmJ6_AThpubXSVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.185.254.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:5f:38:85:bf:b1:51:c7:10:5f:59:9a:41:ae:e0:78:25:d8:
26:61:b9:a8:ab:7e:3a:82:c4:41:66:22:48:bd:f5:dd:a8:0c:
ae:44:c0:9f:b6:9b:27:fc:b8:23:fe:26:e5:ae:43:0b:29:1e:
3f:f2:a4:ad:85:14:3a:9c:2d:be:6b:da:08:e3:fb:1e:e1:c5:
25:03:63:1a:47:db:5d:2e:1a:62:f0:56:ab:a1:c7:1b:a5:8d:
18:13:5d:29:58:cd:16:26:3e:93:5b:b7:86:e4:7b:54:85:1c:
c3:e1:f5:1b:7c:6c:51:a4:de:13:58:c7:65:21:8b:65:ef:d7:
c0:83:55:ad:c9:70:13:3a:4f:fb:8d:6b:c7:eb:02:f6:b1:be:
95:5f:02:ab:e9:ae:a1:5c:1a:5e:54:6b:86:3f:e9:db:c5:b8:
5b:33:59:f7:3c:98:fd:b5:ea:91:41:0d:12:bb:57:8d:11:5a:
79:90:b4:b2:0c:7a:bb:49:7c:d4:f9:a0:bd:64:f4:f1:7d:2c:
dd:1f:c0:f8:02:31:8c:23:55:3e:31:61:b7:b7:ff:e9:3b:57:
8c:14:ec:e5:23:e8:c0:b5:9d:3e:75:92:dd:59:fd:68:4e:99:
10:fe:19:4c:bb:df:1d:cf:a5:17:84:99:30:2c:81:a3:87:ef:
3a:2b:44:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:26:44 2025 by rpki-client