Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/hnF_eLJFBxg3s29AqiANQyFycA0.roa
File: hnF_eLJFBxg3s29AqiANQyFycA0.roa (raw, json)
Hash identifier: MNEhKplkcjZOlLAc5eQg3xQQMypO8gz0Xg5RCEsxeeE=
Subject key identifier: 86:71:7F:78:B2:45:07:18:37:B3:6F:40:AA:20:0D:43:21:72:70:0D
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0194D56C858F1DD7B1227EAC4812D9E0418D
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/hnF_eLJFBxg3s29AqiANQyFycA0.roa
Signing time: Wed 05 Feb 2025 09:24:06 +0000
ROA not before: Wed 05 Feb 2025 09:24:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44889
IP address blocks: 46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.151.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.72.0/24 maxlen: 25
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.12.0/24 maxlen: 24
212.80.13.0/24 maxlen: 24
212.80.14.0/24 maxlen: 24
212.80.15.0/24 maxlen: 24
2a00:7d80::/29 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d5:6c:85:8f:1d:d7:b1:22:7e:ac:48:12:d9:e0:41:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 5 09:24:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=86717f78b245071837b36f40aa200d432172700d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6f:96:7e:a7:01:b1:40:34:f0:01:41:e6:7f:
07:84:a1:6a:26:fd:62:68:16:c6:f3:f5:98:ae:ee:
a4:0a:5b:aa:9d:1c:6e:40:97:1e:c5:40:5a:e8:d5:
c8:2d:94:47:82:0f:d4:83:5d:3d:65:95:76:73:ff:
3a:98:33:22:31:6b:d5:10:2e:b9:5c:5d:4f:7d:aa:
19:15:fc:93:b7:65:1e:f3:3d:93:3d:d2:32:de:8e:
44:84:ee:72:50:7f:05:cb:66:07:a2:a6:29:c8:b0:
2d:f0:c1:50:60:01:cf:e4:b5:e5:df:81:c1:9d:e3:
0e:c8:03:f5:d8:70:5a:1a:ab:ae:69:24:cc:55:31:
a4:b2:87:07:9f:59:50:c2:90:61:66:68:be:6e:42:
53:ce:55:1a:d0:08:89:18:02:9e:5a:0d:bc:da:d6:
57:8b:13:b6:df:65:1a:cc:4b:2f:87:57:08:90:41:
70:9c:d6:20:3f:e6:30:53:8a:24:df:b9:9b:a7:be:
f0:28:6f:dc:10:93:79:8e:e8:d2:08:bc:39:91:26:
2f:18:b8:23:7e:c0:ba:13:66:d5:e7:83:1a:77:5e:
4b:84:2d:84:1a:5e:91:37:96:38:07:53:14:84:ff:
d9:d0:7f:d3:6e:9f:1d:70:9a:69:06:d0:54:03:c3:
26:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:71:7F:78:B2:45:07:18:37:B3:6F:40:AA:20:0D:43:21:72:70:0D
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/hnF_eLJFBxg3s29AqiANQyFycA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.140.0/24
46.38.151.0/24
185.24.150.0/24
185.29.220.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
8e:40:27:24:85:90:3a:4e:90:c1:c6:d9:6a:53:86:15:b0:4c:
53:d4:56:b3:38:c5:0d:e9:b2:50:54:4a:28:c9:d1:09:ff:55:
76:f5:12:6b:13:9b:78:b7:6e:2d:78:62:02:e0:2b:03:bc:fe:
5a:1b:1a:c2:24:ff:70:e3:72:80:cf:fc:1d:c5:51:47:b9:3e:
b0:5a:6b:29:ee:be:3f:9d:bd:c2:19:6a:cc:8a:fc:d3:05:e1:
1c:ce:d7:ae:fd:1d:35:bc:04:c8:73:de:8f:f8:c1:89:49:4f:
b6:60:84:f5:b1:47:e9:85:f6:79:2c:6f:39:72:65:62:b9:f1:
aa:04:1f:b6:08:d9:3b:c4:d6:92:b4:a4:7f:d2:fe:59:ea:96:
fd:e2:81:8d:12:37:2d:b4:7e:5b:f9:71:c5:a5:96:d1:27:71:
78:85:05:c1:b2:1d:b7:97:e4:50:26:d2:95:26:62:43:07:08:
5b:fc:f4:1f:62:d4:19:53:27:0a:a8:8e:a0:2e:9e:07:60:80:
79:54:1f:cd:2d:f8:5a:bd:4d:b4:5b:fc:3d:0f:30:4c:6e:5d:
97:f5:2f:29:01:8b:8d:e1:c8:22:26:d1:bf:53:13:69:9c:4d:
88:18:66:51:bf:dd:ce:85:64:0d:d8:b2:49:04:b8:56:b4:40:
85:37:94:5d
-----BEGIN CERTIFICATE-----
MIIFNjCCBB6gAwIBAgISAZTVbIWPHdexIn6sSBLZ4EGNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjUwMjA1MDkyNDA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjcxN2Y3OGIyNDUwNzE4MzdiMzZmNDBhYTIwMGQ0MzIxNzI3MDBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2G+WfqcBsUA08AFB5n8HhKFqJv1i
aBbG8/WYru6kCluqnRxuQJcexUBa6NXILZRHgg/Ug109ZZV2c/86mDMiMWvVEC65
XF1PfaoZFfyTt2Ue8z2TPdIy3o5EhO5yUH8Fy2YHoqYpyLAt8MFQYAHP5LXl34HB
neMOyAP12HBaGquuaSTMVTGksocHn1lQwpBhZmi+bkJTzlUa0AiJGAKeWg282tZX
ixO232UazEsvh1cIkEFwnNYgP+YwU4ok37mbp77wKG/cEJN5jujSCLw5kSYvGLgj
fsC6E2bV54Mad15LhC2EGl6RN5Y4B1MUhP/Z0H/Tbp8dcJppBtBUA8MmwwIDAQAB
o4ICQjCCAj4wHQYDVR0OBBYEFIZxf3iyRQcYN7NvQKogDUMhcnANMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvaG5GX2VMSkZCeGczczI5QXFpQU5ReUZ5Y0EwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFgGCCsGAQUFBwEHAQH/BEkwRzA2BAIAATAwAwQALiaBAwQA
LiaDAwQALiaMAwQALiaXAwQAuRiWAwQBuR3cAwQF1BBAAwQF1FAAMA0EAgACMAcD
BQMqAH2AMA0GCSqGSIb3DQEBCwUAA4IBAQCOQCckhZA6TpDBxtlqU4YVsExT1Faz
OMUN6bJQVEooydEJ/1V29RJrE5t4t24teGIC4CsDvP5aGxrCJP9w43KAz/wdxVFH
uT6wWmsp7r4/nb3CGWrMivzTBeEczteu/R01vATIc96P+MGJSU+2YIT1sUfphfZ5
LG85cmViufGqBB+2CNk7xNaStKR/0v5Z6pb94oGNEjcttH5b+XHFpZbRJ3F4hQXB
sh23l+RQJtKVJmJDBwhb/PQfYtQZUycKqI6gLp4HYIB5VB/NLfhavU20W/w9DzBM
bl2X9S8pAYuN4cgiJtG/UxNpnE2IGGZRv93OhWQN2LJJBLhWtECFN5Rd
-----END CERTIFICATE-----
Generated at Sat Mar 8 04:49:48 2025 by rpki-client on console.sobornost.net