Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Hl2-d_vo6QL2D7GYOGpl4-sKoH4.roa
File: Hl2-d_vo6QL2D7GYOGpl4-sKoH4.roa (raw, json)
Hash identifier: yGGHoAr60GL12+m9O0w81tjzHnecgzxIwu/vKph8zVs=
Subject key identifier: 1E:5D:BE:77:FB:E8:E9:02:F6:0F:B1:98:38:6A:65:E3:EB:0A:A0:7E
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 019565B86D711F75530BB99B8C4867F7561D
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Hl2-d_vo6QL2D7GYOGpl4-sKoH4.roa
Signing time: Wed 05 Mar 2025 09:52:20 +0000
ROA not before: Wed 05 Mar 2025 09:52:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7018
IP address blocks: 5.182.28.0/22 maxlen: 22
45.67.117.0/24 maxlen: 24
45.150.168.0/22 maxlen: 22
45.151.196.0/22 maxlen: 22
89.40.161.0/24 maxlen: 24
91.242.70.0/24 maxlen: 24
91.242.71.0/24 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.73.0/24 maxlen: 24
91.242.75.0/24 maxlen: 24
91.242.105.0/24 maxlen: 24
91.242.123.0/24 maxlen: 24
91.242.124.0/24 maxlen: 24
91.242.126.0/24 maxlen: 24
91.242.127.0/24 maxlen: 24
185.40.105.0/24 maxlen: 24
185.180.145.0/24 maxlen: 24
193.31.104.0/22 maxlen: 22
194.50.200.0/24 maxlen: 24
194.50.201.0/24 maxlen: 24
195.138.103.0/24 maxlen: 24
195.138.104.0/22 maxlen: 24
195.138.104.0/24 maxlen: 24
195.138.107.0/24 maxlen: 24
195.138.109.0/24 maxlen: 24
195.138.110.0/24 maxlen: 24
195.138.111.0/24 maxlen: 24
195.138.113.0/24 maxlen: 24
195.138.114.0/24 maxlen: 24
195.138.115.0/24 maxlen: 24
195.138.116.0/24 maxlen: 24
195.138.118.0/24 maxlen: 24
195.138.120.0/24 maxlen: 24
195.138.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:65:b8:6d:71:1f:75:53:0b:b9:9b:8c:48:67:f7:56:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Mar 5 09:52:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e5dbe77fbe8e902f60fb198386a65e3eb0aa07e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:ac:d6:8e:b5:72:99:37:98:89:fa:5f:ce:
d7:07:34:08:af:d7:39:16:c1:48:c5:d3:50:b7:66:
00:fb:90:d6:65:0c:6c:89:d5:29:ef:99:cb:b1:0f:
a8:91:3e:ed:4d:e7:97:a0:50:39:14:1a:72:c9:1f:
e9:ae:e6:70:de:42:48:fa:45:4e:da:e7:1e:0c:39:
6f:9d:ca:19:23:62:14:da:f2:f5:12:7d:a9:14:f5:
a5:88:0c:64:d0:a3:55:20:c5:21:19:30:ca:d0:cd:
0b:20:a6:fb:2c:22:91:c7:cb:92:15:e4:db:20:79:
ea:d6:eb:09:21:df:20:46:d7:3d:f1:6f:70:70:a6:
6e:16:d1:50:a4:ca:53:45:9d:9e:a1:a8:0a:fe:4f:
f3:e2:73:58:c7:a1:25:43:8d:06:3c:bd:36:a6:1f:
8c:f4:02:9e:03:a2:82:c0:de:6a:3b:39:39:64:45:
89:f9:63:ce:e8:c6:94:3c:e2:e6:02:6b:e8:94:52:
26:e8:10:37:fb:40:7d:02:57:c2:e4:8e:dc:79:c4:
67:be:27:d3:1a:e4:cf:01:d6:3e:30:4b:0c:14:dc:
56:6f:06:9d:eb:c0:7d:ab:7e:cf:d8:3b:f1:c6:83:
32:0d:74:7a:81:49:d9:8b:f9:4d:61:dd:68:ba:ed:
26:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:5D:BE:77:FB:E8:E9:02:F6:0F:B1:98:38:6A:65:E3:EB:0A:A0:7E
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Hl2-d_vo6QL2D7GYOGpl4-sKoH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.28.0/22
45.67.117.0/24
45.150.168.0/22
45.151.196.0/22
89.40.161.0/24
91.242.70.0-91.242.73.255
91.242.75.0/24
91.242.105.0/24
91.242.123.0-91.242.124.255
91.242.126.0/23
185.40.105.0/24
185.180.145.0/24
193.31.104.0/22
194.50.200.0/23
195.138.103.0-195.138.107.255
195.138.109.0-195.138.111.255
195.138.113.0-195.138.116.255
195.138.118.0/24
195.138.120.0/24
195.138.124.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:8f:e5:fc:ec:3d:38:30:5a:23:2c:77:a1:ee:ee:31:20:49:
73:c4:c4:65:ee:04:63:05:b6:57:60:b0:76:b8:11:ba:40:fc:
cd:9b:94:88:14:ba:7a:4c:42:51:9f:0c:c8:4a:4b:8d:51:d6:
b6:fa:21:c5:2c:fd:6e:45:e4:32:5d:eb:11:40:a1:b8:8a:89:
f6:8c:27:2d:e3:1c:e7:fe:10:14:26:54:83:26:fa:6e:20:6c:
77:2d:d1:e0:88:3b:37:a3:d0:0d:fb:98:01:d3:7f:55:9d:ba:
e2:06:6c:3d:be:37:ef:17:31:ec:70:06:d8:ed:3e:1d:f2:1a:
61:4d:ca:38:4d:e1:90:70:bd:7b:3d:f6:d2:a1:a4:73:c9:e8:
99:c6:68:cf:3c:e7:6d:64:d1:c8:46:ab:50:4a:fc:30:ff:a0:
31:08:50:da:4f:88:6f:ff:3f:28:5d:3b:2d:73:f3:9f:cd:5a:
0e:c7:5c:44:cc:91:80:9e:8b:3d:ed:97:7f:f9:1c:55:29:e8:
ca:bf:94:c8:4f:c9:f1:e9:ee:49:d6:e7:44:ec:b3:9d:21:53:
2c:59:e1:f8:b7:ff:5f:ce:88:1d:43:93:ca:83:58:64:24:9b:
aa:ef:6c:6b:5b:8a:de:e0:90:6c:42:b8:5a:94:86:49:18:7f:
14:ff:d7:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:50:27 2025 by rpki-client