Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/hanoVXB16G2Yp1uu8RStgYL6_Ug.roa
File: hanoVXB16G2Yp1uu8RStgYL6_Ug.roa (raw, json)
Hash identifier: 8TF7E7fGSBpS5oLPzDyOhLZg5/7YwA6jnjaiEiPDYdw=
Subject key identifier: 85:A9:E8:55:70:75:E8:6D:98:A7:5B:AE:F1:14:AD:81:82:FA:FD:48
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018CC2DADE1350DFBD915C266DE77BF2F760
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/hanoVXB16G2Yp1uu8RStgYL6_Ug.roa
Signing time: Mon 01 Jan 2024 02:29:32 +0000
ROA not before: Mon 01 Jan 2024 02:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201519
IP address blocks: 81.15.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:de:13:50:df:bd:91:5c:26:6d:e7:7b:f2:f7:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 02:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=85a9e8557075e86d98a75baef114ad8182fafd48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1e:0a:36:5f:ea:5e:dc:b8:a6:37:1d:4e:54:
11:cc:e9:07:5e:6f:72:fa:e2:4a:94:8c:2a:a6:92:
b9:99:5f:ba:ff:61:ee:df:83:dc:75:10:63:cc:91:
a3:2d:c1:ce:69:1b:a1:39:37:03:de:45:05:ad:b3:
34:5a:09:cb:45:be:14:f2:b4:3e:a4:b0:f1:bf:f7:
fd:d4:96:0b:66:71:f8:be:23:9a:42:4c:f8:af:e7:
a2:fc:47:aa:f6:12:4c:b1:45:eb:85:d6:53:95:6a:
c8:00:0c:61:bd:30:e7:38:f9:66:2a:f3:a6:19:9b:
69:65:64:8a:2a:72:5f:0b:43:8c:b8:33:66:84:16:
05:a1:b8:3f:09:9c:7a:cc:fc:05:5b:52:43:8f:ac:
3e:33:01:17:70:31:8c:8a:81:1c:f4:29:93:fc:d5:
43:e0:67:8b:02:4c:90:c3:c8:2d:49:df:1f:36:43:
5c:4a:7d:4f:25:5c:f7:17:cc:b7:f8:a7:3d:7f:ff:
2d:7d:58:2a:e4:f5:50:0e:8d:e9:a8:75:10:15:47:
3a:03:b5:75:b4:30:c1:64:a4:aa:4f:42:c5:89:27:
7c:38:01:46:f2:21:72:9e:10:2c:10:26:d1:6a:89:
2a:57:ef:0c:df:e8:15:29:bd:e0:06:07:1e:44:4d:
f6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A9:E8:55:70:75:E8:6D:98:A7:5B:AE:F1:14:AD:81:82:FA:FD:48
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/hanoVXB16G2Yp1uu8RStgYL6_Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.144.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:5f:cd:57:54:9e:e9:9f:a7:55:eb:2f:83:99:2c:56:b3:52:
44:6e:db:70:37:09:14:06:56:2e:05:f1:a3:aa:63:fe:8c:0a:
6e:ee:27:9e:5a:d2:8f:49:11:10:ed:c0:54:de:c2:a9:81:a8:
e8:8e:ce:c9:42:68:54:b4:ab:ff:4c:ef:35:d7:f7:ab:57:c8:
4c:0d:85:0c:5e:f9:e7:d8:ce:20:eb:f2:ce:59:d7:6c:64:c7:
7a:1c:c7:f0:2f:ca:50:06:d2:d4:e9:98:72:36:20:02:13:26:
32:97:b9:e1:e6:43:4e:83:2f:17:71:88:53:ed:35:84:88:ca:
4d:8c:ab:c9:db:44:2c:22:d4:11:e8:df:af:1d:bd:98:27:ee:
7e:57:eb:ea:05:02:0e:b9:f9:6a:da:81:21:7e:21:ad:6a:3d:
c4:83:ae:70:e4:42:31:60:d6:93:ac:2b:ec:ac:e1:99:ad:e1:
96:fd:d2:ba:4f:d4:3c:44:e1:78:42:d2:94:37:b3:b8:3b:61:
94:2b:51:12:4a:0b:ad:45:71:93:7c:6b:8d:64:2a:64:ff:df:
0d:8f:de:09:61:be:f6:71:7e:be:7a:a1:2e:08:75:57:17:93:
c1:55:b5:e4:2c:95:92:7c:e3:b3:b3:b3:22:d5:cc:3c:b6:6b:
ce:b5:71:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:44 2025 by rpki-client