Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/HkqofcqL_1lJ5NoIkp7RRL5lYWk.roa
File: HkqofcqL_1lJ5NoIkp7RRL5lYWk.roa (raw, json)
Hash identifier: n65hTlS3n+pRGH4HN6qYnUuNqzTZUAAHZS79KdjutIE=
Subject key identifier: 1E:4A:A8:7D:CA:8B:FF:59:49:E4:DA:08:92:9E:D1:44:BE:65:61:69
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 0184A44462F2AB1526462D124E10B8B11B4B
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/HkqofcqL_1lJ5NoIkp7RRL5lYWk.roa
Signing time: Wed 23 Nov 2022 11:34:15 +0000
ROA not before: Wed 23 Nov 2022 11:34:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210636
IP address blocks: 45.15.208.0/23 maxlen: 23
45.15.210.0/24 maxlen: 24
45.86.190.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a4:44:62:f2:ab:15:26:46:2d:12:4e:10:b8:b1:1b:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Nov 23 11:34:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e4aa87dca8bff5949e4da08929ed144be656169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0b:b4:50:37:bc:16:9f:0e:ce:fe:44:7f:f0:
05:2d:24:25:33:77:09:aa:64:53:0e:3a:fb:14:12:
6e:90:dd:0c:78:19:ae:6e:e7:90:72:c7:e4:c7:bd:
e0:72:7a:7b:21:9f:5c:f0:31:b7:54:0c:38:ab:85:
4a:5a:44:ea:bc:c6:f9:9f:65:42:bb:0d:4f:88:11:
92:cc:5d:79:28:8c:6a:26:0b:4a:38:02:1e:73:3c:
d7:b6:11:cc:6f:75:97:1b:bd:11:47:7a:05:14:36:
f6:b3:e5:4e:65:f4:f3:82:fb:20:d6:0d:5e:20:9e:
19:30:c8:28:83:1e:4b:cd:27:01:51:db:5d:7d:fe:
78:96:6d:02:a4:dd:36:c7:90:1b:09:e2:4d:52:84:
2c:5f:25:99:37:71:f8:c4:57:3e:ed:95:44:bf:e4:
42:78:ab:bc:b2:4d:4f:a5:90:53:03:94:1e:e5:21:
f9:76:7a:a0:5b:0d:cd:bf:c4:3f:f5:96:78:e1:63:
12:81:1c:43:43:44:de:d3:60:9d:d6:b5:b8:6c:9e:
d4:da:4c:90:67:a8:36:04:2f:33:7e:1c:14:4f:6d:
13:0b:96:ca:83:63:53:a2:6d:93:ab:7e:39:20:18:
f2:ba:14:f4:2b:76:02:5f:3c:d7:b9:e4:d7:8d:d7:
86:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4A:A8:7D:CA:8B:FF:59:49:E4:DA:08:92:9E:D1:44:BE:65:61:69
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/HkqofcqL_1lJ5NoIkp7RRL5lYWk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.208.0-45.15.210.255
45.86.190.0/23
Signature Algorithm: sha256WithRSAEncryption
cb:c5:82:34:3f:b0:a8:5e:71:95:90:ce:f1:69:79:31:18:36:
ee:35:8a:2b:cc:32:09:01:ef:5d:04:cf:97:0b:c6:62:98:17:
67:68:3b:c7:84:ee:45:1a:29:df:e0:5f:ce:32:eb:b2:87:e2:
e8:13:a0:08:d9:55:0d:01:3e:28:f6:bb:2f:5d:ac:7f:3d:20:
5e:2a:26:c0:b0:c4:f5:36:ca:97:24:90:a1:cf:a7:bd:29:73:
2d:34:df:54:23:97:f3:bb:bd:8d:30:b0:81:57:ed:7f:ab:af:
a7:4b:38:d7:4b:1c:47:40:10:d4:91:5d:71:c2:2e:12:38:73:
75:c5:23:a2:80:8b:21:6a:e7:e5:ba:8b:bb:4e:81:22:ba:99:
ce:4d:13:4b:03:1b:06:2d:b4:41:9b:3a:f4:82:0e:c8:05:63:
43:af:6d:e8:0b:93:20:b7:62:19:f5:1b:c8:35:5f:ac:35:72:
68:d7:56:bf:bf:24:a0:42:eb:7b:36:44:e3:12:74:a4:66:df:
18:c7:68:af:83:52:0a:b8:34:82:26:b1:b3:d2:6c:e5:1c:53:
4e:9a:1a:15:c8:50:3f:56:6f:5a:a3:f0:ef:56:05:c6:9b:ca:
a9:11:1d:9b:47:b7:c8:9c:74:0b:69:db:b6:bf:34:83:02:b6:
a5:4d:9d:a4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:12:41 2025 by rpki-client