Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/RH-c_C366T2N_z1aBpgE1Ll4n5E.roa
File: RH-c_C366T2N_z1aBpgE1Ll4n5E.roa (raw, json)
Hash identifier: hwd4T2rxr91cL7njvOW+DLOJ5xoMkW8XsS2mxk5ZIks=
Subject key identifier: 44:7F:9C:FC:2D:FA:E9:3D:8D:FF:3D:5A:06:98:04:D4:B9:78:9F:91
Certificate issuer: /CN=ec5ada0dc900a13c83b70ac3f587fb8c2e1df030
Certificate serial: 019421B235FEB3E9FE777EF97DE94798BEA4
Authority key identifier: EC:5A:DA:0D:C9:00:A1:3C:83:B7:0A:C3:F5:87:FB:8C:2E:1D:F0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FraDckAoTyDtwrD9Yf7jC4d8DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/RH-c_C366T2N_z1aBpgE1Ll4n5E.roa
Signing time: Wed 01 Jan 2025 11:48:34 +0000
ROA not before: Wed 01 Jan 2025 11:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51580
IP address blocks: 31.193.16.0/20 maxlen: 24
46.17.152.0/21 maxlen: 24
80.66.208.0/20 maxlen: 24
89.105.76.0/22 maxlen: 24
109.238.16.0/20 maxlen: 24
141.105.152.0/21 maxlen: 24
145.14.160.0/19 maxlen: 24
178.218.148.0/22 maxlen: 24
178.250.64.0/21 maxlen: 24
185.5.180.0/22 maxlen: 24
185.55.88.0/22 maxlen: 24
185.121.148.0/22 maxlen: 24
185.139.28.0/22 maxlen: 24
185.180.180.0/23 maxlen: 24
194.110.56.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:35:fe:b3:e9:fe:77:7e:f9:7d:e9:47:98:be:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec5ada0dc900a13c83b70ac3f587fb8c2e1df030
Validity
Not Before: Jan 1 11:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=447f9cfc2dfae93d8dff3d5a069804d4b9789f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:52:d5:73:c1:c4:9a:d3:50:a6:64:b0:6b:85:
84:8b:45:8a:5f:ce:03:c4:51:c6:20:9a:31:d5:54:
34:fc:04:53:34:48:48:79:ee:2a:ba:42:45:de:48:
e5:5f:22:6f:c5:e5:c7:9a:12:74:c4:7d:9a:f6:36:
d3:e1:c3:ce:95:d8:e6:5b:e4:80:1b:28:d4:47:42:
fc:93:86:67:4c:5c:ef:61:90:9d:f4:44:aa:51:ff:
30:6f:54:7b:1d:3b:4d:58:80:d1:a7:88:c5:41:00:
9a:37:7d:fb:fe:2f:8c:f1:80:6d:f0:d4:42:38:d3:
5e:55:5b:75:6d:36:fd:1d:0e:78:57:17:bc:9d:80:
e9:bb:be:2e:06:20:11:e3:1c:f3:77:c4:53:4c:c7:
f1:5a:83:0b:ca:bd:9c:47:ab:01:26:14:ce:f1:e1:
4c:ad:6a:d3:3a:2f:77:75:bd:be:6a:93:04:74:db:
68:f3:36:b3:3d:0b:82:18:05:e4:f5:b3:58:79:78:
da:ac:e3:08:2b:e8:92:b3:ce:61:03:77:c3:f9:9d:
07:2c:d4:91:29:a5:ae:50:70:af:e6:97:bc:82:43:
2f:70:6f:52:40:d6:63:ff:f2:7c:00:bc:c4:f0:c5:
b3:44:21:4b:31:c6:4f:7b:a1:c3:25:49:85:d6:4d:
e7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7F:9C:FC:2D:FA:E9:3D:8D:FF:3D:5A:06:98:04:D4:B9:78:9F:91
X509v3 Authority Key Identifier:
keyid:EC:5A:DA:0D:C9:00:A1:3C:83:B7:0A:C3:F5:87:FB:8C:2E:1D:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FraDckAoTyDtwrD9Yf7jC4d8DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/RH-c_C366T2N_z1aBpgE1Ll4n5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/ca734b-5a0b-4a03-8131-cfefeaee865e/1/7FraDckAoTyDtwrD9Yf7jC4d8DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.16.0/20
46.17.152.0/21
80.66.208.0/20
89.105.76.0/22
109.238.16.0/20
141.105.152.0/21
145.14.160.0/19
178.218.148.0/22
178.250.64.0/21
185.5.180.0/22
185.55.88.0/22
185.121.148.0/22
185.139.28.0/22
185.180.180.0/23
194.110.56.0/22
Signature Algorithm: sha256WithRSAEncryption
57:6b:15:60:33:6a:bf:d5:c6:0a:f3:b3:7f:fd:93:1b:d9:60:
df:6f:a0:c0:e4:02:c4:b4:1c:15:44:83:48:96:16:6a:42:9d:
52:2b:2c:3d:64:4b:14:88:f9:b3:5c:fe:90:ef:db:d1:a9:19:
63:55:71:91:61:d7:06:52:85:5a:66:2c:36:ea:6a:a0:5c:aa:
25:4b:d2:42:cf:15:dd:48:f1:88:76:fb:5d:94:1a:45:c5:6a:
b6:0e:bc:31:ab:33:01:70:7a:4e:09:5a:66:da:44:17:a0:f8:
ce:bc:cb:ff:c6:d6:1d:95:04:6f:d6:1b:2d:5a:3f:f8:61:7f:
b0:6c:1f:bc:09:b8:d2:b5:aa:62:47:20:45:f4:70:f8:7a:cc:
fc:bd:5f:06:2e:ee:08:2a:9f:4b:3f:b4:1c:94:5c:15:8b:61:
9c:a2:ba:0e:4a:4d:9c:d2:e1:4e:53:68:73:bc:81:70:5f:bd:
be:dc:ff:66:f1:f6:58:d3:1b:d2:44:db:cf:4c:af:1c:62:50:
9a:35:c6:59:33:30:7f:7a:6e:48:38:5e:50:0d:1d:63:27:0a:
12:f8:12:ff:4d:98:b6:51:23:ce:37:d3:e9:1e:fb:de:d0:60:
af:18:ef:d7:95:91:13:ee:a3:ef:13:25:24:0d:f1:27:fd:b7:
02:db:56:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:41 2025 by rpki-client on console.sobornost.net