Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HYxJ1VAyR99hoGRLIJ8tIUEgeKQ.roa
File: HYxJ1VAyR99hoGRLIJ8tIUEgeKQ.roa (raw, json)
Hash identifier: cM04unmLauwDr+QlodVD1T3vL4SksjOVtceNs45tRc0=
Subject key identifier: 1D:8C:49:D5:50:32:47:DF:61:A0:64:4B:20:9F:2D:21:41:20:78:A4
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019529BA30E551F09DCD1930EB024575FB5D
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HYxJ1VAyR99hoGRLIJ8tIUEgeKQ.roa
Signing time: Fri 21 Feb 2025 18:17:02 +0000
ROA not before: Fri 21 Feb 2025 18:17:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.175.140.0/24 maxlen: 24
5.175.142.0/24 maxlen: 24
5.175.220.0/24 maxlen: 24
5.231.79.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
77.90.7.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.118.162.0/24 maxlen: 24
87.239.130.0/24 maxlen: 24
89.106.70.0/24 maxlen: 24
89.144.25.0/24 maxlen: 24
89.144.34.0/24 maxlen: 24
89.144.35.0/24 maxlen: 24
89.144.60.0/24 maxlen: 24
94.249.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:29:ba:30:e5:51:f0:9d:cd:19:30:eb:02:45:75:fb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 21 18:17:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d8c49d5503247df61a0644b209f2d21412078a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:9d:63:a7:0c:f4:9d:5d:6c:69:ff:bb:37:67:
27:26:0d:8c:2c:44:07:80:66:49:1f:db:10:bd:1e:
ac:12:82:83:5d:c6:21:16:02:99:88:87:23:e4:fd:
6f:5d:ad:ab:a7:5e:93:0d:6c:f7:73:68:73:76:7d:
4d:49:35:ca:e4:7c:0d:f7:bb:e4:ed:a1:26:d0:66:
6f:ad:e7:ea:01:28:dc:f9:86:92:4f:49:7c:3e:82:
b9:a4:f7:bd:fa:a2:16:d3:86:fb:c2:71:34:94:07:
f8:8d:8e:78:89:ca:1b:86:94:d8:ec:e8:83:b9:70:
ed:8c:0b:c4:e5:24:6e:a2:55:36:06:65:eb:0f:d4:
83:4c:f9:be:3c:8f:33:dc:b4:37:e6:e3:5f:a3:71:
10:78:17:de:23:86:99:4a:1d:f9:27:51:eb:9f:27:
59:3b:8e:b2:3a:a3:14:2a:d2:a3:5d:8f:29:d4:a0:
74:91:b2:2d:7a:f3:be:09:cf:f3:f5:50:4b:bb:3f:
c8:a8:96:a4:34:c7:6c:ea:85:31:db:8a:ca:81:08:
d1:8e:da:29:e0:75:d0:5b:5c:78:d2:3b:ed:8f:92:
ea:ce:69:27:b3:9e:43:4c:3d:d1:bd:b0:02:bb:83:
39:8e:41:8a:0c:af:bf:72:f2:3b:c6:ec:56:d5:47:
37:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8C:49:D5:50:32:47:DF:61:A0:64:4B:20:9F:2D:21:41:20:78:A4
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HYxJ1VAyR99hoGRLIJ8tIUEgeKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.175.140.0/24
5.175.142.0/24
5.175.220.0/24
5.231.79.0/24
5.231.82.0/24
77.90.7.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.118.162.0/24
87.239.130.0/24
89.106.70.0/24
89.144.25.0/24
89.144.34.0/23
89.144.60.0/24
94.249.212.0/24
Signature Algorithm: sha256WithRSAEncryption
88:0e:c9:64:f4:d0:47:cb:e4:88:5a:88:1d:bc:ca:f5:06:fa:
41:71:94:85:f3:bd:3d:78:ba:63:b8:c7:da:49:ec:55:66:59:
03:60:b1:b7:3a:d2:f0:18:47:ca:6b:c1:da:4b:97:c7:e6:7b:
dc:69:21:46:e3:34:2a:6f:06:bd:72:72:29:e7:c4:65:1c:2c:
ab:3a:aa:68:2c:74:d2:31:d9:b4:e7:b0:c3:ce:2c:49:54:ab:
e2:74:74:78:c8:b7:82:9d:54:1d:a5:15:40:69:39:85:d3:92:
ee:98:a6:57:1e:89:ae:2b:64:e8:5b:3b:eb:70:03:8f:84:87:
6c:a1:f0:f7:4b:b6:d5:7d:6c:43:7e:db:1c:f2:21:23:0e:3f:
aa:bd:49:01:32:bf:b6:7d:3e:1d:d8:83:32:5e:af:93:2b:f6:
77:72:3d:6c:97:91:46:c0:75:2a:d1:68:c1:d2:b3:12:c7:8b:
4d:fd:57:75:09:3b:f0:86:4d:78:d0:70:c5:74:64:4b:d9:53:
2f:58:1f:63:55:3b:79:86:78:ef:cd:f4:f1:c8:6f:dc:e2:d3:
1f:13:f2:c4:a6:61:ea:f1:ab:70:e9:ec:d2:95:d1:43:82:ac:
52:23:93:cf:40:5d:d2:d3:3c:ef:35:2e:4f:b4:a4:93:d4:b2:
79:c4:d4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:47:20 2025 by rpki-client on console.sobornost.net