Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/RH-AIRmpoYihVPluf0pHO3VIXjo.roa
File: RH-AIRmpoYihVPluf0pHO3VIXjo.roa (raw, json)
Hash identifier: GrYEx4O2SslcgmcOANRJjIt90ZXRZfWn8EblcjV8IT4=
Subject key identifier: 44:7F:80:21:19:A9:A1:88:A1:54:F9:6E:7F:4A:47:3B:75:48:5E:3A
Certificate issuer: /CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Certificate serial: 01925326DD20BBB88D6EF1D0D96BA7566E39
Authority key identifier: 8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/RH-AIRmpoYihVPluf0pHO3VIXjo.roa
Signing time: Thu 03 Oct 2024 16:11:48 +0000
ROA not before: Thu 03 Oct 2024 16:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214140
IP address blocks: 77.93.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:53:26:dd:20:bb:b8:8d:6e:f1:d0:d9:6b:a7:56:6e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Validity
Not Before: Oct 3 16:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=447f802119a9a188a154f96e7f4a473b75485e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7d:59:a6:12:f8:7d:39:cb:30:93:07:a1:a8:
e6:b5:c7:39:6f:b6:31:11:e5:b0:c6:04:68:97:56:
ad:a1:0e:4a:a6:5c:e3:a1:e8:4d:b4:47:f4:f2:97:
48:c4:64:18:39:92:ea:f3:c7:0c:9f:2d:89:ff:7c:
a4:af:03:02:e4:f3:6c:d4:15:d9:0c:d3:25:48:49:
5e:48:90:64:ed:83:25:2e:cb:f2:ab:cb:fc:f7:dd:
d1:d7:1f:ed:6d:57:52:2f:b5:36:e3:2f:ae:61:3c:
8e:5c:6f:34:e2:00:c5:59:42:a7:31:54:32:88:3c:
93:64:e8:fd:64:62:8b:e9:69:ea:ad:e0:c0:8a:f1:
5c:24:fe:3b:1c:a8:eb:9a:6e:db:b1:03:cf:6a:d4:
f3:32:d3:18:d6:7a:9c:8d:5a:04:31:f4:89:c8:1a:
ff:b4:4a:e9:2e:11:7d:2e:9d:4c:2e:49:56:81:a3:
a7:06:f9:bc:34:0e:ed:9c:3a:44:7e:97:9f:f4:89:
bf:12:7e:2f:d7:87:45:b8:c2:66:98:ae:63:e2:a8:
f5:75:a3:9b:5b:5d:f1:38:dc:d6:01:bc:72:c7:fd:
82:0b:3e:c1:29:1a:9d:af:b0:39:3f:a7:58:c1:10:
8a:49:be:44:2e:8b:d3:f8:d6:6b:e7:77:1f:96:67:
0a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7F:80:21:19:A9:A1:88:A1:54:F9:6E:7F:4A:47:3B:75:48:5E:3A
X509v3 Authority Key Identifier:
keyid:8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/RH-AIRmpoYihVPluf0pHO3VIXjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ilo0F_viXC5GfBhIXBgad3b5b_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.133.0/24
Signature Algorithm: sha256WithRSAEncryption
18:80:f1:53:02:a3:a3:6e:d9:7d:1b:45:d8:87:2e:d6:d6:30:
5c:ea:c6:7c:fb:be:43:a7:be:91:d6:3f:f3:53:1b:1b:49:d7:
66:dc:60:68:98:fa:09:3b:85:53:38:4f:2e:63:38:a2:2b:27:
57:e0:ec:9e:a6:50:b2:c6:66:c0:29:36:1e:0a:f0:a6:78:07:
10:31:e3:55:af:9e:d1:64:04:dc:40:2a:93:15:67:8a:f5:ea:
c2:2d:d0:60:33:04:91:b5:02:fb:1a:41:0d:e8:18:80:44:35:
2c:80:1d:2e:69:b2:ad:9b:8b:12:b6:9c:1e:cd:5c:84:3d:b5:
d3:5c:ac:db:6e:bd:85:cd:8e:d5:6d:15:2e:fc:41:8d:64:9d:
6c:c5:a5:61:be:e2:72:a6:b8:50:d4:f0:01:e5:7c:a3:4c:b6:
8e:30:ac:74:11:06:00:f3:4c:93:07:8e:13:d7:89:f2:d6:4e:
36:40:54:0f:a1:b1:f8:cc:93:da:76:45:10:4d:55:3a:93:8f:
27:7f:0a:b0:a7:62:74:e3:f6:05:3f:f0:5d:07:00:3d:09:be:
c4:fc:76:19:ff:94:bd:29:78:c5:d0:ca:06:60:f9:85:7a:6e:
ec:80:6b:da:13:8a:f3:e4:b4:ef:85:08:be:9b:f0:ff:79:0e:
0c:1c:b5:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:26:31 2025 by rpki-client