Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/HBjSPFmYu65vwL4Fg0jP77xYFBs.roa
File: HBjSPFmYu65vwL4Fg0jP77xYFBs.roa (raw, json)
Hash identifier: 5Ij2uLZtU58vxXMNEm48Agsf6eKYI+cEPKi83Hu08Ww=
Subject key identifier: 1C:18:D2:3C:59:98:BB:AE:6F:C0:BE:05:83:48:CF:EF:BC:58:14:1B
Certificate issuer: /CN=50ba5b744e8df503d94f41fb29024289c6fa5e5b
Certificate serial: 069EA298
Authority key identifier: 50:BA:5B:74:4E:8D:F5:03:D9:4F:41:FB:29:02:42:89:C6:FA:5E:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULpbdE6N9QPZT0H7KQJCicb6Xls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/HBjSPFmYu65vwL4Fg0jP77xYFBs.roa
Signing time: Fri 08 Apr 2022 07:48:39 +0000
ROA not before: Fri 08 Apr 2022 07:48:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 109.122.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111059608 (0x69ea298)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ba5b744e8df503d94f41fb29024289c6fa5e5b
Validity
Not Before: Apr 8 07:48:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c18d23c5998bbae6fc0be058348cfefbc58141b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:66:a3:66:fb:d2:87:33:fd:74:32:d5:56:fc:
e0:7e:da:75:37:39:f7:9f:20:06:80:6c:d2:c9:b3:
f3:86:5f:e4:a1:4d:3c:86:d2:19:66:ff:75:88:c8:
84:bd:f5:37:c6:aa:ce:8e:3d:9f:89:0d:86:80:2e:
66:10:ca:29:9f:e1:e0:20:fe:a3:81:ff:6b:dc:e3:
51:1d:3d:b2:e8:fe:cd:6f:e5:1a:47:d8:23:98:a4:
bf:91:7e:7a:9d:d2:48:65:63:4a:bb:67:5a:11:e8:
f0:15:cd:50:d6:dc:3a:04:c7:2b:10:6e:71:4a:e9:
db:7d:6a:b5:18:3f:2d:8f:94:7b:41:e4:2f:cb:8a:
22:a2:b0:26:a5:b5:bf:49:5f:fc:ed:8d:95:4c:31:
f1:e2:38:02:3c:3e:c7:72:d3:5a:43:a4:44:91:82:
fe:54:4b:d1:5e:16:80:62:ba:d9:e5:fb:c1:c2:ce:
56:58:04:fc:4b:89:f4:de:ba:0e:85:c6:97:1c:d0:
0b:ad:e5:15:42:24:66:08:8a:6c:7c:df:c5:d0:f3:
f3:dc:36:3c:15:44:56:92:92:35:c6:b2:2d:9e:cd:
fc:d2:95:3e:b8:ff:36:5f:bd:0a:26:7a:09:b1:bf:
90:34:41:18:ea:30:d3:7a:6e:9e:f7:75:c5:88:3a:
72:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:18:D2:3C:59:98:BB:AE:6F:C0:BE:05:83:48:CF:EF:BC:58:14:1B
X509v3 Authority Key Identifier:
keyid:50:BA:5B:74:4E:8D:F5:03:D9:4F:41:FB:29:02:42:89:C6:FA:5E:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULpbdE6N9QPZT0H7KQJCicb6Xls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/HBjSPFmYu65vwL4Fg0jP77xYFBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/ULpbdE6N9QPZT0H7KQJCicb6Xls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.194.0/24
Signature Algorithm: sha256WithRSAEncryption
39:5d:7f:ac:0c:db:ba:7b:21:90:b2:9c:da:01:d5:3f:30:3f:
50:e6:ba:d5:cf:d1:2e:a0:82:94:66:49:eb:a0:37:07:c4:78:
4f:1d:4b:56:fd:b7:11:76:8e:39:e5:18:05:9a:df:5e:7f:58:
52:be:c4:82:7b:c7:04:e2:11:88:54:55:70:4f:05:70:3e:6d:
eb:89:c7:20:bc:e7:26:53:38:ec:ad:6d:3e:a5:36:fc:fb:cc:
1c:56:e9:bd:ef:aa:85:af:a9:ae:e5:3a:9e:87:8a:f1:aa:e2:
ae:62:04:ce:39:df:eb:fc:82:88:2d:63:b2:b0:c0:fe:9a:43:
fa:83:45:d9:ee:4a:cb:5a:19:b9:2e:36:94:e7:55:ed:75:4a:
50:8f:42:9f:fc:eb:8c:cc:88:90:e5:b9:37:8c:4a:57:da:7f:
8f:4e:22:06:df:44:2d:b8:10:bf:00:0e:a6:54:15:94:a2:cd:
7c:eb:0a:12:67:57:31:35:27:61:53:4c:21:2c:31:f5:81:3b:
d5:36:e8:f4:e2:b6:35:29:9a:08:a7:a2:56:94:05:7e:fe:e5:
95:7a:ea:b4:b3:25:eb:38:ff:ea:33:57:2c:97:89:b1:c1:93:
e3:a6:d7:f1:fd:90:3f:ed:88:4b:f8:14:23:c4:37:0b:42:da:
ff:77:1b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 20:29:12 2025 by rpki-client