Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/ehHUOC-KsrDs_gMWHwxvz1die_o.roa
File: ehHUOC-KsrDs_gMWHwxvz1die_o.roa (raw, json)
Hash identifier: arhLlL/LUAyqmujoO8sDxt+ZiBPHa89NZpvX92KozrM=
Subject key identifier: 7A:11:D4:38:2F:8A:B2:B0:EC:FE:03:16:1F:0C:6F:CF:57:62:7B:FA
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 01960FA27FE493147ED5C76896EF5A9E8159
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/ehHUOC-KsrDs_gMWHwxvz1die_o.roa
Signing time: Mon 07 Apr 2025 09:43:49 +0000
ROA not before: Mon 07 Apr 2025 09:43:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214790
IP address blocks: 5.181.201.0/24 maxlen: 24
45.12.28.0/24 maxlen: 24
45.85.117.0/24 maxlen: 24
45.155.120.0/24 maxlen: 24
45.158.81.0/24 maxlen: 24
89.22.192.0/23 maxlen: 24
185.36.140.0/23 maxlen: 24
185.36.142.0/23 maxlen: 24
185.225.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:a2:7f:e4:93:14:7e:d5:c7:68:96:ef:5a:9e:81:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Apr 7 09:43:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a11d4382f8ab2b0ecfe03161f0c6fcf57627bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:65:42:c9:8e:9c:83:80:68:b3:f0:9d:f4:f2:
40:6b:01:f1:6b:32:4b:54:d5:a0:57:24:e5:1e:04:
91:70:9a:12:41:cd:6c:80:d8:b3:f2:a7:95:77:8c:
6a:61:5e:19:ab:4d:aa:9f:da:60:95:cf:be:98:ae:
4b:dd:37:f4:48:95:a8:30:a2:98:51:bf:e1:ec:55:
f3:d7:ae:c3:68:2f:3a:e6:dc:e7:40:46:63:53:74:
6b:2d:6c:ed:a1:c3:1c:a9:46:31:3e:9d:89:99:18:
1b:e2:76:9f:67:9f:76:29:cf:04:90:ed:39:fa:0c:
2e:f9:70:ea:3c:d0:3c:b7:51:03:ed:53:1d:06:41:
81:f8:7d:76:01:da:21:a9:f9:bd:9b:55:0c:91:aa:
dd:1a:79:64:50:6e:f4:7a:21:8f:4f:3d:9c:12:3f:
de:01:c7:bd:10:16:99:35:78:a6:38:73:25:64:b3:
0e:52:24:fc:23:b8:4f:bd:31:42:3c:aa:33:01:08:
6f:1c:94:3f:7a:15:d2:14:27:98:27:51:19:8e:41:
85:63:c6:d4:bb:bf:b1:80:6b:48:a8:a3:74:76:22:
b9:e3:f1:70:32:9e:60:b7:d0:af:b5:45:2d:fb:35:
b7:11:35:71:31:40:f3:c6:df:5d:a8:ee:26:cb:0a:
08:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:11:D4:38:2F:8A:B2:B0:EC:FE:03:16:1F:0C:6F:CF:57:62:7B:FA
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/ehHUOC-KsrDs_gMWHwxvz1die_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.201.0/24
45.12.28.0/24
45.85.117.0/24
45.155.120.0/24
45.158.81.0/24
89.22.192.0/23
185.36.140.0/22
185.225.205.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:e9:fe:f2:bb:b9:66:3a:4d:a8:fc:43:10:8e:cf:07:ea:f7:
2c:3f:ae:78:e2:fa:14:f7:77:07:d5:34:6e:99:28:c7:20:71:
e3:1e:30:b9:6c:7b:4d:ce:d1:76:5d:d5:af:1a:9d:bc:9e:19:
e1:bb:f7:11:98:17:65:8b:34:52:d8:98:5a:c2:8c:6f:45:dc:
04:2d:b0:04:d3:da:64:92:b6:98:1b:c3:35:3d:b2:dd:f1:4d:
0a:60:19:47:c2:48:b4:55:46:e6:97:7b:69:dd:91:03:57:21:
92:08:7f:d0:ab:46:50:3e:a4:c6:10:84:55:57:30:82:88:51:
32:0e:ce:08:f2:50:44:b6:33:74:ab:3c:cd:66:b5:4b:85:b4:
a6:16:5b:c3:65:c6:d3:01:c1:30:f3:e9:af:7b:ba:67:58:68:
cb:d0:ea:68:c3:fd:72:3e:34:0a:b9:e9:c9:5b:7a:8b:aa:79:
13:fb:19:db:15:ad:2b:11:ee:1c:d8:d5:90:0e:2b:bf:c3:39:
dd:8f:61:1f:6f:d4:7c:10:aa:2b:8a:02:31:0b:80:3a:b2:9c:
3f:8a:83:5a:74:f1:c2:4c:86:28:90:19:6c:f0:e4:ef:c2:58:
0d:2c:31:9b:69:b8:d3:ed:fd:7e:36:54:cb:90:c1:3a:e4:8c:
95:42:eb:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:27 2025 by rpki-client on console.sobornost.net