Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/dad716-1871-46ab-8f70-491b6368fa40/1/hwkqjEsEd4sOlgPtr8fc0BmdMBc.roa
File: hwkqjEsEd4sOlgPtr8fc0BmdMBc.roa (raw, json)
Hash identifier: yb0Vb/Bnfd9J4gxSJrSIdm47oNubI7WJRzvJ/qrRBX0=
Subject key identifier: 87:09:2A:8C:4B:04:77:8B:0E:96:03:ED:AF:C7:DC:D0:19:9D:30:17
Certificate issuer: /CN=354479e9b5a1786e6e87407ae9dde511779a507f
Certificate serial: 022881B7
Authority key identifier: 35:44:79:E9:B5:A1:78:6E:6E:87:40:7A:E9:DD:E5:11:77:9A:50:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NUR56bWheG5uh0B66d3lEXeaUH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/dad716-1871-46ab-8f70-491b6368fa40/1/hwkqjEsEd4sOlgPtr8fc0BmdMBc.roa
Signing time: Mon 07 Mar 2022 09:26:56 +0000
ROA not before: Mon 07 Mar 2022 09:26:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203217
IP address blocks: 81.161.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36209079 (0x22881b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=354479e9b5a1786e6e87407ae9dde511779a507f
Validity
Not Before: Mar 7 09:26:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87092a8c4b04778b0e9603edafc7dcd0199d3017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ff:2f:c5:61:7f:49:d2:c6:e5:16:c5:99:5d:
9a:19:ee:c5:e4:f7:ff:77:d5:a0:d1:6e:47:c7:c5:
2a:84:25:58:a4:92:c7:4e:8e:19:55:f1:d4:c1:c1:
8b:1e:25:4f:c8:89:89:15:1e:56:53:f1:9c:ed:bd:
01:df:e6:61:48:0d:7f:ac:36:0d:93:61:cd:74:fb:
2f:7e:b2:c5:7e:70:c2:da:f1:4c:e3:69:4a:89:01:
b7:79:4f:29:5b:81:99:06:fd:3d:d4:b0:b4:76:37:
e4:48:8a:f8:84:d1:62:15:ee:98:c3:a7:a9:f3:b2:
03:ad:17:98:c4:80:6c:a0:54:1e:d2:23:cd:1a:d9:
3d:be:cf:84:e3:f9:d3:b7:04:a0:dc:5b:3c:fb:29:
69:f2:53:d1:7e:08:cb:f1:56:fa:06:ef:7e:af:ed:
2c:f5:56:f7:84:e8:64:a9:f9:4b:d0:26:18:d3:48:
d1:8a:ec:48:9e:9b:ee:ba:f4:18:7d:68:11:08:27:
3e:ec:7f:46:39:80:f6:76:92:13:5c:d1:88:30:e0:
57:02:3b:85:8e:10:f3:ab:45:da:69:e1:1c:a1:98:
dc:47:3a:69:00:94:b2:26:08:a2:0c:be:8f:4b:9f:
8a:c9:60:8e:d2:a5:94:cb:d5:e9:a6:3d:2b:66:22:
61:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:09:2A:8C:4B:04:77:8B:0E:96:03:ED:AF:C7:DC:D0:19:9D:30:17
X509v3 Authority Key Identifier:
keyid:35:44:79:E9:B5:A1:78:6E:6E:87:40:7A:E9:DD:E5:11:77:9A:50:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NUR56bWheG5uh0B66d3lEXeaUH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/dad716-1871-46ab-8f70-491b6368fa40/1/hwkqjEsEd4sOlgPtr8fc0BmdMBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/dad716-1871-46ab-8f70-491b6368fa40/1/NUR56bWheG5uh0B66d3lEXeaUH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.161.228.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e8:c9:3f:2e:53:87:5b:87:c5:57:21:f4:f0:d7:76:dd:71:
03:64:b2:a0:56:bd:77:01:46:f1:19:04:ae:f6:0d:a2:8b:6f:
1d:af:e8:6c:e2:64:0e:cd:2b:23:33:21:43:42:2d:3f:1f:03:
ee:b9:fe:2c:aa:9b:7c:01:97:35:e8:b3:ea:1c:51:6b:dc:ba:
de:40:0e:d4:22:1a:21:f3:dc:40:73:eb:83:9c:95:0a:bf:d4:
9f:a6:69:9a:84:2f:e6:ae:0c:41:35:be:83:a3:75:96:7f:ac:
b4:7e:9b:02:38:25:83:31:08:a0:0e:20:18:42:83:6f:10:73:
e3:d7:02:91:54:ba:9a:e0:d6:76:1f:9b:66:82:76:0e:0a:a5:
30:19:e3:5f:78:be:00:15:0d:3b:32:21:d6:f9:b2:14:09:87:
8d:22:ca:7c:3d:66:f0:2b:08:93:c7:0c:9b:70:d3:e2:c2:55:
5f:24:7c:f3:60:ac:cd:d7:c0:7a:3d:67:22:43:23:66:cd:2c:
ef:77:2b:94:9d:7f:93:99:a6:51:7c:d1:aa:af:f8:f9:e6:15:
08:f1:64:5b:39:4e:e3:b2:a3:72:16:fe:71:1a:fd:cb:53:ea:
9b:1d:9e:93:e3:8a:59:7a:25:52:45:d8:24:d8:fd:e8:01:27:
e7:2b:85:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:48 2025 by rpki-client