Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/1f4d56-bdd9-4116-954c-2240d27402fe/1/HKHraFEYYNYHebVW4UzhePyjoFA.roa
File: HKHraFEYYNYHebVW4UzhePyjoFA.roa (raw, json)
Hash identifier: 38P8XVqEndkvbUNYJARhURsyRIvxknh0lTVxMet8yoE=
Subject key identifier: 1C:A1:EB:68:51:18:60:D6:07:79:B5:56:E1:4C:E1:78:FC:A3:A0:50
Certificate issuer: /CN=fea2da9911b31bf5b0d614912fdbf95bf1d7035b
Certificate serial: 0193AED608968D24C6495C9190A8840F4428
Authority key identifier: FE:A2:DA:99:11:B3:1B:F5:B0:D6:14:91:2F:DB:F9:5B:F1:D7:03:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_qLamRGzG_Ww1hSRL9v5W_HXA1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/1f4d56-bdd9-4116-954c-2240d27402fe/1/HKHraFEYYNYHebVW4UzhePyjoFA.roa
Signing time: Tue 10 Dec 2024 04:31:22 +0000
ROA not before: Tue 10 Dec 2024 04:31:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48955
IP address blocks: 195.35.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ae:d6:08:96:8d:24:c6:49:5c:91:90:a8:84:0f:44:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fea2da9911b31bf5b0d614912fdbf95bf1d7035b
Validity
Not Before: Dec 10 04:31:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ca1eb68511860d60779b556e14ce178fca3a050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:57:31:26:a9:fe:99:9b:91:5e:fd:b1:d9:
75:2b:2f:c4:e2:b0:2f:cd:8d:98:c0:8a:74:1e:fc:
53:60:71:a7:9b:13:43:af:c9:97:9d:20:af:81:c7:
7a:7f:5d:c0:a5:51:47:2a:1c:3d:ef:b0:e5:a9:b8:
58:6e:c1:9c:f9:42:e7:04:f6:f7:50:5a:66:d4:1a:
e4:85:69:d9:d9:29:d8:16:85:20:e5:e4:30:31:1f:
15:59:ed:42:56:30:ee:49:2f:5f:1e:8e:ef:f6:cf:
6b:74:97:89:67:a5:58:56:71:fb:8d:e5:7a:4a:fd:
27:c1:8e:ea:26:b2:29:96:ad:d6:d4:f8:15:80:76:
d6:ff:eb:c6:37:b4:86:5e:9c:dd:c8:16:87:b5:fb:
4e:18:fa:ab:1a:d9:6a:e4:f7:c2:5a:c0:f2:f8:ba:
d9:1f:81:d5:44:57:ac:3c:92:2c:4c:23:ce:dc:fe:
ba:80:7a:21:c3:ef:c6:16:cb:5c:0a:01:f1:5e:52:
93:72:04:7a:02:37:99:cf:f9:c5:9f:99:47:75:1e:
f0:f3:75:a5:ee:26:a4:c3:97:25:2e:52:7e:87:26:
8e:a1:f9:33:66:71:ae:8c:9e:e7:fb:b6:e0:35:83:
b4:9a:1f:26:b9:5c:58:58:76:11:0a:c3:3a:c7:52:
ee:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:A1:EB:68:51:18:60:D6:07:79:B5:56:E1:4C:E1:78:FC:A3:A0:50
X509v3 Authority Key Identifier:
keyid:FE:A2:DA:99:11:B3:1B:F5:B0:D6:14:91:2F:DB:F9:5B:F1:D7:03:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_qLamRGzG_Ww1hSRL9v5W_HXA1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1f4d56-bdd9-4116-954c-2240d27402fe/1/HKHraFEYYNYHebVW4UzhePyjoFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1f4d56-bdd9-4116-954c-2240d27402fe/1/_qLamRGzG_Ww1hSRL9v5W_HXA1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.100.0/24
Signature Algorithm: sha256WithRSAEncryption
70:e1:5c:9b:6f:e9:4d:ea:f9:05:11:cc:a1:35:1f:4e:81:41:
8c:ab:b7:36:ff:af:e2:4a:2d:76:77:32:fe:f6:d4:52:10:20:
10:cd:6f:5f:46:f3:43:d9:a2:52:2b:f4:fb:c9:5e:70:f1:3b:
39:ea:7e:02:d5:63:40:6d:85:8f:46:2f:05:74:4c:d2:7b:fe:
03:dc:ed:75:09:d9:ff:09:de:c5:8f:39:d1:ba:15:9b:48:f1:
e9:0f:c0:92:a5:33:f6:96:da:ca:6a:64:92:81:1c:5e:b9:c6:
2a:1d:54:48:23:58:97:35:cc:96:2a:42:64:78:83:74:42:1b:
54:97:8c:03:69:aa:29:2c:e4:f3:e9:26:7a:85:5e:c3:12:49:
59:2c:2f:ec:42:b0:a8:7f:3f:13:63:06:d9:32:c5:5b:1e:85:
9a:f8:fc:37:0d:b4:24:2e:a0:4e:2e:6e:80:2d:e3:df:47:75:
40:39:7e:50:99:55:72:71:88:65:95:47:63:85:4a:3b:bf:9c:
2d:99:af:b3:d4:5a:4b:27:0d:f5:2b:1c:06:7b:dc:8c:d0:43:
d7:44:08:60:75:5b:f1:02:26:70:1f:4e:a7:8d:16:9f:a7:84:
d1:46:b1:b6:34:7f:0f:fa:e3:75:e9:00:53:ee:26:32:cd:78:
05:7b:d1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:05:58 2025 by rpki-client