Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/24000c-b5d2-48dc-b959-e95a2496157e/1/hGYvey0NL7kedoZnW8NGK9NdHUE.roa
File: hGYvey0NL7kedoZnW8NGK9NdHUE.roa (raw, json)
Hash identifier: j/gjt7b1AkCBiDU1S/YvmfcXT2lTvik+0pgkIhPCV+w=
Subject key identifier: 84:66:2F:7B:2D:0D:2F:B9:1E:76:86:67:5B:C3:46:2B:D3:5D:1D:41
Certificate issuer: /CN=2f7a32c737ac307807476a697b0baf6b9004568e
Certificate serial: 019423D75A87600C3462DA6932DF1E25F405
Authority key identifier: 2F:7A:32:C7:37:AC:30:78:07:47:6A:69:7B:0B:AF:6B:90:04:56:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L3oyxzesMHgHR2ppewuva5AEVo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/24000c-b5d2-48dc-b959-e95a2496157e/1/hGYvey0NL7kedoZnW8NGK9NdHUE.roa
Signing time: Wed 01 Jan 2025 21:48:23 +0000
ROA not before: Wed 01 Jan 2025 21:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198504
IP address blocks: 195.94.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:5a:87:60:0c:34:62:da:69:32:df:1e:25:f4:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f7a32c737ac307807476a697b0baf6b9004568e
Validity
Not Before: Jan 1 21:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=84662f7b2d0d2fb91e7686675bc3462bd35d1d41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f4:6f:55:e1:73:b2:c0:b4:b1:68:5e:e8:8a:
19:f4:1f:14:58:d6:ef:65:83:30:57:c4:fb:5f:c4:
d7:7d:0b:5a:c7:90:ee:7c:ae:40:fa:27:61:ac:83:
63:2d:89:fa:ba:37:ba:15:a0:ce:4a:78:44:1b:17:
80:50:34:e3:bb:4d:33:70:1c:c4:be:eb:93:3c:8c:
8a:84:06:83:e7:32:db:a2:8c:57:6c:43:37:37:a0:
90:01:57:ba:15:7b:c1:ee:23:ec:3a:4e:86:06:25:
ee:bc:50:9d:c7:c3:f8:04:c2:0b:c1:6c:96:00:9a:
19:4f:c3:e0:5a:4a:10:67:a0:77:73:36:3f:67:05:
fd:f1:5b:93:28:04:3f:61:50:89:cb:ad:04:58:4a:
23:da:11:b0:3d:fa:a7:31:91:26:8a:2d:0c:39:bb:
17:11:56:2c:c5:21:6c:61:d9:9e:ea:9e:25:b0:de:
9f:0e:16:19:0e:75:d4:61:11:e6:f9:5e:14:d2:4d:
e9:6f:05:ab:96:6d:0b:85:eb:9b:31:21:20:0e:2e:
cf:1f:fc:6f:eb:48:ca:38:47:88:96:65:a7:12:dc:
39:c5:b5:62:fa:cb:4f:64:92:f2:58:0d:9c:5d:c3:
58:be:fc:93:73:23:82:61:27:f8:15:d5:d7:03:71:
ab:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:66:2F:7B:2D:0D:2F:B9:1E:76:86:67:5B:C3:46:2B:D3:5D:1D:41
X509v3 Authority Key Identifier:
keyid:2F:7A:32:C7:37:AC:30:78:07:47:6A:69:7B:0B:AF:6B:90:04:56:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L3oyxzesMHgHR2ppewuva5AEVo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/24000c-b5d2-48dc-b959-e95a2496157e/1/hGYvey0NL7kedoZnW8NGK9NdHUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/24000c-b5d2-48dc-b959-e95a2496157e/1/L3oyxzesMHgHR2ppewuva5AEVo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.94.26.0/24
Signature Algorithm: sha256WithRSAEncryption
18:53:61:a0:6c:d6:19:dd:a0:05:1a:ea:82:8d:c4:07:60:22:
43:21:b1:21:77:ba:d0:a4:38:55:0e:31:cb:02:01:8a:68:97:
c4:dd:e0:e5:f1:51:68:03:80:cf:68:e8:48:63:46:41:a8:3c:
6d:06:82:63:69:f5:16:66:58:8e:76:31:f2:e1:6d:2d:b5:4c:
73:67:ee:87:9a:52:a0:b8:a9:5f:a8:cd:ad:74:62:99:7a:b7:
e6:39:34:30:5b:85:47:77:11:71:4d:db:98:40:2e:64:08:46:
cd:ef:e8:50:d2:76:2b:31:92:73:d9:4f:87:aa:dd:2d:c2:20:
98:7d:8b:7e:36:12:70:be:ae:a2:f5:bc:f7:57:4c:b2:d5:40:
d8:40:66:fd:00:a6:46:b6:23:0c:41:8b:94:d7:6c:b6:a2:79:
40:ac:50:52:48:ff:68:6d:18:9c:63:bb:3b:83:0c:14:01:9f:
32:ea:1f:d1:88:2b:ed:f5:15:47:b4:e2:21:92:62:c8:a3:ff:
e5:64:c0:9c:de:57:4f:a6:b3:5e:95:ab:2e:3c:67:5b:c8:f9:
56:a5:c2:9d:e0:97:c0:75:d3:51:78:73:30:36:0f:e3:29:2f:
f7:a4:34:7c:2c:a9:b3:a5:f3:4d:18:21:6c:68:5a:73:9d:15:
2b:c9:66:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:21:25 2025 by rpki-client