Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/H_siI39BODK0sENP2xr8rBXcR38.roa
File: H_siI39BODK0sENP2xr8rBXcR38.roa (raw, json)
Hash identifier: R3pJvyPDZ610acrKjroIXsJ5NZRsFft49Zf86SCq6Vo=
Subject key identifier: 1F:FB:22:23:7F:41:38:32:B4:B0:43:4F:DB:1A:FC:AC:15:DC:47:7F
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 019621116C72569A02789E9B30A8D31F9632
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/H_siI39BODK0sENP2xr8rBXcR38.roa
Signing time: Thu 10 Apr 2025 18:58:31 +0000
ROA not before: Thu 10 Apr 2025 18:58:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210976
IP address blocks: 147.45.101.0/24 maxlen: 24
147.45.111.0/24 maxlen: 24
147.45.132.0/24 maxlen: 24
147.45.133.0/24 maxlen: 24
147.45.134.0/24 maxlen: 24
147.45.135.0/24 maxlen: 24
147.45.136.0/24 maxlen: 24
147.45.137.0/24 maxlen: 24
147.45.139.0/24 maxlen: 24
147.45.142.0/24 maxlen: 24
147.45.145.0/24 maxlen: 24
147.45.149.0/24 maxlen: 24
147.45.152.0/24 maxlen: 24
147.45.156.0/24 maxlen: 24
147.45.162.0/24 maxlen: 24
147.45.165.0/24 maxlen: 24
147.45.166.0/24 maxlen: 24
147.45.167.0/24 maxlen: 24
147.45.169.0/24 maxlen: 24
147.45.170.0/24 maxlen: 24
147.45.171.0/24 maxlen: 24
147.45.173.0/24 maxlen: 24
147.45.174.0/24 maxlen: 24
147.45.180.0/24 maxlen: 24
147.45.181.0/24 maxlen: 24
147.45.186.0/24 maxlen: 24
147.45.187.0/24 maxlen: 24
147.45.224.0/24 maxlen: 24
147.45.225.0/24 maxlen: 24
147.45.226.0/24 maxlen: 24
147.45.227.0/24 maxlen: 24
147.45.228.0/24 maxlen: 24
147.45.229.0/24 maxlen: 24
147.45.230.0/24 maxlen: 24
147.45.231.0/24 maxlen: 24
147.45.232.0/24 maxlen: 24
147.45.233.0/24 maxlen: 24
147.45.234.0/24 maxlen: 24
147.45.238.0/24 maxlen: 24
147.45.240.0/24 maxlen: 24
147.45.241.0/24 maxlen: 24
147.45.242.0/24 maxlen: 24
147.45.243.0/24 maxlen: 24
147.45.244.0/24 maxlen: 24
147.45.248.0/24 maxlen: 24
147.45.252.0/24 maxlen: 24
147.45.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:21:11:6c:72:56:9a:02:78:9e:9b:30:a8:d3:1f:96:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Apr 10 18:58:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1ffb22237f413832b4b0434fdb1afcac15dc477f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:73:59:55:e0:3c:04:de:9c:81:b8:73:6e:ff:
e6:2f:1a:33:48:91:d7:5c:f4:0c:2d:b5:b9:96:70:
04:0d:b1:a8:db:5b:17:98:e4:16:54:33:23:5c:39:
5c:f0:0f:6d:a2:ee:3b:7b:11:6f:72:d6:37:66:ba:
59:69:8e:76:14:2b:ad:ad:25:05:d8:35:06:52:95:
d7:47:de:82:a1:a1:a1:0a:00:78:7c:52:6a:ad:5e:
fd:45:4e:a0:38:8d:24:15:74:27:5c:ad:29:7e:28:
67:e6:e7:15:3e:d5:91:9f:98:1e:1e:58:6c:dc:d4:
81:96:8b:ca:fa:32:35:67:cf:24:96:8e:01:c8:e3:
e0:97:55:91:f8:44:ce:c6:86:c0:77:c9:67:75:fe:
0f:62:d5:69:ac:36:02:51:db:46:e4:50:9f:9e:8f:
aa:c0:0a:41:a5:d1:b8:22:ff:1f:c2:f5:92:58:cc:
ce:d9:a9:1c:93:f6:fe:08:18:b7:6e:c7:9b:d7:d6:
5f:92:b5:fa:68:ce:f9:0a:45:a2:e5:f6:60:4e:1b:
ed:e7:c7:d6:17:5f:c3:ee:ee:32:25:e7:78:99:d0:
02:fd:e4:cb:d0:85:4f:d1:79:35:50:5a:d8:1c:ac:
2a:03:6d:bf:a6:f7:06:db:a5:0e:6f:84:d8:ff:82:
91:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:FB:22:23:7F:41:38:32:B4:B0:43:4F:DB:1A:FC:AC:15:DC:47:7F
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/H_siI39BODK0sENP2xr8rBXcR38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.101.0/24
147.45.111.0/24
147.45.132.0-147.45.137.255
147.45.139.0/24
147.45.142.0/24
147.45.145.0/24
147.45.149.0/24
147.45.152.0/24
147.45.156.0/24
147.45.162.0/24
147.45.165.0-147.45.167.255
147.45.169.0-147.45.171.255
147.45.173.0-147.45.174.255
147.45.180.0/23
147.45.186.0/23
147.45.224.0-147.45.234.255
147.45.238.0/24
147.45.240.0-147.45.244.255
147.45.248.0/24
147.45.252.0/24
147.45.255.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ea:ae:81:ad:e3:80:fd:3d:49:eb:91:da:43:e8:fe:56:aa:
16:0d:3a:6b:ec:b9:b1:c6:88:3a:97:3d:23:45:92:ff:e6:60:
00:c7:2c:5d:b9:eb:a9:0a:ca:9f:f6:10:74:4a:9c:eb:7e:8e:
1a:1f:bd:1f:80:79:b7:f5:4f:4a:f9:66:f5:7e:d3:13:6b:79:
bf:c9:27:07:f1:e8:e2:ce:4a:39:9f:ed:b5:06:89:b3:37:d2:
65:e7:14:2f:25:50:75:bb:4b:d2:d3:da:91:3b:f5:92:6a:a4:
c9:22:34:50:9f:05:06:2b:3e:b6:28:69:94:94:21:a2:a3:bc:
da:87:2e:c1:79:da:3f:6e:c6:58:9f:a3:c6:6e:4a:c8:9b:13:
0a:5c:b6:f5:1f:f2:20:fa:e4:40:fc:32:53:4d:d6:2a:28:df:
1a:24:59:ea:da:8c:fa:b2:eb:88:de:29:6c:9b:dd:de:39:90:
45:db:3c:c0:38:ef:af:8a:4d:bf:71:16:28:0d:33:d6:c7:3d:
09:bc:33:ad:0c:26:fe:1a:c8:59:eb:d4:2b:03:f8:74:3d:15:
af:a8:b7:cc:e7:89:7d:56:a4:9f:ca:d0:2f:c8:86:02:c5:02:
37:0a:73:d2:54:9c:22:65:42:99:f0:02:c4:17:f2:1d:f9:a4:
a6:1e:27:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:50 2025 by rpki-client on console.sobornost.net