Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/d61183-2bea-4dd0-b2b2-c3e7b6e14f58/1/HhFm6KYV1bIHVNGh2iGYx9JFXHc.roa
File: HhFm6KYV1bIHVNGh2iGYx9JFXHc.roa (raw, json)
Hash identifier: rpvwnkHfVGhXGgxUol+hhq2p9afTIyYZR2ool0DB2DU=
Subject key identifier: 1E:11:66:E8:A6:15:D5:B2:07:54:D1:A1:DA:21:98:C7:D2:45:5C:77
Certificate issuer: /CN=d0a14d0b08ad412b00d586dea889ee6dac4f5def
Certificate serial: 01852FBD7FCC48D26E0C770170B8EED4FFC0
Authority key identifier: D0:A1:4D:0B:08:AD:41:2B:00:D5:86:DE:A8:89:EE:6D:AC:4F:5D:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KFNCwitQSsA1YbeqInubaxPXe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/d61183-2bea-4dd0-b2b2-c3e7b6e14f58/1/HhFm6KYV1bIHVNGh2iGYx9JFXHc.roa
Signing time: Tue 20 Dec 2022 13:33:46 +0000
ROA not before: Tue 20 Dec 2022 13:33:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9123
IP address blocks: 185.211.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:bd:7f:cc:48:d2:6e:0c:77:01:70:b8:ee:d4:ff:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a14d0b08ad412b00d586dea889ee6dac4f5def
Validity
Not Before: Dec 20 13:33:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e1166e8a615d5b20754d1a1da2198c7d2455c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:42:a5:f9:05:23:3a:28:27:42:1a:b3:d7:8e:
96:51:11:d3:bd:cc:b2:5f:6e:96:d4:e7:0a:70:e8:
12:0e:eb:17:59:2b:5f:c4:a2:3e:ea:13:88:75:8a:
76:a5:9a:01:88:c7:64:04:8d:18:07:b7:04:ed:60:
54:0e:71:b4:65:88:81:de:05:7b:fb:15:51:34:13:
32:12:9b:99:b1:58:12:36:c4:42:83:6a:cd:49:09:
42:23:02:0f:ab:7c:78:8a:2d:a7:66:46:ef:0a:91:
6d:23:14:76:1e:44:37:91:e0:0e:3a:2f:92:a8:53:
b7:a4:1f:2c:bc:40:a3:bd:cf:8d:36:17:91:7a:47:
b7:90:76:69:78:86:67:59:16:01:dc:5f:f2:2b:0a:
5d:33:57:42:57:a3:3a:2b:6d:90:6b:46:6f:b2:de:
dd:fa:0d:08:0d:1f:2d:d2:ae:90:11:2f:a3:30:e4:
05:f7:63:3e:dc:9a:75:2a:8a:ea:ee:19:55:c1:e7:
9b:d5:0a:37:5d:2f:f1:3e:bc:af:fa:91:5a:df:6f:
a1:92:7a:cf:db:c2:79:ac:c4:00:4a:b4:b5:8f:5d:
8b:81:00:46:59:b8:e7:d9:3b:f8:88:48:58:05:2e:
5f:34:cd:14:0f:04:fb:15:eb:99:8d:69:95:8f:6f:
49:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:11:66:E8:A6:15:D5:B2:07:54:D1:A1:DA:21:98:C7:D2:45:5C:77
X509v3 Authority Key Identifier:
keyid:D0:A1:4D:0B:08:AD:41:2B:00:D5:86:DE:A8:89:EE:6D:AC:4F:5D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KFNCwitQSsA1YbeqInubaxPXe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/d61183-2bea-4dd0-b2b2-c3e7b6e14f58/1/HhFm6KYV1bIHVNGh2iGYx9JFXHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/d61183-2bea-4dd0-b2b2-c3e7b6e14f58/1/0KFNCwitQSsA1YbeqInubaxPXe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.170.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:c9:a1:82:c8:4f:af:c3:52:a3:45:68:73:02:be:5b:81:82:
73:4a:3a:63:e4:e1:8e:27:a6:47:89:dc:32:78:64:e3:c8:09:
dd:e1:2b:18:2c:2d:0e:97:ff:6f:88:27:0d:cd:c1:39:61:e7:
d5:2c:7a:6b:60:94:13:97:5b:9d:33:56:01:0d:62:92:05:a3:
c6:43:e0:c3:fe:05:4f:18:b4:91:07:c1:cb:48:e6:df:c6:eb:
04:75:1b:79:7b:67:4f:97:d3:71:71:11:1b:eb:60:82:8a:2a:
cc:f8:67:ec:21:d2:0e:2a:d5:6f:e7:1f:0b:5a:93:f3:9a:4a:
b6:a2:7c:3e:ed:da:35:af:e8:33:74:e8:a5:69:22:34:0f:45:
bd:ed:c7:22:0c:9c:db:7e:88:7c:e2:58:88:6a:6e:b2:a2:43:
de:6d:22:1c:ff:43:ea:0d:74:b2:02:bc:0d:a4:a9:7b:9f:34:
1a:56:76:41:66:47:14:ff:36:ab:3b:06:6d:b0:74:3e:88:48:
06:e4:79:d5:25:2f:31:97:19:0b:01:ac:27:83:41:0f:22:50:
b1:75:a3:c0:b4:bc:e0:5b:3d:38:73:1e:d7:7e:57:86:54:c9:
13:d1:97:89:3b:15:e2:8d:28:be:cb:f3:f2:cf:48:4b:c1:1e:
a5:98:bd:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:58 2025 by rpki-client