Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/Hxh9Wm2UpcnKEJNb657xiItRNBc.roa
File: Hxh9Wm2UpcnKEJNb657xiItRNBc.roa (raw, json)
Hash identifier: QuZQuFbqKCtsJLYwA7aOkAtY1vNLWszuwQztFoHv93A=
Subject key identifier: 1F:18:7D:5A:6D:94:A5:C9:CA:10:93:5B:EB:9E:F1:88:8B:51:34:17
Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Certificate serial: 019420D5CC35225DB04ABDE218B0E386CF09
Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/Hxh9Wm2UpcnKEJNb657xiItRNBc.roa
Signing time: Wed 01 Jan 2025 07:47:49 +0000
ROA not before: Wed 01 Jan 2025 07:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47270
IP address blocks: 91.212.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:cc:35:22:5d:b0:4a:bd:e2:18:b0:e3:86:cf:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Validity
Not Before: Jan 1 07:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1f187d5a6d94a5c9ca10935beb9ef1888b513417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:02:43:35:38:cb:6b:f4:46:ba:bf:b5:41:76:
bc:40:8e:95:38:79:bd:d2:32:38:1f:05:c3:7d:2a:
9a:1a:81:b5:0d:cf:fe:8b:c4:a7:f5:01:7d:9d:35:
4e:55:59:65:6a:9c:b0:e4:d8:6f:37:cb:db:b9:ad:
cd:1c:63:c6:54:46:ad:37:93:4c:c7:4c:b2:f0:d3:
da:33:dc:f2:44:40:cd:a6:4a:23:b7:36:aa:da:8b:
2f:92:05:66:d4:5f:3d:2e:30:ec:56:a5:59:fb:ac:
48:26:c2:b7:6e:6c:94:9d:df:79:49:56:fd:5e:02:
cc:0c:b1:93:62:05:3a:5f:ae:1b:c5:33:69:ac:23:
0d:78:d0:cb:11:82:8f:b0:da:fe:ef:b0:f6:e2:28:
6e:c4:af:9a:98:80:48:cc:8b:15:ab:84:61:db:3a:
57:85:7d:1d:42:7d:2d:b4:7c:c2:71:83:4f:38:da:
fc:be:fb:d4:f5:70:69:fe:c6:99:22:75:14:80:73:
1c:e9:35:88:7d:87:0d:52:51:29:17:0f:26:ca:15:
76:03:de:a3:e9:da:f6:e7:73:6f:3b:1c:70:e5:3e:
22:60:7e:86:90:57:0d:39:6a:51:ec:0e:16:fb:72:
85:1b:34:62:ea:76:ad:73:8c:43:52:4f:5a:ab:31:
ce:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:18:7D:5A:6D:94:A5:C9:CA:10:93:5B:EB:9E:F1:88:8B:51:34:17
X509v3 Authority Key Identifier:
keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/Hxh9Wm2UpcnKEJNb657xiItRNBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:74:fb:5b:8f:54:c7:ee:b9:d7:4d:4e:f3:8d:e6:c2:68:cd:
b0:ad:ce:2d:f0:05:1b:6f:6f:00:00:8c:c9:20:4e:96:7c:eb:
d0:1e:a8:68:ac:39:2f:f6:c4:0e:9e:c6:97:09:2d:23:6c:a4:
47:ef:4d:5d:bf:4d:6c:d3:9b:9a:49:3d:41:ab:53:66:a8:3b:
e8:00:e2:0e:d8:53:a5:9b:85:24:84:63:a2:57:16:69:24:a3:
fd:91:7e:ea:e0:d7:18:fc:a5:37:fc:80:18:90:45:d5:81:a5:
10:0d:c0:35:8a:17:82:4e:c9:bc:f3:72:9b:1e:82:5d:c2:c7:
d3:92:1f:00:cf:c6:e3:3e:97:11:df:86:73:e4:c1:d4:fc:5f:
60:c8:36:9d:79:f2:a7:8d:6c:7a:7f:63:89:c2:d9:db:75:5a:
ae:74:ce:b1:69:5c:e4:82:dc:b6:32:4a:35:cc:fd:da:76:c9:
1c:a4:03:f8:92:7a:3a:9f:a6:36:90:8c:2f:24:55:b3:b5:65:
d2:15:60:d6:4a:a6:0a:77:25:c4:8a:8f:d8:69:c7:39:10:7c:
3a:27:32:65:8a:71:db:61:60:6f:b4:66:17:16:c8:ff:22:41:
43:85:3e:1a:ef:d8:8e:d3:df:09:12:ed:0a:e2:47:eb:00:ab:
bc:94:10:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:09:19 2025 by rpki-client