Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/hc3hu-qKX0QS37zGh1S8zI4cn38.roa
File: hc3hu-qKX0QS37zGh1S8zI4cn38.roa (raw, json)
Hash identifier: S2wcbsC4AnMBWef8OSDGgKHFhIeXwoEJX/QuSimKgR8=
Subject key identifier: 85:CD:E1:BB:EA:8A:5F:44:12:DF:BC:C6:87:54:BC:CC:8E:1C:9F:7F
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 018457A6963621582F28D9FB16E6E56ABCFA
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/hc3hu-qKX0QS37zGh1S8zI4cn38.roa
Signing time: Tue 08 Nov 2022 14:30:45 +0000
ROA not before: Tue 08 Nov 2022 14:30:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9125
IP address blocks: 93.93.192.0/21 maxlen: 21
93.93.199.0/24 maxlen: 24
92.42.253.0/24 maxlen: 24
92.42.252.0/24 maxlen: 24
92.42.248.0/22 maxlen: 22
92.42.254.0/24 maxlen: 24
92.42.255.0/24 maxlen: 24
89.23.93.0/24 maxlen: 24
89.23.68.0/23 maxlen: 23
89.23.70.0/24 maxlen: 24
89.23.65.0/24 maxlen: 24
89.23.75.0/24 maxlen: 24
89.23.74.0/24 maxlen: 24
178.254.134.0/24 maxlen: 24
178.254.133.0/24 maxlen: 24
178.254.136.0/22 maxlen: 22
178.254.144.0/20 maxlen: 20
178.254.140.0/22 maxlen: 22
178.254.160.0/22 maxlen: 22
178.254.169.0/24 maxlen: 24
178.254.175.0/24 maxlen: 24
178.254.177.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
178.254.184.0/23 maxlen: 24
178.254.128.0/21 maxlen: 21
95.140.112.0/22 maxlen: 22
95.140.116.0/22 maxlen: 22
95.140.115.0/24 maxlen: 24
95.140.120.0/23 maxlen: 23
95.140.124.0/22 maxlen: 22
95.140.125.0/24 maxlen: 24
178.254.188.0/22 maxlen: 24
178.254.187.0/24 maxlen: 24
185.157.44.0/24 maxlen: 24
109.111.254.0/24 maxlen: 24
217.169.208.0/22 maxlen: 22
217.169.208.0/20 maxlen: 20
217.169.212.0/22 maxlen: 22
217.169.219.0/24 maxlen: 24
217.169.216.0/22 maxlen: 22
217.169.220.0/22 maxlen: 22
5.172.38.0/24 maxlen: 24
5.172.33.0/24 maxlen: 24
5.172.34.0/23 maxlen: 23
5.172.36.0/23 maxlen: 24
109.111.226.0/24 maxlen: 24
109.111.225.0/24 maxlen: 24
109.111.224.0/24 maxlen: 24
109.111.232.0/22 maxlen: 22
109.111.229.0/24 maxlen: 24
109.111.228.0/24 maxlen: 24
109.111.230.0/23 maxlen: 23
109.111.227.0/24 maxlen: 24
109.111.240.0/24 maxlen: 24
109.111.236.0/22 maxlen: 22
109.111.246.0/24 maxlen: 24
109.111.243.0/24 maxlen: 24
109.111.244.0/24 maxlen: 24
109.111.250.0/24 maxlen: 24
109.111.252.0/23 maxlen: 24
109.111.247.0/24 maxlen: 24
109.111.248.0/24 maxlen: 24
2a02:b58::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:a6:96:36:21:58:2f:28:d9:fb:16:e6:e5:6a:bc:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Nov 8 14:30:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85cde1bbea8a5f4412dfbcc68754bccc8e1c9f7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:35:a4:49:d3:b7:ff:7d:14:35:81:29:26:d8:
