Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/8HlXxJzXRtDKE7xrCQ9J0znNorw.roa
File: 8HlXxJzXRtDKE7xrCQ9J0znNorw.roa (raw, json)
Hash identifier: yRr5wf6PcVfF5ci/tTN1wVh8vp9/K79WmUJLlQwQHlg=
Subject key identifier: F0:79:57:C4:9C:D7:46:D0:CA:13:BC:6B:09:0F:49:D3:39:CD:A2:BC
Certificate issuer: /CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Certificate serial: 018964895B67F000985D623BDC161B78724C
Authority key identifier: 2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/8HlXxJzXRtDKE7xrCQ9J0znNorw.roa
Signing time: Mon 17 Jul 2023 15:47:50 +0000
ROA not before: Mon 17 Jul 2023 15:47:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 193.201.127.0/24 maxlen: 24
193.160.216.0/24 maxlen: 24
45.144.0.0/24 maxlen: 24
193.160.218.0/24 maxlen: 24
193.160.217.0/24 maxlen: 24
45.150.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:89:5b:67:f0:00:98:5d:62:3b:dc:16:1b:78:72:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Validity
Not Before: Jul 17 15:47:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f07957c49cd746d0ca13bc6b090f49d339cda2bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4f:07:fe:84:d4:8a:e7:57:61:ea:d7:3c:5a:
f7:f2:84:5a:d9:76:fc:44:72:17:af:bd:a4:22:ee:
5d:99:04:ea:d5:c4:bf:6f:4a:40:01:99:db:e0:d3:
23:a9:2e:b7:c6:4c:2f:05:65:9d:35:9d:93:f9:ff:
0f:98:6e:27:23:a9:75:dc:b5:b2:83:91:8e:23:31:
78:1f:4c:b8:b0:a7:3f:bb:d8:55:84:b0:1e:c4:ce:
ad:33:26:c4:a7:1d:6c:7e:53:f3:fa:68:81:60:3c:
1d:c2:61:69:e9:c4:d4:e2:cd:da:94:01:1a:58:14:
f2:78:39:3d:ea:a9:6c:74:c7:8d:ad:05:24:b8:e8:
7a:b9:90:52:b3:30:ce:0e:8c:d4:88:8a:9b:b8:ea:
47:a8:db:88:3d:cc:45:ae:ac:32:33:33:2e:5c:7e:
49:6e:7d:56:3d:8b:90:1d:f8:18:b2:ea:a3:d3:90:
c3:01:5a:65:e0:03:36:7f:42:ea:d9:a2:49:74:00:
42:ec:86:df:9f:66:d2:6c:54:da:5c:32:85:8c:5b:
34:8a:6f:b6:a9:91:02:94:d2:a7:7d:22:9a:f7:05:
b4:33:a2:be:d7:23:03:87:75:82:93:88:5a:2b:21:
9e:8d:98:c5:01:49:48:d9:96:2c:78:72:e1:90:ab:
c8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:79:57:C4:9C:D7:46:D0:CA:13:BC:6B:09:0F:49:D3:39:CD:A2:BC
X509v3 Authority Key Identifier:
keyid:2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/8HlXxJzXRtDKE7xrCQ9J0znNorw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/L1yrigmp_eI8ljX44WSu8J4XlIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.0.0/24
45.150.112.0/24
193.160.216.0-193.160.218.255
193.201.127.0/24
Signature Algorithm: sha256WithRSAEncryption
02:86:34:9b:be:b8:17:ae:72:61:71:b6:df:78:7d:39:31:f5:
5c:f6:38:d7:66:dd:e6:5f:6e:0f:33:0b:c9:a1:8a:e0:2f:48:
28:6d:8b:45:da:8a:bf:09:9a:8d:5c:54:4f:9d:de:d0:56:38:
40:55:d2:df:db:d1:4e:83:9e:a3:b9:20:15:cc:78:8e:a9:2a:
40:8f:17:5b:6e:60:9b:c9:d4:5b:ed:bb:92:7d:cb:b5:a2:51:
29:f4:4d:35:10:ae:94:6a:ef:1e:22:89:05:57:f0:5b:61:15:
c1:1c:13:c4:ec:65:01:56:c3:b5:41:a5:d1:4f:c4:14:82:00:
8d:55:4c:ab:fd:1d:8f:88:6c:4b:34:1f:8e:36:f6:12:80:67:
f6:20:72:5a:27:18:df:fc:7a:e9:a6:f0:ba:62:a3:9c:ef:1c:
67:28:b2:fd:d4:2f:32:86:40:e4:51:d5:c4:a2:da:74:bf:44:
ff:c4:cf:b1:16:b9:45:d0:11:24:63:de:54:40:59:d4:0c:a8:
7d:c6:0a:69:ec:2b:a2:d7:bf:74:8a:63:8a:85:37:4f:f1:25:
9d:d9:6f:c8:cd:22:2a:f6:e8:c3:7e:80:58:81:d6:92:9a:33:
9e:4b:80:d9:f4:b9:fe:1f:dc:3d:db:bf:30:b9:c5:2d:b9:9d:
b1:db:b3:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:00:40 2025 by rpki-client