Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/36715a-32fc-4e9f-a577-5ac74dba17b8/1/HJuvWWI1qAqft10oKlJtZleuo2g.roa
File: HJuvWWI1qAqft10oKlJtZleuo2g.roa (raw, json)
Hash identifier: u8HfwrfCCFHcB5jvs7dyE9ffRxdRXb4g1HqA18Sf8YE=
Subject key identifier: 1C:9B:AF:59:62:35:A8:0A:9F:B7:5D:28:2A:52:6D:66:57:AE:A3:68
Certificate issuer: /CN=456ecb3be1065e1e71589508bec6d74b5a7b1ed7
Certificate serial: 01942748928F73D6D7F3B2FD36F379267F85
Authority key identifier: 45:6E:CB:3B:E1:06:5E:1E:71:58:95:08:BE:C6:D7:4B:5A:7B:1E:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RW7LO-EGXh5xWJUIvsbXS1p7Htc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/36715a-32fc-4e9f-a577-5ac74dba17b8/1/HJuvWWI1qAqft10oKlJtZleuo2g.roa
Signing time: Thu 02 Jan 2025 13:50:55 +0000
ROA not before: Thu 02 Jan 2025 13:50:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 196921
IP address blocks: 94.187.165.0/24 maxlen: 24
94.187.166.0/24 maxlen: 24
94.187.167.0/24 maxlen: 24
94.187.168.0/21 maxlen: 21
94.187.168.0/22 maxlen: 22
94.187.171.0/24 maxlen: 24
94.187.172.0/24 maxlen: 24
94.187.173.0/24 maxlen: 24
94.187.174.0/24 maxlen: 24
94.187.175.0/24 maxlen: 24
94.187.176.0/21 maxlen: 21
94.187.176.0/24 maxlen: 24
94.187.177.0/24 maxlen: 24
94.187.178.0/24 maxlen: 24
94.187.179.0/24 maxlen: 24
94.187.180.0/24 maxlen: 24
94.187.181.0/24 maxlen: 24
94.187.182.0/24 maxlen: 24
94.187.183.0/24 maxlen: 24
94.187.184.0/21 maxlen: 21
94.187.184.0/23 maxlen: 23
94.187.187.0/24 maxlen: 24
94.187.190.0/24 maxlen: 24
94.187.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:92:8f:73:d6:d7:f3:b2:fd:36:f3:79:26:7f:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=456ecb3be1065e1e71589508bec6d74b5a7b1ed7
Validity
Not Before: Jan 2 13:50:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c9baf596235a80a9fb75d282a526d6657aea368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:21:62:f8:06:65:57:0d:3c:88:52:32:43:36:
3d:1f:d6:19:25:15:62:b9:7e:db:fe:59:77:dc:07:
61:93:b7:15:c1:1f:25:0a:de:5e:0d:de:fe:d4:58:
69:2a:3c:9a:8d:a3:33:13:fc:1a:9b:53:24:75:b8:
b9:c0:c9:06:69:e0:5c:20:74:6b:e7:c9:83:8a:6a:
51:b8:79:b6:1e:c3:be:35:aa:7e:a3:09:12:95:db:
df:0f:86:d6:29:6d:9c:0a:51:3a:3e:3b:db:8c:74:
b6:81:fa:53:e6:27:b2:81:64:f3:96:e3:28:e9:ee:
39:12:3a:17:56:b3:89:88:de:39:27:0c:a9:df:6d:
1b:a8:50:26:17:12:ce:a5:2a:11:b8:58:a5:af:55:
70:5e:de:07:d9:02:c4:6a:ad:fa:b4:a7:13:1a:2d:
c2:12:0f:cd:f0:4f:51:1c:d2:41:c3:78:15:5e:ad:
c1:ad:8c:0d:8b:47:58:2b:03:49:07:ad:e0:9f:df:
ec:84:0c:83:64:d1:a5:88:36:75:86:a3:48:2d:55:
33:15:ab:07:a7:e5:f3:7a:86:07:6b:1f:b9:1c:d4:
63:06:21:d5:fa:df:59:42:17:5a:62:d8:f1:f6:c5:
0e:a7:39:d8:fb:77:62:99:45:35:e7:e4:7a:97:35:
a5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9B:AF:59:62:35:A8:0A:9F:B7:5D:28:2A:52:6D:66:57:AE:A3:68
X509v3 Authority Key Identifier:
keyid:45:6E:CB:3B:E1:06:5E:1E:71:58:95:08:BE:C6:D7:4B:5A:7B:1E:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RW7LO-EGXh5xWJUIvsbXS1p7Htc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/36715a-32fc-4e9f-a577-5ac74dba17b8/1/HJuvWWI1qAqft10oKlJtZleuo2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/36715a-32fc-4e9f-a577-5ac74dba17b8/1/RW7LO-EGXh5xWJUIvsbXS1p7Htc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.187.165.0-94.187.191.255
Signature Algorithm: sha256WithRSAEncryption
86:e7:49:0e:96:9a:5c:ba:b6:b6:01:a5:11:78:ca:4b:05:23:
ee:86:d0:6c:55:2d:e8:29:1e:27:03:79:f0:e5:44:28:8f:86:
d1:d1:5f:a6:7b:25:c4:40:dd:29:97:32:36:97:41:72:b8:24:
92:0d:91:a7:33:53:70:20:7a:61:27:18:bf:b0:00:b6:35:fd:
cb:04:39:c6:a9:70:09:38:cd:cc:72:3d:5a:37:a3:63:3c:27:
6e:ba:7d:6d:e9:88:51:36:e7:7a:78:04:c0:bb:a0:dc:ae:72:
be:0b:7f:be:bb:28:d2:56:90:99:09:53:6b:7b:86:ff:71:92:
cd:38:a2:cb:d5:8e:52:ab:19:d5:04:51:c0:dc:3c:61:22:6b:
d3:b1:87:f3:75:e2:68:2d:78:45:ab:9e:f6:ed:d5:3a:c3:ff:
b5:89:e7:07:c5:e3:23:df:17:96:9a:5f:af:bb:ed:8c:d8:06:
9f:a4:9d:2b:76:b7:d5:19:41:02:c3:1a:c7:5a:62:24:bd:cd:
5c:f1:be:2b:3e:42:90:d3:ec:37:fc:84:65:85:c1:39:50:64:
53:1e:a9:3e:98:47:6c:bf:2c:71:c4:1e:fc:95:95:07:df:19:
ad:8a:77:da:37:67:fd:70:d4:80:61:2b:08:5e:ba:08:78:6b:
42:f8:5e:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:47:00 2025 by rpki-client