Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/huoX-NsGBX81nP0tVBiSE6oOvzA.roa
File: huoX-NsGBX81nP0tVBiSE6oOvzA.roa (raw, json)
Hash identifier: A53kWrQMs92jK/VJgGt19jauAXWXDMGc6bRCnefw55w=
Subject key identifier: 86:EA:17:F8:DB:06:05:7F:35:9C:FD:2D:54:18:92:13:AA:0E:BF:30
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42C1FBD8
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/huoX-NsGBX81nP0tVBiSE6oOvzA.roa
Signing time: Sun 01 May 2022 07:15:00 +0000
ROA not before: Sun 01 May 2022 07:15:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62032
IP address blocks: 188.214.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1120009176 (0x42c1fbd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 1 07:15:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86ea17f8db06057f359cfd2d54189213aa0ebf30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8b:7e:0a:4e:f2:5f:0b:bf:74:14:2b:33:4c:
2f:8d:28:7e:33:65:47:07:ef:cc:91:ff:7c:58:9b:
73:9d:f6:53:27:2f:be:7b:a7:49:f9:5c:58:c3:0e:
02:71:a5:c7:d0:d8:0d:77:65:f8:0b:f9:42:5c:f3:
eb:ce:9a:f2:a0:39:7d:b3:a2:c9:c3:cf:ec:c4:9c:
ed:83:ac:b5:8a:d6:90:e4:aa:a7:b5:98:34:00:9a:
ae:a3:d4:db:bc:ff:b3:ce:0e:e7:58:1d:e6:4c:36:
91:57:6b:0e:ab:fd:01:d1:7e:0c:90:f0:f9:17:0d:
3c:e6:2b:1e:a3:a9:70:14:a3:4e:09:e1:f2:73:8a:
be:ab:ef:58:de:8b:81:32:78:7d:68:31:0a:6f:f7:
1f:6c:8b:16:b5:cb:61:a1:ec:e3:3e:bd:cc:a3:9f:
25:54:e7:6b:8d:2e:56:58:22:2e:92:40:44:bd:9d:
48:1e:5a:b4:7e:80:dd:7f:d0:39:de:43:b0:2b:10:
ef:3e:a3:20:15:3c:6c:ba:81:91:81:6a:d7:3a:f8:
1d:5d:89:3d:4d:35:a8:d3:0a:f4:2e:4f:46:02:f1:
5a:88:8c:d0:30:93:c9:f6:ee:f6:bb:4a:48:6e:6a:
42:2f:f5:b4:c7:03:cd:58:18:88:1c:97:ce:e9:b6:
a7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EA:17:F8:DB:06:05:7F:35:9C:FD:2D:54:18:92:13:AA:0E:BF:30
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/huoX-NsGBX81nP0tVBiSE6oOvzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:3a:62:c7:cd:aa:26:fe:f9:a4:51:98:c4:9e:9b:4c:8a:e6:
79:34:a2:71:1b:b5:59:f6:f5:dc:db:d2:7b:01:9d:51:f9:89:
ea:5c:6f:d0:03:ed:86:84:19:30:72:f6:44:99:f5:ec:e9:7b:
12:93:19:95:32:c2:53:27:1a:d5:e4:a6:94:5f:a7:41:0e:17:
7e:ac:f0:a7:76:55:cb:cc:92:53:0f:f2:c2:3e:6c:a3:1a:4e:
f9:5d:fa:0d:c9:25:6a:af:3c:ad:8d:18:f2:1c:5b:2f:24:7e:
46:21:a3:2b:cb:a7:15:22:81:1d:b2:e9:a6:d4:50:8d:e8:71:
23:1e:f4:2b:0c:a6:1c:48:f2:7e:70:ae:79:11:61:89:45:46:
c5:a4:54:96:5b:93:ac:6b:2c:21:99:bc:78:5d:3e:2d:86:7e:
e4:97:ba:49:12:e8:46:98:b7:82:78:12:43:b5:61:7d:91:91:
6e:93:15:b7:29:0a:2b:2b:e2:6f:d6:f6:55:48:01:c6:42:39:
34:d0:ec:ad:3f:eb:3e:99:80:4b:8f:4f:86:77:f8:32:5b:65:
e3:b3:8a:0d:23:49:9b:94:06:a3:60:f2:cf:b5:11:3c:57:45:
1e:a2:5a:f9:dc:01:72:2d:bb:2f:7d:1b:82:b2:81:ac:58:15:
1f:9c:d1:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:45:47 2025 by rpki-client