Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/HJ_wo5Jbuxp4qnrZBQUIi65JhWY.roa
File: HJ_wo5Jbuxp4qnrZBQUIi65JhWY.roa (raw, json)
Hash identifier: DSNEOkNbVTMJpehcwCD5uUrnbWY2S5duj9hYg12RRR8=
Subject key identifier: 1C:9F:F0:A3:92:5B:BB:1A:78:AA:7A:D9:05:05:08:8B:AE:49:85:66
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0194221FFD81F8E2A0BFA848B98E555B81BB
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/HJ_wo5Jbuxp4qnrZBQUIi65JhWY.roa
Signing time: Wed 01 Jan 2025 13:48:29 +0000
ROA not before: Wed 01 Jan 2025 13:48:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35830
IP address blocks: 5.181.171.0/24 maxlen: 24
5.183.253.0/24 maxlen: 24
5.183.254.0/24 maxlen: 24
45.66.210.0/24 maxlen: 24
45.66.211.0/24 maxlen: 24
45.132.186.0/24 maxlen: 24
45.132.187.0/24 maxlen: 24
45.138.102.0/24 maxlen: 24
45.138.103.0/24 maxlen: 24
45.148.125.0/24 maxlen: 24
45.148.126.0/24 maxlen: 24
45.148.127.0/24 maxlen: 24
141.98.85.0/24 maxlen: 24
141.98.86.0/24 maxlen: 24
185.61.216.0/24 maxlen: 24
185.61.220.0/24 maxlen: 24
185.81.144.0/24 maxlen: 24
185.81.145.0/24 maxlen: 24
185.88.37.0/24 maxlen: 24
185.88.101.0/24 maxlen: 24
185.88.102.0/24 maxlen: 24
185.88.103.0/24 maxlen: 24
185.96.37.0/24 maxlen: 24
185.102.112.0/24 maxlen: 24
185.102.113.0/24 maxlen: 24
213.232.121.0/24 maxlen: 24
213.232.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:fd:81:f8:e2:a0:bf:a8:48:b9:8e:55:5b:81:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 1 13:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c9ff0a3925bbb1a78aa7ad90505088bae498566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:50:47:79:c5:57:a7:64:a1:b1:fa:92:36:db:
71:8f:b1:57:c8:1c:92:04:67:e0:21:4b:dc:5f:2d:
27:12:e8:cb:a1:02:f5:2c:b4:9e:15:a9:e0:ae:3e:
be:f3:f7:d2:f0:31:7f:04:0e:bc:ac:f7:6f:a2:bc:
30:4d:07:24:43:1e:ee:88:a0:17:a9:b8:55:f0:00:
d3:19:a7:71:2a:85:d7:3f:66:10:f8:07:1e:8a:49:
8c:2f:81:fc:d0:1c:69:af:30:79:b6:db:3c:56:5a:
73:36:e1:5a:5a:14:87:a2:e8:c0:51:0f:f2:c1:29:
fd:41:46:47:66:9b:94:d3:a6:2c:21:1f:da:3a:51:
64:eb:71:4f:39:47:77:0d:34:27:56:13:f7:49:80:
73:e1:7a:2f:66:09:a9:61:04:02:af:b6:a6:08:e7:
1e:0d:be:c1:14:b9:a0:71:e3:03:c6:71:54:63:b7:
61:c3:c9:74:bb:b2:30:cf:c6:c1:dd:42:3e:d7:eb:
9e:80:96:76:ff:da:c2:ed:21:96:84:b7:f2:6e:10:
9a:5e:07:c4:98:b7:dd:95:e5:62:6c:1f:29:f5:3a:
82:b5:e9:09:69:5e:81:ac:42:21:d4:9b:0e:37:1f:
89:31:be:c1:10:10:54:96:e1:5c:11:f6:eb:93:0a:
69:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9F:F0:A3:92:5B:BB:1A:78:AA:7A:D9:05:05:08:8B:AE:49:85:66
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/HJ_wo5Jbuxp4qnrZBQUIi65JhWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.171.0/24
5.183.253.0-5.183.254.255
45.66.210.0/23
45.132.186.0/23
45.138.102.0/23
45.148.125.0-45.148.127.255
141.98.85.0-141.98.86.255
185.61.216.0/24
185.61.220.0/24
185.81.144.0/23
185.88.37.0/24
185.88.101.0-185.88.103.255
185.96.37.0/24
185.102.112.0/23
213.232.121.0/24
213.232.123.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ea:e2:a9:dc:f7:97:81:97:c9:53:16:e5:5d:48:98:8e:de:
c0:20:20:81:23:9c:7f:d2:96:f5:f9:56:37:aa:c8:59:5d:46:
2d:e7:f4:2c:f2:eb:6b:87:6b:a7:a9:55:14:03:e6:37:97:eb:
08:44:51:a5:88:db:73:81:2d:bb:87:7c:3b:90:7b:23:ac:7c:
ac:3c:34:43:52:dc:3e:1b:cc:df:f5:f3:c8:2e:51:aa:b3:ab:
e9:ca:7d:5b:04:0f:91:21:51:10:b1:ae:74:9a:cc:50:da:f9:
33:31:09:f0:1f:12:e5:6d:41:ca:37:a9:d3:4d:63:bc:02:54:
e4:fd:d1:b9:15:21:35:7a:0c:b1:e9:ad:cf:69:58:b6:30:3f:
ac:1d:d3:70:b9:c2:40:9c:3f:d4:4f:e6:c9:28:ea:53:e1:74:
62:6e:11:6e:03:2a:ae:a4:94:47:f8:bb:38:4f:46:65:36:10:
07:3a:3f:c9:f6:f8:0c:67:28:f3:a5:14:85:60:f6:17:42:0d:
89:f3:a8:84:ae:0a:4d:09:ee:0e:a8:aa:a6:8c:dd:b9:61:62:
fa:13:a7:5b:27:08:42:ad:2a:cb:e8:73:77:62:9c:05:e4:4a:
dd:e1:68:ce:2f:0b:b0:f4:26:1c:ce:c9:73:0c:62:7a:2d:39:
c3:f2:51:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:49:23 2025 by rpki-client