Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/hiHdWjWQLuahka1atlT38VLiwzE.roa
File: hiHdWjWQLuahka1atlT38VLiwzE.roa (raw, json)
Hash identifier: Tk93mqMhFZE5We9YOWPsAXUUExZ+yj9TVJ2JNXLXvqk=
Subject key identifier: 86:21:DD:5A:35:90:2E:E6:A1:91:AD:5A:B6:54:F7:F1:52:E2:C3:31
Certificate issuer: /CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Certificate serial: 09EB9BC6
Authority key identifier: 9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/hiHdWjWQLuahka1atlT38VLiwzE.roa
Signing time: Wed 25 May 2022 07:35:16 +0000
ROA not before: Wed 25 May 2022 07:35:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15517
IP address blocks: 80.238.136.0/24 maxlen: 24
80.238.134.0/23 maxlen: 23
80.238.139.0/24 maxlen: 24
80.238.144.0/20 maxlen: 20
80.238.140.0/22 maxlen: 22
80.238.160.0/20 maxlen: 20
45.85.92.0/22 maxlen: 22
80.238.176.0/20 maxlen: 20
80.238.129.0/24 maxlen: 24
80.238.132.0/22 maxlen: 22
80.238.128.0/17 maxlen: 17
80.238.130.0/23 maxlen: 23
80.238.130.0/24 maxlen: 24
62.65.128.0/19 maxlen: 19
62.65.137.0/24 maxlen: 24
62.65.144.0/21 maxlen: 21
62.65.143.0/24 maxlen: 24
62.65.142.0/24 maxlen: 24
62.65.141.0/24 maxlen: 24
62.65.158.0/24 maxlen: 24
62.65.153.0/24 maxlen: 24
62.65.154.0/23 maxlen: 23
62.65.156.0/23 maxlen: 23
80.238.192.0/21 maxlen: 21
80.238.200.0/22 maxlen: 22
80.238.200.0/21 maxlen: 21
80.238.208.0/21 maxlen: 21
80.238.216.0/22 maxlen: 22
80.238.226.0/23 maxlen: 23
80.238.225.0/24 maxlen: 24
80.238.223.0/24 maxlen: 24
80.238.232.0/21 maxlen: 21
80.238.230.0/23 maxlen: 23
80.238.228.0/22 maxlen: 22
80.238.236.0/22 maxlen: 22
94.78.3.0/24 maxlen: 24
94.78.0.0/18 maxlen: 18
94.78.2.0/24 maxlen: 24
2a01:330::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166435782 (0x9eb9bc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f662b3cfa8b9059068c29d46b99263ba2de50c1
Validity
Not Before: May 25 07:35:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8621dd5a35902ee6a191ad5ab654f7f152e2c331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e4:33:c8:9e:14:92:b9:5a:18:79:f1:56:43:
fb:b4:9c:0c:d2:19:f3:d0:3b:99:4f:28:31:67:f0:
9c:62:25:b9:a8:d2:7e:55:d5:39:ee:4b:c7:35:5a:
f0:1f:62:f4:d5:50:12:90:30:7a:8f:2f:18:7b:33:
66:70:c6:2f:30:8b:07:b8:7d:63:69:4a:27:e3:25:
1e:9a:12:d5:82:d7:5b:ab:48:80:2a:bb:35:87:25:
3d:8a:45:24:5c:8a:d4:2d:ea:7b:00:3c:39:b7:8d:
b3:6f:e9:64:1b:83:bf:f6:30:fd:15:89:c0:ba:23:
dd:0c:c7:dd:c1:c5:db:79:3e:19:53:36:36:2c:49:
a2:0e:73:4a:06:33:68:33:16:3b:f8:3e:78:74:00:
98:de:48:47:15:ad:a2:ed:5d:58:05:e0:ac:20:3b:
ff:d5:a9:8f:b1:c1:8c:9b:11:1e:6d:32:da:f8:1b:
dd:df:eb:ae:6e:f8:e6:29:17:84:7f:1b:a5:d1:3d:
6b:93:77:ee:f1:96:42:23:c7:27:57:83:9e:71:19:
49:6b:c0:11:5c:d7:a6:51:3d:83:3d:17:d6:73:1a:
e4:88:a5:38:c5:95:12:ee:94:f6:e2:2c:90:fd:85:
71:03:91:55:fd:36:a6:b4:83:22:15:bb:d3:a0:2b:
68:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:21:DD:5A:35:90:2E:E6:A1:91:AD:5A:B6:54:F7:F1:52:E2:C3:31
X509v3 Authority Key Identifier:
keyid:9F:66:2B:3C:FA:8B:90:59:06:8C:29:D4:6B:99:26:3B:A2:DE:50:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n2YrPPqLkFkGjCnUa5kmO6LeUME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/hiHdWjWQLuahka1atlT38VLiwzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2512c5-252b-4967-89a7-6a1f97ff8d34/1/n2YrPPqLkFkGjCnUa5kmO6LeUME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.92.0/22
62.65.128.0/19
80.238.128.0/17
94.78.0.0/18
IPv6:
2a01:330::/32
Signature Algorithm: sha256WithRSAEncryption
45:14:5f:fc:f4:93:dc:13:2c:13:10:c0:35:25:a6:4c:af:a0:
e6:cc:92:28:79:dd:2b:0d:31:20:9d:2e:bd:6d:db:4f:24:e7:
ff:34:c9:57:76:4b:cc:0a:8d:ef:44:6c:74:92:db:99:97:88:
cf:cd:0e:31:c3:80:9e:b3:ea:14:4b:4f:38:50:91:dc:08:b4:
60:f4:a8:c4:f9:bf:64:b4:3c:63:d8:18:5e:b5:4c:a2:60:51:
1d:7d:95:31:1a:31:30:76:0b:23:ef:2e:91:52:aa:a3:c2:14:
7e:da:8c:79:cb:d0:cd:e4:71:35:ee:4b:58:a5:02:84:99:b9:
9a:5e:06:b3:c3:a4:82:c1:3b:08:c2:15:b3:90:bc:e2:94:2f:
ca:e8:e5:37:39:0b:65:ad:1d:5c:72:a0:de:99:bf:a0:b4:91:
f6:ae:13:7d:77:fa:c7:e8:64:0b:c8:6b:04:34:d6:d7:ae:f8:
0e:51:3b:b5:da:c8:e6:63:a6:57:ba:0b:8a:7a:69:55:1a:34:
94:fa:15:c1:33:45:04:5b:c0:b9:53:c4:05:f4:3c:3e:5b:13:
c0:25:f1:88:5e:f0:97:c6:8d:c2:58:82:36:f8:3f:b1:48:ac:
6b:22:7a:9c:8f:fd:b3:55:7a:9a:5a:e6:9b:c0:26:bc:c5:12:
ef:02:32:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 03:26:26 2025 by rpki-client