Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/HpHM50a_jGgfilr9lxA9AmemAFM.roa
File: HpHM50a_jGgfilr9lxA9AmemAFM.roa (raw, json)
Hash identifier: 2E3egs9d7zxFcKq1EQC0Mg8QLMF1f7KIT1gKeTvuzAM=
Subject key identifier: 1E:91:CC:E7:46:BF:8C:68:1F:8A:5A:FD:97:10:3D:02:67:A6:00:53
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 0193935DAD99A426915A66F032A06FFC2B61
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/HpHM50a_jGgfilr9lxA9AmemAFM.roa
Signing time: Wed 04 Dec 2024 20:30:10 +0000
ROA not before: Wed 04 Dec 2024 20:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132892
IP address blocks: 141.101.88.0/24 maxlen: 24
141.101.89.0/24 maxlen: 24
2a06:98c0:3600::/48 maxlen: 48
2a06:98c0:3601::/48 maxlen: 48
2a06:98c0:3602::/48 maxlen: 48
2a06:98c0:3603::/48 maxlen: 48
2a06:98c0:3604::/48 maxlen: 48
2a06:98c0:3605::/48 maxlen: 48
2a06:98c0:3606::/48 maxlen: 48
2a06:98c0:3607::/48 maxlen: 48
2a06:98c0:3608::/48 maxlen: 48
2a06:98c0:3609::/48 maxlen: 48
2a06:98c0:360a::/48 maxlen: 48
2a06:98c0:360b::/48 maxlen: 48
2a06:98c0:360c::/48 maxlen: 48
2a06:98c0:360d::/48 maxlen: 48
2a06:98c0:360f::/48 maxlen: 48
2a06:98c0:3610::/48 maxlen: 48
2a06:98c0:3611::/48 maxlen: 48
2a06:98c0:3613::/48 maxlen: 48
2a06:98c0:3614::/48 maxlen: 48
2a06:98c0:3615::/48 maxlen: 48
2a06:98c0:3621::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:93:5d:ad:99:a4:26:91:5a:66:f0:32:a0:6f:fc:2b:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Dec 4 20:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e91cce746bf8c681f8a5afd97103d0267a60053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6d:3d:f6:77:b7:29:37:18:62:90:9a:8a:81:
30:dd:c3:29:30:c7:75:a0:c4:68:63:53:1b:78:6c:
39:b5:ad:79:02:f2:09:d4:1e:60:7e:bb:53:60:46:
3f:21:55:24:0a:e4:ef:43:21:81:ca:ac:d2:06:25:
d9:36:e9:aa:b7:49:33:d8:79:17:2e:a1:77:6a:2f:
52:85:12:e7:d7:df:a1:38:47:00:75:81:40:d4:44:
29:1f:de:b1:cf:58:1f:22:e2:9e:b0:04:a4:cc:05:
ba:ab:1f:3b:b0:e9:77:6c:89:0b:28:08:4f:15:43:
c1:da:2b:e8:c4:20:83:ec:79:e3:74:18:88:32:cd:
0e:da:0b:82:47:b5:52:dd:3d:eb:99:6a:c8:00:eb:
a5:45:de:bc:22:69:78:be:2c:cc:6d:11:f6:2d:aa:
60:66:59:a7:eb:b2:25:72:c9:a7:3e:e2:d5:bc:21:
84:ea:d6:12:5b:bf:5a:10:b2:d1:b5:c0:60:6d:f0:
fe:24:93:87:ec:25:13:37:71:b0:45:91:02:b7:2c:
a2:bf:4f:ec:c2:79:92:23:3e:d3:2d:36:38:59:7a:
16:9f:61:29:2f:1c:16:38:7e:45:3c:aa:47:49:44:
c6:b5:56:fb:14:0f:23:00:4e:ff:ef:e2:e6:f1:98:
4a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:91:CC:E7:46:BF:8C:68:1F:8A:5A:FD:97:10:3D:02:67:A6:00:53
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/HpHM50a_jGgfilr9lxA9AmemAFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.101.88.0/23
IPv6:
2a06:98c0:3600::-2a06:98c0:360d:ffff:ffff:ffff:ffff:ffff
2a06:98c0:360f::-2a06:98c0:3611:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3613::-2a06:98c0:3615:ffff:ffff:ffff:ffff:ffff
2a06:98c0:3621::/48
Signature Algorithm: sha256WithRSAEncryption
43:5b:34:c4:39:0d:a1:67:b5:6d:91:06:e7:68:1e:27:a1:30:
b6:04:43:d6:59:1c:10:03:f3:df:a1:65:ca:8e:26:46:6f:03:
da:1d:57:17:29:9a:fb:20:0b:6a:1c:ee:2c:19:f8:d6:9f:77:
27:32:80:22:a9:70:6a:c1:f9:50:93:71:0a:96:a1:55:67:f4:
e6:09:7b:13:ad:74:94:25:5a:35:fb:6d:40:fd:72:7a:3e:82:
83:08:49:c3:3c:a0:a9:85:1d:9e:f7:b1:33:41:ad:7c:62:6c:
1a:14:d5:cf:9b:dd:df:21:be:9b:a8:bd:ba:4e:7a:48:1a:1d:
d4:db:11:2b:29:82:6e:35:cb:1a:c6:9b:43:76:ea:64:84:fa:
04:18:19:3c:99:b3:34:48:d2:09:a5:0f:4e:a1:1a:04:4d:9a:
96:05:46:30:5f:70:a3:13:bc:1d:c5:65:ea:26:68:bc:ea:63:
eb:64:37:3e:52:8a:ce:9b:50:26:ea:46:5d:de:34:b3:8c:ec:
1a:b8:1f:39:0f:29:99:6d:53:78:8f:e7:b8:ea:e6:61:f0:37:
e3:fc:a8:e9:1b:5a:06:df:70:8e:d7:19:ff:c3:fb:30:97:b4:
b7:23:88:60:c6:86:ce:9e:11:c5:45:21:6e:fd:89:39:6a:46:
02:aa:aa:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 08:04:04 2025 by rpki-client