67:e2:71:8d:f6:93:0f:a9:ac:27:66:8e:9b:da:d9:
7c:a4:0f:2e:b3:62:27:95:9e:0c:16:47:06:f9:0d:
b9:e8:d5:df:6b:c3:a3:e9:22:43:06:5b:35:68:cd:
a2:45:f3:e6:d2:de:65:77:3a:03:6b:a4:c6:b9:04:
ab:65:e2:93:ca:b8:3f:38:5f:c7:d0:52:91:f1:4a:
d3:ba:37:e2:de:bd:21:61:73:10:25:96:59:5b:35:
72:3b:a9:38:18:17:2d:c1:ec:4c:b6:1d:53:e4:82:
23:96:81:7a:0f:51:60:bf:cb:87:3e:a2:c3:70:49:
b9:d2:30:3e:47:71:be:1b:0e:bd:b6:02:38:2f:d4:
cf:09:00:e2:73:46:d0:29:83:02:b1:1a:f6:a4:bb:
44:ca:64:ad:1c:21:06:b2:88:47:27:3c:58:3f:b0:
14:8c:f1:02:9e:ed:3d:47:54:86:0f:d6:13:dd:6d:
95:57:85:bb:58:76:f2:79:38:3b:e4:77:ae:d0:5d:
bd:f1:c6:02:86:5b:d1:b5:93:65:a6:bb:a4:e8:b9:
25:de:1b:78:2e:f4:f4:ed:82:08:8d:53:aa:ee:3f:
7a:1f:f7:79:f1:22:03:9a:92:64:23:15:a7:60:e5:
62:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:CD:E1:BB:EA:8A:5F:44:12:DF:BC:C6:87:54:BC:CC:8E:1C:9F:7F
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/hc3hu-qKX0QS37zGh1S8zI4cn38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.33.0-5.172.38.255
89.23.65.0/24
89.23.68.0-89.23.70.255
89.23.74.0/23
89.23.93.0/24
92.42.248.0/21
93.93.192.0/21
95.140.112.0-95.140.121.255
95.140.124.0/22
109.111.224.0-109.111.240.255
109.111.243.0-109.111.244.255
109.111.246.0-109.111.248.255
109.111.250.0/24
109.111.252.0-109.111.254.255
178.254.128.0-178.254.163.255
178.254.169.0/24
178.254.175.0/24
178.254.177.0/24
178.254.182.0/24
178.254.184.0/23
178.254.187.0-178.254.191.255
185.157.44.0/24
217.169.208.0/20
IPv6:
2a02:b58::/32
Signature Algorithm: sha256WithRSAEncryption
71:12:71:a6:b8:39:a3:0e:d6:03:69:41:13:9f:df:7d:11:56:
32:ac:2d:0a:1a:74:78:aa:93:f9:c7:4a:3c:48:be:47:ec:19:
cc:48:ba:3a:57:06:ce:f6:53:0a:3a:66:0b:23:cc:3b:0e:cd:
95:f3:43:06:a5:26:02:ee:a6:9b:a2:15:1f:33:98:65:b6:e7:
0f:eb:5c:70:1d:ef:b7:fe:8b:0c:a6:95:94:74:14:72:6c:e0:
c1:4e:04:fe:fa:74:ff:c3:ff:a0:21:de:51:17:d5:6e:0e:0d:
2d:31:e4:76:98:ec:4d:77:6d:6a:5e:63:15:87:36:b0:cc:00:
33:26:63:47:19:b3:95:f4:eb:9a:09:34:c5:a4:cb:e4:46:46:
40:77:c0:67:e4:0c:f0:a0:ba:10:f4:75:ba:1f:e2:0a:e3:82:
27:f2:8d:44:db:0d:be:73:7a:a9:25:86:22:05:77:2e:a3:d2:
7b:04:2d:fd:31:94:b4:b4:6e:93:c7:a7:81:0a:f2:4e:e9:6f:
b5:39:b8:08:6a:3c:78:fd:1c:95:67:7d:a8:1f:d5:56:f8:70:
ff:65:7b:b7:f7:09:c8:32:0f:8d:24:0a:27:f1:96:c1:20:3e:
96:5a:0b:bd:1f:5d:22:b6:5f:cd:f2:8b:f6:0f:88:c6:a4:e9:
5d:22:4c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net