Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e7d3de-1845-41f3-907a-9e96af6d6a8f/1/hwLQQhvfkTPO9tfiU3xWDktqf98.roa
File: hwLQQhvfkTPO9tfiU3xWDktqf98.roa (raw, json)
Hash identifier: ARLJwTBnOck1jpPDB5YSuCoDfjoyKgo2AkGDb71eUiI=
Subject key identifier: 87:02:D0:42:1B:DF:91:33:CE:F6:D7:E2:53:7C:56:0E:4B:6A:7F:DF
Certificate issuer: /CN=2c8fa8533dcc820ba1ad6fb2b2f0161010531db9
Certificate serial: 01942067E8338D85C31406683317B8C1B345
Authority key identifier: 2C:8F:A8:53:3D:CC:82:0B:A1:AD:6F:B2:B2:F0:16:10:10:53:1D:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LI-oUz3MgguhrW-ysvAWEBBTHbk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e7d3de-1845-41f3-907a-9e96af6d6a8f/1/hwLQQhvfkTPO9tfiU3xWDktqf98.roa
Signing time: Wed 01 Jan 2025 05:47:48 +0000
ROA not before: Wed 01 Jan 2025 05:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8075
IP address blocks: 185.113.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:e8:33:8d:85:c3:14:06:68:33:17:b8:c1:b3:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c8fa8533dcc820ba1ad6fb2b2f0161010531db9
Validity
Not Before: Jan 1 05:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8702d0421bdf9133cef6d7e2537c560e4b6a7fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a4:18:d1:97:cb:fe:09:9b:38:21:c7:20:19:
61:4a:42:e7:fc:f1:ca:68:fd:8a:8f:69:0b:7b:01:
02:f0:6c:e7:75:41:04:39:3d:62:c8:c5:8e:59:84:
9e:97:80:e0:f0:5a:86:54:29:a4:69:a8:38:b2:f9:
13:3f:98:87:54:8e:d9:e9:ec:d5:aa:f9:40:57:b5:
f4:5b:0c:39:00:ce:a5:f9:d6:f3:43:08:e7:2e:9f:
38:4c:35:99:79:eb:dd:38:4b:3f:0f:59:10:bb:82:
84:02:42:2f:59:f3:24:7c:db:57:f4:f5:1e:1b:be:
73:19:6f:10:af:2d:51:e5:68:98:9d:60:72:c1:cf:
a0:ce:59:40:be:14:af:c3:00:11:db:25:37:ea:e4:
b7:cb:2f:5f:49:d9:84:da:3e:6d:f3:61:df:d8:f4:
0d:8a:66:42:73:1e:74:be:8f:cc:a5:cf:00:76:8d:
43:26:64:f8:b0:4d:7a:dc:b9:af:4f:26:18:71:c7:
58:b5:0a:f9:13:72:41:2c:37:ad:53:29:08:6f:85:
51:87:52:50:ee:b2:72:8f:20:25:61:07:76:7b:aa:
d8:e7:b0:6a:a7:d1:e0:ae:2e:66:d9:7b:fc:12:01:
94:4f:e8:06:45:aa:04:9b:39:01:50:aa:cd:d8:02:
9f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:02:D0:42:1B:DF:91:33:CE:F6:D7:E2:53:7C:56:0E:4B:6A:7F:DF
X509v3 Authority Key Identifier:
keyid:2C:8F:A8:53:3D:CC:82:0B:A1:AD:6F:B2:B2:F0:16:10:10:53:1D:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LI-oUz3MgguhrW-ysvAWEBBTHbk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e7d3de-1845-41f3-907a-9e96af6d6a8f/1/hwLQQhvfkTPO9tfiU3xWDktqf98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e7d3de-1845-41f3-907a-9e96af6d6a8f/1/LI-oUz3MgguhrW-ysvAWEBBTHbk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.189.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:78:82:57:05:64:51:d8:83:7b:af:04:08:41:ca:72:a2:d1:
c6:6b:dd:2c:77:f3:ab:33:08:98:67:e4:c6:f9:d4:7d:f1:48:
ac:60:6e:81:d3:44:9c:96:33:86:b0:1c:3c:30:72:a2:98:6e:
57:b6:2f:13:fa:46:21:a7:5f:3e:d8:de:ce:a4:05:3a:c7:56:
d1:3a:74:01:f7:ef:bb:4f:4a:e9:9f:fb:30:e9:11:95:22:0f:
68:14:ce:4f:e7:7a:0d:43:d0:f7:80:ef:86:87:6b:e7:48:95:
2e:c4:e1:b3:bb:6d:eb:7f:88:8c:92:22:22:c2:c3:13:f3:a6:
36:c9:02:df:04:e0:fb:8a:c2:7b:25:82:7f:3d:7f:ce:2c:4d:
39:3f:2f:7b:eb:ed:b0:d7:1e:eb:02:12:47:79:ac:c0:3e:c2:
1e:d1:8d:00:de:b9:df:1c:c3:40:cc:68:f7:27:3e:2d:24:b1:
df:ec:a7:22:b6:ee:bb:ec:e5:1e:51:ce:06:d7:c1:38:2f:79:
7b:03:14:48:15:92:20:2e:a3:36:e2:ac:dc:af:37:f2:f3:d5:
45:8f:8e:a2:29:38:a4:31:e5:89:60:0c:aa:eb:7f:d1:e8:8c:
63:c7:aa:c5:93:c9:8b:84:74:cd:92:62:79:54:a2:5c:fd:2d:
e4:25:a1:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:34:00 2025 by rpki-client