Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/hvYT0SxQEwv0uJmu7Q6Mx-Slv80.roa
File: hvYT0SxQEwv0uJmu7Q6Mx-Slv80.roa (raw, json)
Hash identifier: mwA1boXRPTeze9WV8lW1Z/moRKk06CjDpDC/Cw5jdcg=
Subject key identifier: 86:F6:13:D1:2C:50:13:0B:F4:B8:99:AE:ED:0E:8C:C7:E4:A5:BF:CD
Certificate issuer: /CN=165f8763fb8f2e7fd2f3b93804484fab4efab9bd
Certificate serial: 018573F1A985599C3F28B39A9CA214B8CA86
Authority key identifier: 16:5F:87:63:FB:8F:2E:7F:D2:F3:B9:38:04:48:4F:AB:4E:FA:B9:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fl-HY_uPLn_S87k4BEhPq076ub0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/hvYT0SxQEwv0uJmu7Q6Mx-Slv80.roa
Signing time: Mon 02 Jan 2023 19:24:55 +0000
ROA not before: Mon 02 Jan 2023 19:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 195.64.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:f1:a9:85:59:9c:3f:28:b3:9a:9c:a2:14:b8:ca:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165f8763fb8f2e7fd2f3b93804484fab4efab9bd
Validity
Not Before: Jan 2 19:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86f613d12c50130bf4b899aeed0e8cc7e4a5bfcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bf:88:7d:a0:77:98:22:41:1b:6a:5c:79:f4:
5e:55:98:9e:cc:f3:8d:4a:53:c8:97:58:6f:f1:08:
5e:6d:e0:94:c0:ed:53:e1:87:9f:8a:80:b8:37:f2:
96:4a:4f:7e:96:ae:97:0c:48:8f:38:a0:b3:77:b6:
fe:7a:90:44:87:91:86:de:da:7e:74:ea:4f:ef:4d:
59:90:48:10:1f:a5:a6:f8:10:25:59:87:30:45:df:
9d:ef:ac:84:89:7b:4d:83:c3:54:de:f0:c1:2a:c7:
29:d9:bf:bb:5f:1b:5b:bd:22:91:bb:3c:f0:eb:5a:
5a:d9:06:e6:72:d1:4c:dc:9b:a1:d3:34:c4:9a:fd:
5d:cf:2a:c8:7a:56:47:bb:47:86:e0:81:9d:22:4c:
ad:ea:60:5a:3f:98:ca:25:a1:36:32:11:73:53:f8:
5b:21:71:9e:74:d7:e1:c7:b9:cd:b2:3e:9d:0c:3a:
33:e2:5c:a4:13:e6:8c:d5:0b:95:6b:d2:98:a5:c5:
29:99:44:88:3a:7c:d4:90:d5:57:ff:e5:a4:c6:87:
c9:43:26:60:eb:1c:89:c2:f9:21:2b:89:c0:bd:b2:
76:34:6e:40:fa:50:00:b3:d9:f3:54:51:0e:9a:ae:
a2:42:be:01:9f:7a:df:90:9d:8e:5f:4e:58:b4:72:
ea:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F6:13:D1:2C:50:13:0B:F4:B8:99:AE:ED:0E:8C:C7:E4:A5:BF:CD
X509v3 Authority Key Identifier:
keyid:16:5F:87:63:FB:8F:2E:7F:D2:F3:B9:38:04:48:4F:AB:4E:FA:B9:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fl-HY_uPLn_S87k4BEhPq076ub0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/hvYT0SxQEwv0uJmu7Q6Mx-Slv80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2da576-e416-4f3b-a2fe-97646e3957e7/1/Fl-HY_uPLn_S87k4BEhPq076ub0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:eb:91:20:a7:2d:20:1a:a3:58:db:4b:ed:f3:58:38:e6:8d:
be:56:2b:fb:cc:2b:9a:81:30:87:45:2b:be:7d:38:8a:bb:75:
ea:08:69:1a:e1:4e:1b:14:83:2b:2c:61:c3:84:3d:38:4b:fc:
2a:15:54:4c:dc:82:8f:fc:8b:ba:49:32:82:f1:2e:c1:06:92:
a7:96:f9:5e:26:7c:cf:e5:b0:e8:4c:29:59:c7:8a:8f:eb:65:
e9:10:42:dd:16:f2:0e:f0:dc:08:09:e6:4b:09:8f:7e:b6:4e:
38:64:8a:51:33:65:a8:b6:f6:0a:cd:04:c9:46:da:9e:73:32:
ac:4c:aa:b3:2c:55:12:60:d1:b8:25:fd:51:84:12:bb:a9:16:
57:b2:93:af:3f:54:77:b1:3c:e7:98:db:0b:9b:53:8a:b8:4f:
36:fa:ec:7f:85:10:5d:61:91:d6:8a:a2:26:3f:15:72:8c:6c:
74:d3:b1:d9:16:a6:4e:47:05:15:7e:6a:88:77:70:18:3d:8b:
f7:ca:3f:2a:fc:46:e6:cd:ac:ac:43:b5:d8:ed:25:33:77:37:
ed:59:05:32:00:32:86:61:45:68:ce:45:8f:18:06:6d:48:2a:
16:c7:c6:06:72:69:ed:63:c4:c2:25:2d:bd:f8:2b:33:8c:80:
fa:9c:94:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:37 2025 by rpki-client