Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/4ebc33-ee54-437c-8a1b-dec4807cd7e6/1/HcQns1JnbPGpo99IHaTjt_VBhuE.roa
File: HcQns1JnbPGpo99IHaTjt_VBhuE.roa (raw, json)
Hash identifier: Y0Ew7TMbQzwubohLExCQrmrs2veJiS1mv2vLvHyAC+0=
Subject key identifier: 1D:C4:27:B3:52:67:6C:F1:A9:A3:DF:48:1D:A4:E3:B7:F5:41:86:E1
Certificate issuer: /CN=08fe040242651353d556b8c4240082190f271d13
Certificate serial: 019561DBA72BDEC43F37B41F39E3CFC341CE
Authority key identifier: 08:FE:04:02:42:65:13:53:D5:56:B8:C4:24:00:82:19:0F:27:1D:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CP4EAkJlE1PVVrjEJACCGQ8nHRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/4ebc33-ee54-437c-8a1b-dec4807cd7e6/1/HcQns1JnbPGpo99IHaTjt_VBhuE.roa
Signing time: Tue 04 Mar 2025 15:52:19 +0000
ROA not before: Tue 04 Mar 2025 15:52:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 185.22.170.0/24 maxlen: 24
185.22.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:61:db:a7:2b:de:c4:3f:37:b4:1f:39:e3:cf:c3:41:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fe040242651353d556b8c4240082190f271d13
Validity
Not Before: Mar 4 15:52:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1dc427b352676cf1a9a3df481da4e3b7f54186e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:14:48:69:f0:30:d1:51:ee:79:bb:50:02:d7:
e4:fc:2a:7e:80:06:36:79:28:f5:40:02:c3:b3:40:
58:0f:89:00:f4:d8:ae:69:f2:92:bb:3d:46:eb:b7:
80:41:0c:7a:7a:a9:58:57:fb:09:ea:69:54:cf:d5:
a8:b9:2e:ba:9a:73:90:a7:2c:bc:56:4a:51:28:b3:
5a:af:cc:99:f0:48:7b:22:b3:fe:fc:00:ca:33:ea:
bb:f6:be:3d:df:3b:6e:2e:b8:11:e7:03:6c:55:5c:
cf:33:c0:02:e8:27:46:47:a7:b9:a5:9d:de:50:fc:
0c:aa:f7:73:af:43:12:b2:dd:45:23:9f:56:d7:02:
5f:ba:f1:c8:b9:20:b7:d2:72:93:75:a1:81:55:80:
a4:c6:13:5d:e0:2b:ec:e8:bb:7a:82:56:50:3d:fe:
c8:fc:02:11:a6:ff:68:81:43:70:6f:bf:da:f6:9b:
0f:8f:0b:40:e9:aa:a5:06:7d:ca:5f:df:bd:04:ae:
e4:55:15:20:f3:f0:a9:f2:01:df:eb:15:38:0a:5d:
54:fc:ef:27:17:08:15:c8:b8:50:91:0a:65:ef:e3:
2d:2e:3a:9f:2d:b0:a4:19:fe:d7:44:80:98:e7:1c:
fe:c1:05:50:23:de:78:05:ae:fb:c0:61:5e:43:2f:
a5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C4:27:B3:52:67:6C:F1:A9:A3:DF:48:1D:A4:E3:B7:F5:41:86:E1
X509v3 Authority Key Identifier:
keyid:08:FE:04:02:42:65:13:53:D5:56:B8:C4:24:00:82:19:0F:27:1D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CP4EAkJlE1PVVrjEJACCGQ8nHRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4ebc33-ee54-437c-8a1b-dec4807cd7e6/1/HcQns1JnbPGpo99IHaTjt_VBhuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4ebc33-ee54-437c-8a1b-dec4807cd7e6/1/CP4EAkJlE1PVVrjEJACCGQ8nHRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.170.0/23
Signature Algorithm: sha256WithRSAEncryption
63:e6:14:38:02:a6:b8:eb:98:8b:25:e7:43:e4:87:45:ff:19:
a0:e0:2e:cd:0c:da:6b:01:75:b0:c9:ac:fc:57:a0:c0:98:91:
b4:f6:a0:7e:d9:44:2b:ff:9c:26:fa:8b:cd:6d:8c:c8:67:a1:
b2:63:bd:69:f2:3e:bb:20:66:d1:68:99:2a:e2:d6:e6:ce:20:
3b:21:f6:63:22:bd:6f:92:77:e0:76:02:45:c9:be:d3:f9:ec:
2f:41:65:00:db:0c:db:97:cd:0e:73:82:38:2c:7d:4c:fb:89:
95:2a:6e:e3:b9:ab:3f:d1:e3:00:0c:ce:5f:76:50:47:d0:26:
b8:1a:87:c0:71:31:5e:a0:e7:27:51:5c:13:77:a3:86:9d:14:
b9:39:27:ba:62:fc:8f:70:01:ed:3b:78:64:70:d2:e3:e2:c2:
2c:1b:e7:85:b0:d5:34:0c:c9:40:d6:c6:a5:6d:6b:d5:e8:01:
0e:d5:a6:bc:e3:c1:66:b8:fe:88:ed:c6:e1:ae:b4:5f:16:1c:
8c:b9:6d:d2:c1:c1:df:e5:0b:2b:0d:0d:e4:e6:20:1a:2d:62:
80:81:bd:f6:c0:b3:0b:b8:11:a5:6f:b4:50:8f:85:c6:4f:f8:
66:4a:51:67:71:fe:f1:ce:27:5f:13:43:63:52:16:f8:e0:3b:
31:3c:f7:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:59:28 2025 by rpki-client