Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/HHgp5sq5yc4_sgJa6AXu1wOFQNM.roa
File: HHgp5sq5yc4_sgJa6AXu1wOFQNM.roa (raw, json)
Hash identifier: 7azvHrY82JhsqK3mxuoAki0dX0VXyY18Oolw0K+QPEw=
Subject key identifier: 1C:78:29:E6:CA:B9:C9:CE:3F:B2:02:5A:E8:05:EE:D7:03:85:40:D3
Certificate issuer: /CN=08af091858bb99651764399c6565df7a0834dbad
Certificate serial: 0194282567EAE0B3DC25F49115F3D693A3CF
Authority key identifier: 08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/HHgp5sq5yc4_sgJa6AXu1wOFQNM.roa
Signing time: Thu 02 Jan 2025 17:52:07 +0000
ROA not before: Thu 02 Jan 2025 17:52:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61101
IP address blocks: 185.41.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:67:ea:e0:b3:dc:25:f4:91:15:f3:d6:93:a3:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08af091858bb99651764399c6565df7a0834dbad
Validity
Not Before: Jan 2 17:52:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c7829e6cab9c9ce3fb2025ae805eed7038540d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b8:df:6b:e7:e4:72:e9:2d:24:57:f1:21:26:
a5:e7:16:7a:ab:47:58:9c:9a:19:11:05:86:46:ee:
38:95:5c:9d:2a:e1:ae:17:6f:c8:36:11:3b:4b:64:
a3:57:0e:e7:ee:96:a5:7f:6e:15:3d:71:ab:72:5c:
00:58:50:53:7b:a0:4e:a4:02:2a:04:1c:c6:27:79:
43:dd:c0:5c:27:3b:d8:27:9a:5c:55:83:eb:cf:71:
49:4c:3f:4b:fd:ad:10:f6:c1:1f:8d:45:5e:a0:1a:
4b:ae:17:99:aa:7a:e8:25:36:05:72:50:c2:f1:18:
56:af:62:d9:84:dd:0b:3f:8d:9e:c9:0e:a9:7f:d8:
c5:a2:8e:e9:9b:89:da:37:4f:ba:06:c6:85:9b:d1:
17:92:9d:f0:4a:19:f8:eb:b8:3c:48:19:ca:27:80:
8f:8e:c9:35:db:26:c6:fc:32:dc:2d:6b:bd:88:65:
dd:6c:09:1c:4d:51:19:48:73:a3:ef:33:cb:51:2f:
47:1c:c3:9c:83:bc:40:8c:57:04:a8:31:67:cb:b1:
c7:b3:5f:8c:c8:92:a3:f3:5c:5e:76:54:28:b2:82:
ab:e7:00:01:bc:9a:05:31:e1:3f:c5:08:27:0d:85:
e5:88:9e:ce:61:e8:a8:45:94:0d:37:35:3f:28:97:
19:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:78:29:E6:CA:B9:C9:CE:3F:B2:02:5A:E8:05:EE:D7:03:85:40:D3
X509v3 Authority Key Identifier:
keyid:08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/HHgp5sq5yc4_sgJa6AXu1wOFQNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.20.0/24
Signature Algorithm: sha256WithRSAEncryption
38:a7:75:ad:38:d3:67:03:d7:05:2c:b5:ed:4d:85:63:74:0d:
01:a5:f9:3d:bd:b7:ff:d3:a9:c4:d2:53:36:7b:b4:1b:15:ca:
c1:83:9b:f7:69:8a:bf:d3:f6:08:d0:19:78:b6:64:7f:5b:44:
ee:bf:c2:a5:39:30:b8:a8:78:89:85:a2:95:8a:b9:80:f1:75:
93:85:c7:93:43:4a:0a:dc:96:a7:67:65:1d:62:38:46:4d:a7:
fc:6d:76:1a:0c:d5:fc:f1:30:8a:c5:38:36:1d:f7:e7:d2:97:
58:71:dc:97:ac:c9:ca:87:df:83:f2:0d:ed:3f:1d:7a:dc:83:
c7:63:0d:4d:8d:62:5f:c9:e1:2c:6b:95:9a:44:ba:c4:ea:fc:
f2:d2:e0:25:e5:d8:fc:98:f1:c5:af:3d:c8:03:b1:da:44:14:
25:69:41:4a:77:a4:7e:00:8b:07:75:7a:62:bb:3a:87:9f:d4:
93:a9:bc:19:e5:ef:70:28:bb:95:a4:3e:9d:4e:12:7a:93:eb:
98:ed:17:ba:16:e0:27:97:c0:19:4f:4d:e3:0f:bc:64:01:e5:
db:99:9a:f8:73:ad:8b:f0:8f:ec:5e:b6:57:cd:4b:85:eb:60:
a8:f7:42:90:7b:5f:a1:4e:0c:fb:b7:9a:21:dd:75:59:e1:ea:
15:6e:51:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:31:22 2025 by rpki-client