Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HbUwyyWDC8LBpcvZD0rVPNQQ8z0.roa
File: HbUwyyWDC8LBpcvZD0rVPNQQ8z0.roa (raw, json)
Hash identifier: tRi9fPhwwR0AX/g/8Hnx7MSubRCNTi/XVWv185dtTBY=
Subject key identifier: 1D:B5:30:CB:25:83:0B:C2:C1:A5:CB:D9:0F:4A:D5:3C:D4:10:F3:3D
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019548AF441D1AF94C80B6D0099550AC28EF
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HbUwyyWDC8LBpcvZD0rVPNQQ8z0.roa
Signing time: Thu 27 Feb 2025 18:33:20 +0000
ROA not before: Thu 27 Feb 2025 18:33:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44486
IP address blocks: 5.231.232.0/24 maxlen: 24
5.231.233.0/24 maxlen: 24
77.90.3.0/24 maxlen: 24
77.90.28.0/24 maxlen: 24
89.106.92.0/24 maxlen: 24
89.106.93.0/24 maxlen: 24
89.106.94.0/24 maxlen: 24
89.106.95.0/24 maxlen: 24
89.144.30.0/24 maxlen: 24
89.144.31.0/24 maxlen: 24
89.144.33.0/24 maxlen: 24
89.144.43.0/24 maxlen: 24
89.144.44.0/24 maxlen: 24
89.144.46.0/24 maxlen: 24
89.144.47.0/24 maxlen: 24
89.144.48.0/24 maxlen: 24
89.144.49.0/24 maxlen: 24
89.144.50.0/24 maxlen: 24
89.144.51.0/24 maxlen: 24
89.144.52.0/24 maxlen: 24
89.144.53.0/24 maxlen: 24
89.144.54.0/24 maxlen: 24
89.144.55.0/24 maxlen: 24
89.144.58.0/24 maxlen: 24
89.144.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:48:af:44:1d:1a:f9:4c:80:b6:d0:09:95:50:ac:28:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 27 18:33:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1db530cb25830bc2c1a5cbd90f4ad53cd410f33d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9c:de:6a:bb:9a:e1:11:6b:39:b4:a5:c6:f3:
4a:af:c5:ad:f3:6f:1a:6e:52:ac:91:cd:ea:88:66:
d7:71:a0:15:37:a9:7c:dd:8f:09:50:a9:cc:15:34:
3a:83:e3:c2:8c:3f:99:a7:da:4e:15:f8:d3:62:74:
0f:64:41:be:57:8d:c2:47:fc:41:c6:b6:72:70:a7:
78:84:56:2b:be:ba:ff:43:46:6c:87:04:e0:50:cc:
1f:55:05:b4:b1:a1:b2:2d:91:2d:7e:98:09:c5:bd:
53:1a:8b:97:cf:fb:47:e8:06:8d:e3:0e:a6:03:58:
a9:a1:dd:00:23:90:84:1a:f1:f1:06:94:91:9f:87:
31:72:47:65:e3:14:4d:be:13:4b:27:43:3b:40:1f:
fb:5d:46:ce:3f:51:a6:ed:6f:54:f2:42:a9:ed:d0:
7f:e2:8d:1c:51:24:0d:3e:63:cf:e4:af:7d:62:c8:
ea:cb:16:61:7d:83:90:c4:30:56:c1:23:09:65:ef:
83:c8:1b:33:e3:21:ed:e5:37:45:d7:60:f7:41:83:
33:4c:7b:ae:d5:92:3b:56:00:81:86:74:95:42:68:
0d:83:f5:4d:0e:a7:c6:d2:6a:f2:bd:12:b3:60:22:
ea:8b:e6:5b:54:6a:5d:68:31:5d:4e:c0:71:2a:4e:
7d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B5:30:CB:25:83:0B:C2:C1:A5:CB:D9:0F:4A:D5:3C:D4:10:F3:3D
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HbUwyyWDC8LBpcvZD0rVPNQQ8z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.231.232.0/23
77.90.3.0/24
77.90.28.0/24
89.106.92.0/22
89.144.30.0/23
89.144.33.0/24
89.144.43.0-89.144.44.255
89.144.46.0-89.144.55.255
89.144.58.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:c5:6e:c8:93:dc:77:cb:81:7e:86:6c:cd:b8:d7:05:b1:97:
17:e8:8a:99:c2:ef:75:15:24:7a:ff:b9:7e:f9:3a:1e:2d:8b:
2b:dc:ba:a2:b7:08:2d:de:c2:8a:47:5e:e6:80:a3:ff:c8:a3:
46:2a:ce:54:e1:7f:af:4b:32:de:89:d4:9a:04:a2:4d:e8:62:
fb:65:c7:b3:27:aa:74:ce:34:08:27:d1:88:e3:c5:2b:54:dc:
65:e9:ec:18:ea:e7:98:da:34:db:e2:0c:d4:b3:e7:83:89:a7:
37:9d:7f:d2:9c:3b:4a:c4:05:b4:0d:3e:ef:07:04:7d:74:a5:
e0:55:51:53:12:ec:3a:39:f0:1b:8a:4f:03:92:ba:8c:0d:8f:
0c:62:f4:5d:46:aa:02:15:6b:b5:c8:69:fb:49:eb:14:aa:b5:
cf:55:d6:39:b8:92:4e:28:6c:28:22:84:65:59:9b:f3:37:f6:
e1:d3:5c:e0:8b:74:b2:75:0d:31:cd:79:93:3a:e6:82:93:f7:
4c:b0:a7:e9:3d:c4:54:b3:c2:5b:02:a0:52:d1:a6:d5:e6:42:
6f:b6:61:88:a7:e7:fb:3b:18:3e:5a:1e:a5:bd:5f:9a:cf:1b:
39:7f:11:72:68:2d:3f:4a:8c:f0:f3:ba:82:99:ec:14:64:9d:
3f:99:58:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:26:39 2025 by rpki-client