Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/HtyuFwumqnKPMziahbUKFS0HWi4.roa
File: HtyuFwumqnKPMziahbUKFS0HWi4.roa (raw, json)
Hash identifier: +Ry2R7+vd5notaRsVNHJudJevoZS3UrzytB191N2Lxg=
Subject key identifier: 1E:DC:AE:17:0B:A6:AA:72:8F:33:38:9A:85:B5:0A:15:2D:07:5A:2E
Certificate issuer: /CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Certificate serial: 019422FC194FA6A55577463BF9B6F59A136C
Authority key identifier: D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/HtyuFwumqnKPMziahbUKFS0HWi4.roa
Signing time: Wed 01 Jan 2025 17:48:54 +0000
ROA not before: Wed 01 Jan 2025 17:48:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209242
IP address blocks: 185.59.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:19:4f:a6:a5:55:77:46:3b:f9:b6:f5:9a:13:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Validity
Not Before: Jan 1 17:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1edcae170ba6aa728f33389a85b50a152d075a2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c7:2d:20:9c:36:67:47:ab:46:80:98:05:48:
f0:5c:ed:c7:ff:e1:df:e2:90:eb:0d:14:1f:58:ce:
98:c8:a3:16:f3:e8:35:77:30:76:03:39:ff:2c:2f:
f1:c5:ba:15:de:00:c7:f6:06:90:5e:c6:c2:2f:e9:
8e:e8:33:d2:71:37:54:53:a4:f3:7c:fd:9a:bf:b5:
c8:85:4c:c8:eb:b8:37:a5:9d:ba:05:13:60:06:ad:
2a:0c:83:7b:2c:64:88:7b:3c:0a:7e:20:25:a6:14:
c4:db:fb:4e:99:1d:f7:99:cd:f0:de:49:c2:59:a8:
b3:92:7a:90:ba:f7:bd:5e:aa:9e:ff:9a:21:c9:40:
8f:db:1f:b9:15:57:f0:9d:29:fe:9c:51:bd:61:fa:
0b:5a:1d:d4:8e:bd:08:a5:81:56:d5:fe:93:2f:35:
44:b5:f7:4a:ce:d2:8e:95:b0:68:55:71:31:73:4e:
92:e7:b9:1e:a7:c3:3a:3d:55:15:9c:2c:66:e5:08:
30:46:ab:f9:98:a1:61:45:12:9e:dd:dd:52:18:80:
ec:89:a4:49:37:05:2e:39:44:a5:6b:d6:76:a5:61:
d2:8d:27:25:80:d6:4e:fe:f7:a7:2f:47:c2:5a:86:
17:29:1b:49:78:38:d8:86:c2:70:f9:c5:a8:22:9b:
2d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DC:AE:17:0B:A6:AA:72:8F:33:38:9A:85:B5:0A:15:2D:07:5A:2E
X509v3 Authority Key Identifier:
keyid:D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/HtyuFwumqnKPMziahbUKFS0HWi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/1dHNR6U-9X67VnvIgq0phvqsXw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.218.0/24
Signature Algorithm: sha256WithRSAEncryption
00:7b:d2:09:ec:c3:5d:75:38:eb:9c:e0:0a:58:2e:c2:4f:cb:
13:6e:eb:14:22:29:f8:2a:fa:e2:a4:64:69:9c:69:69:a2:67:
17:c5:46:33:6c:fd:97:3a:2b:ba:2f:93:7f:b1:52:b4:61:18:
9c:c5:5d:6e:5a:54:06:d1:91:66:22:7f:93:11:11:0b:eb:5a:
fd:b7:6e:7b:35:ad:0e:37:dd:4c:50:49:f6:10:33:04:6b:bf:
8d:47:b8:12:01:6a:c6:bc:c5:17:fa:f8:ac:d7:69:02:7f:11:
11:c2:8b:e8:3e:b9:86:05:d6:22:01:3d:e0:a5:28:c6:85:51:
e8:10:72:99:5f:40:63:23:38:af:ab:de:6a:fb:af:e8:e3:37:
bb:94:17:93:92:a1:38:bf:20:51:05:c9:59:36:9a:b9:16:4f:
3b:75:b5:16:ed:cb:60:d7:aa:b9:8d:e5:1d:1a:28:ed:94:c5:
79:f6:46:f5:d2:70:b1:af:4f:ed:5d:83:23:dd:25:8d:9c:0e:
ca:d7:fe:c0:6d:ba:57:14:76:28:95:4c:ef:79:2d:91:30:72:
af:2f:b5:a0:92:ea:b2:1b:be:0d:e3:2c:7d:e2:e8:51:26:4a:
34:06:fe:14:92:c6:e6:6b:ab:11:e3:38:38:a0:2a:09:56:0b:
5e:33:cb:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:35:16 2025 by rpki-client