Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/6e5e6e-c466-4539-b704-f1797cab78d4/1/HLwpWLxfF6ZaWiv7TwnTRsyHezI.roa
File: HLwpWLxfF6ZaWiv7TwnTRsyHezI.roa (raw, json)
Hash identifier: oo1T6Bl+W4ShKynZVdWwMi9hobyq+/AfLtfACIB4unI=
Subject key identifier: 1C:BC:29:58:BC:5F:17:A6:5A:5A:2B:FB:4F:09:D3:46:CC:87:7B:32
Certificate issuer: /CN=335cd11fdbafb032534ae022abb4c8e369878a67
Certificate serial: 0183E971CC4CBF5947C14A6E515B97461755
Authority key identifier: 33:5C:D1:1F:DB:AF:B0:32:53:4A:E0:22:AB:B4:C8:E3:69:87:8A:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M1zRH9uvsDJTSuAiq7TI42mHimc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/6e5e6e-c466-4539-b704-f1797cab78d4/1/HLwpWLxfF6ZaWiv7TwnTRsyHezI.roa
Signing time: Tue 18 Oct 2022 04:54:52 +0000
ROA not before: Tue 18 Oct 2022 04:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22653
IP address blocks: 95.214.26.0/24 maxlen: 24
95.214.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e9:71:cc:4c:bf:59:47:c1:4a:6e:51:5b:97:46:17:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=335cd11fdbafb032534ae022abb4c8e369878a67
Validity
Not Before: Oct 18 04:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cbc2958bc5f17a65a5a2bfb4f09d346cc877b32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0d:e8:b9:fd:32:4b:e3:1b:03:76:da:6a:16:
79:31:aa:fe:34:16:1d:c5:1d:b4:ba:94:82:2b:93:
00:4b:94:a6:13:03:23:08:a3:15:b9:b4:91:15:55:
f9:c8:f4:60:62:91:0d:fe:ff:d9:99:76:76:be:b6:
05:eb:22:59:89:4e:9c:c6:68:b6:59:15:34:ee:b1:
84:c7:bc:29:43:4f:45:9a:21:95:61:09:6e:89:ea:
83:ca:7c:07:41:21:d3:b6:ee:ef:81:11:e6:61:2e:
32:ef:c6:56:a5:46:9b:af:41:6d:04:34:78:bd:c1:
c5:6a:70:e1:ca:73:86:ad:ce:b3:20:58:a5:ee:e5:
48:e4:9f:15:97:ac:8b:ae:e9:53:ed:b3:8b:4f:96:
df:46:df:8d:7b:ca:88:78:de:d6:bc:56:b2:19:6f:
05:35:cc:6b:5a:15:2f:be:80:70:67:31:4b:8d:50:
60:a2:12:06:bb:9d:3a:4d:dc:d0:cc:cd:93:0a:a9:
d4:88:83:f8:f4:15:6e:64:8e:3d:45:2f:2f:7e:3f:
3a:2e:ec:3d:d4:fb:58:90:53:6f:40:ff:5a:be:7c:
85:4a:bd:e3:c1:4d:bd:3c:29:90:1f:f1:11:3a:81:
b3:4d:62:48:a8:cf:a7:f7:87:0e:e2:8d:40:d0:5e:
10:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:BC:29:58:BC:5F:17:A6:5A:5A:2B:FB:4F:09:D3:46:CC:87:7B:32
X509v3 Authority Key Identifier:
keyid:33:5C:D1:1F:DB:AF:B0:32:53:4A:E0:22:AB:B4:C8:E3:69:87:8A:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M1zRH9uvsDJTSuAiq7TI42mHimc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/6e5e6e-c466-4539-b704-f1797cab78d4/1/HLwpWLxfF6ZaWiv7TwnTRsyHezI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/6e5e6e-c466-4539-b704-f1797cab78d4/1/M1zRH9uvsDJTSuAiq7TI42mHimc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.25.0-95.214.26.255
Signature Algorithm: sha256WithRSAEncryption
45:b2:3b:39:be:d5:2a:60:ae:42:5a:24:88:24:61:f5:a4:42:
01:e2:f3:1f:6c:5a:68:c6:09:e1:18:f8:dd:f2:a6:2e:c5:ae:
ac:5f:25:8d:c9:63:c8:1d:ed:93:9e:05:1a:d4:bd:e3:a2:31:
de:4f:d3:e1:f6:84:8b:8c:48:8a:e0:c8:2a:59:b1:b8:28:c4:
11:34:ff:89:4e:05:70:6a:2a:3d:25:31:d2:bf:42:54:05:96:
e0:8f:e3:04:20:9f:09:e6:1b:fc:03:5f:b1:e3:0e:96:f2:9b:
44:ad:6f:fe:55:b0:e8:10:b7:5c:f7:b6:9c:fa:f1:dc:66:70:
a4:5d:b4:99:46:65:ea:e9:86:3f:a4:9d:09:63:fc:5e:3d:7b:
94:cf:35:b7:e5:49:25:83:3b:e5:f2:c5:ad:af:be:a8:30:39:
b7:2c:b5:7f:65:13:f3:40:0d:ea:76:1b:df:c9:12:07:22:78:
2b:0f:01:bd:23:fb:b3:6d:89:ca:53:f6:94:7c:68:46:35:92:
98:f9:77:50:dc:01:94:c4:bd:57:12:13:b3:f6:81:bb:af:83:
93:e6:10:2b:3f:c3:4c:6a:51:ee:57:27:51:78:f2:a2:22:54:
ca:61:36:90:94:d2:8b:bb:cc:b8:b2:d4:1a:d8:b5:83:c1:31:
62:12:c0:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:42 2025 by rpki-client