Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/HVVJONofo563h9QMYaZ4QxaodCA.roa
File: HVVJONofo563h9QMYaZ4QxaodCA.roa (raw, json)
Hash identifier: yg/TA6SdsD3Id5UMI0b19L1T62Icbt5ojBDi7qobzgc=
Subject key identifier: 1D:55:49:38:DA:1F:A3:9E:B7:87:D4:0C:61:A6:78:43:16:A8:74:20
Certificate issuer: /CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Certificate serial: 019422FB82C5240AAD0F49ED535D09408780
Authority key identifier: 49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/HVVJONofo563h9QMYaZ4QxaodCA.roa
Signing time: Wed 01 Jan 2025 17:48:15 +0000
ROA not before: Wed 01 Jan 2025 17:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20473
IP address blocks: 185.83.113.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:82:c5:24:0a:ad:0f:49:ed:53:5d:09:40:87:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Validity
Not Before: Jan 1 17:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d554938da1fa39eb787d40c61a6784316a87420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:64:1b:44:12:1b:96:1f:58:ff:53:f5:4e:86:
f4:96:19:0f:79:32:f5:dc:4c:70:9b:22:30:e7:d9:
1d:32:03:ff:7c:4f:92:f8:f7:16:6c:ac:86:9e:ee:
f4:bd:74:1f:48:57:c4:14:ea:65:a1:2f:eb:1e:fc:
03:dd:eb:9f:06:e7:c8:85:75:40:49:b7:ff:2c:2b:
c5:39:a7:30:3a:86:db:d1:1c:85:92:89:aa:d6:b7:
7e:7f:31:84:f9:a4:de:5d:5a:00:23:e1:40:64:de:
fd:7b:e3:35:1a:5b:40:9c:9a:41:d2:4f:1d:c8:79:
31:69:cb:da:3e:6d:62:4a:6f:41:a1:32:6c:9b:27:
65:e7:d8:34:eb:bb:b6:43:b3:90:a3:d0:0b:8c:cd:
01:47:7f:2e:3c:eb:b9:d8:98:bc:57:46:76:8a:35:
40:61:72:45:6c:c5:20:ec:2a:b3:54:5c:38:e6:ca:
35:a9:24:23:fb:e3:89:cd:7b:ee:63:bc:eb:63:b8:
b6:61:4d:20:d3:90:10:ff:78:cd:d9:dd:99:f1:ef:
69:a9:94:5f:a9:06:8f:aa:45:c7:c5:49:c5:12:7a:
c1:33:43:15:da:94:51:ed:1c:ce:7c:1b:73:f3:77:
d2:dd:d0:d5:ad:41:8c:8b:09:97:17:e3:0d:cb:67:
99:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:55:49:38:DA:1F:A3:9E:B7:87:D4:0C:61:A6:78:43:16:A8:74:20
X509v3 Authority Key Identifier:
keyid:49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/HVVJONofo563h9QMYaZ4QxaodCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/Se4RlL2B0ZRsOfEPf9_fItGgMRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.113.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:01:39:b2:cd:96:65:6c:d1:25:a2:43:81:ff:70:b7:ca:f9:
bb:79:44:43:c4:4d:77:5c:6b:94:b9:8f:47:49:bc:5a:6f:27:
22:4f:e0:62:97:87:60:3f:eb:24:d2:f6:cb:4e:4e:3a:62:40:
6f:ea:69:e8:1c:75:29:22:59:43:c0:c5:50:e7:6b:7f:dc:3c:
58:83:c9:0e:86:45:47:1c:2f:3b:46:6d:45:c7:07:b7:70:a6:
78:1d:02:b5:2b:83:7d:fc:a5:82:af:72:e7:c9:d1:2d:63:5f:
ac:35:48:58:74:a8:5d:2f:58:1e:44:28:d9:21:dd:7c:69:39:
74:0d:96:f8:5e:00:fa:71:f6:01:78:f2:6a:58:97:fb:29:01:
20:50:d2:55:07:a7:83:37:c5:d8:f7:58:9a:5b:8e:44:79:c3:
53:66:53:8b:9e:ef:8f:73:d8:03:ea:d8:e1:dc:19:84:4a:01:
0d:13:33:32:28:d7:8c:e4:bb:95:b3:48:4c:e2:5a:21:a0:29:
24:20:2e:dc:e7:c0:77:8f:be:3f:9a:8d:0f:64:10:e0:90:05:
6e:ad:6b:42:1f:cc:26:f2:33:0c:43:03:53:f8:36:c7:6e:4f:
26:74:36:a0:e1:10:47:13:40:2f:9a:3a:8b:b8:6f:23:12:bc:
e5:8f:78:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:46:22 2025 by rpki-client