Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/Hqc62MqaiR1ENBvYXYbBphPGFN0.roa
File: Hqc62MqaiR1ENBvYXYbBphPGFN0.roa (raw, json)
Hash identifier: 4i8o9r31Hh5HW+0+aK2z52UE4F0xdqPSMZVRQXOPULo=
Subject key identifier: 1E:A7:3A:D8:CA:9A:89:1D:44:34:1B:D8:5D:86:C1:A6:13:C6:14:DD
Certificate issuer: /CN=eb349af2af111361b29fcfef2e043d5be75e3f98
Certificate serial: 0195CBB6CE3785A4B8C313AACA721AA05FA8
Authority key identifier: EB:34:9A:F2:AF:11:13:61:B2:9F:CF:EF:2E:04:3D:5B:E7:5E:3F:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6zSa8q8RE2Gyn8_vLgQ9W-deP5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/Hqc62MqaiR1ENBvYXYbBphPGFN0.roa
Signing time: Tue 25 Mar 2025 05:11:49 +0000
ROA not before: Tue 25 Mar 2025 05:11:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199414
IP address blocks: 5.56.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:cb:b6:ce:37:85:a4:b8:c3:13:aa:ca:72:1a:a0:5f:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb349af2af111361b29fcfef2e043d5be75e3f98
Validity
Not Before: Mar 25 05:11:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1ea73ad8ca9a891d44341bd85d86c1a613c614dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:eb:50:1f:da:f3:c7:9c:1f:e0:29:cb:f1:ee:
8b:4f:8f:3a:de:4e:8f:47:8c:08:a8:ee:52:58:aa:
61:0b:94:cf:0d:ce:50:ce:43:0c:ca:06:74:2b:73:
c3:a5:92:03:c9:63:9d:49:9b:e8:72:8d:7a:c5:43:
37:a2:a3:86:44:ab:b7:50:7c:67:b9:5b:8b:b9:d7:
b8:b3:54:ac:2c:d3:74:c7:21:83:ea:4f:e8:8e:dc:
23:c3:7b:ff:d0:0e:3a:63:f1:9f:5d:59:28:c9:8f:
1d:80:bf:3a:4a:74:8e:d8:ad:f5:73:f7:b1:42:0b:
4f:68:9d:53:f6:2b:bf:23:93:7e:97:b6:13:bc:00:
f6:38:cb:77:4d:bb:28:ea:13:d2:39:76:43:ce:3d:
94:c8:9a:14:3b:c3:2b:d8:a1:7c:b5:21:32:12:c8:
64:22:e1:51:99:93:ec:6f:f9:1c:11:da:ab:83:59:
ce:13:2f:af:78:e7:13:2b:e1:65:e5:cc:53:71:a5:
c0:e9:57:5e:43:8a:9b:d7:c5:cb:86:4e:97:a5:bb:
f9:9f:54:4e:84:33:63:a7:42:5c:b5:8f:5b:17:97:
af:82:89:0a:46:2a:6f:82:1d:c3:c1:60:0d:30:48:
52:f5:99:29:36:53:d2:66:83:8a:62:90:6c:fc:9f:
21:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A7:3A:D8:CA:9A:89:1D:44:34:1B:D8:5D:86:C1:A6:13:C6:14:DD
X509v3 Authority Key Identifier:
keyid:EB:34:9A:F2:AF:11:13:61:B2:9F:CF:EF:2E:04:3D:5B:E7:5E:3F:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6zSa8q8RE2Gyn8_vLgQ9W-deP5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/Hqc62MqaiR1ENBvYXYbBphPGFN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/3cb147-a7c3-44e9-adc8-9cd662bc8320/1/6zSa8q8RE2Gyn8_vLgQ9W-deP5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.25.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:e8:63:60:37:77:61:4e:10:fa:eb:70:91:3e:fc:c9:ef:32:
d6:2d:11:91:3f:8d:d8:dc:55:44:67:62:2c:6a:8e:f4:3e:0d:
79:ae:b6:a0:13:6f:0d:c1:3d:da:03:17:cf:8c:10:fc:8a:ff:
7a:b7:57:fa:97:7d:ef:6d:5c:06:af:eb:3a:ea:b1:8d:b3:ed:
08:15:80:14:67:55:6a:fb:8e:af:84:99:42:2b:d2:9e:bd:e2:
2d:72:bf:dd:6b:41:ad:41:99:1d:1e:68:f2:e6:f6:4a:e4:93:
1e:95:e1:13:bb:10:19:4f:92:c2:7c:d4:1c:42:e3:cc:16:5a:
41:b3:56:e6:22:9a:03:21:97:ff:22:fa:49:fa:90:3f:5f:79:
b4:32:64:0f:bd:5e:da:a1:46:3c:91:e0:3d:3a:b3:b3:27:df:
8d:31:fc:d0:23:a5:2e:97:1d:3d:86:a8:89:a1:4e:c4:88:3a:
ba:30:c2:51:e2:d2:82:45:d6:66:11:46:9d:c8:20:70:7f:10:
76:80:d0:9b:f6:24:e6:7d:73:6b:79:96:dd:a9:5b:59:84:e1:
68:18:d9:80:dd:42:72:89:40:8a:2c:5c:70:76:54:07:ab:af:
9e:e4:34:aa:0a:fd:ed:4b:c7:64:94:4b:da:3d:96:95:05:3d:
e6:7e:96:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:51:43 2025 by rpki-client