Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/HFMZ1q-r3MuZMQcK3UqqF5cIJJY.roa
File: HFMZ1q-r3MuZMQcK3UqqF5cIJJY.roa (raw, json)
Hash identifier: ED9X39Yv0vyOE9Z3eqgUV3zuKXXf++Lp9vxIGsyDXic=
Subject key identifier: 1C:53:19:D6:AF:AB:DC:CB:99:31:07:0A:DD:4A:AA:17:97:08:24:96
Certificate issuer: /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial: 019424B3D852CE8300CE38546FD350C62D09
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/HFMZ1q-r3MuZMQcK3UqqF5cIJJY.roa
Signing time: Thu 02 Jan 2025 01:49:13 +0000
ROA not before: Thu 02 Jan 2025 01:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35470
IP address blocks: 31.3.96.0/21 maxlen: 24
37.34.48.0/21 maxlen: 24
37.230.96.0/21 maxlen: 24
79.170.88.0/21 maxlen: 24
81.4.84.0/22 maxlen: 24
83.96.200.0/22 maxlen: 24
83.96.204.0/22 maxlen: 24
83.96.212.0/22 maxlen: 24
83.96.216.0/22 maxlen: 24
83.96.220.0/22 maxlen: 24
83.96.236.0/22 maxlen: 24
83.96.240.0/22 maxlen: 24
83.96.244.0/22 maxlen: 24
83.96.252.0/22 maxlen: 24
85.10.176.0/22 maxlen: 24
85.10.184.0/22 maxlen: 22
85.10.185.0/24 maxlen: 24
85.10.188.0/22 maxlen: 22
85.222.224.0/21 maxlen: 24
85.222.224.0/22 maxlen: 24
89.31.96.0/21 maxlen: 24
89.31.98.0/23 maxlen: 24
93.191.128.0/21 maxlen: 24
93.191.134.0/24 maxlen: 24
141.138.192.0/20 maxlen: 24
141.138.207.0/24 maxlen: 24
178.18.80.0/20 maxlen: 24
185.3.208.0/22 maxlen: 24
185.21.188.0/22 maxlen: 24
185.96.4.0/22 maxlen: 24
185.110.172.0/22 maxlen: 24
185.110.200.0/22 maxlen: 24
193.138.204.0/22 maxlen: 24
194.60.207.0/24 maxlen: 24
213.187.240.0/21 maxlen: 24
2a02:348::/32 maxlen: 32
2a02:348:3::/48 maxlen: 48
2a02:348:14::/48 maxlen: 48
2a02:348:15::/48 maxlen: 48
2a02:348:1e::/48 maxlen: 48
2a02:348:28::/48 maxlen: 48
2a02:348:29::/48 maxlen: 48
2a02:348:32::/48 maxlen: 48
2a02:348:33::/48 maxlen: 48
2a02:348:35::/48 maxlen: 48
2a02:348:36::/48 maxlen: 48
2a02:348:37::/48 maxlen: 48
2a02:348:38::/48 maxlen: 48
2a02:348:39::/48 maxlen: 48
2a02:348:3a::/48 maxlen: 48
2a02:348:3b::/48 maxlen: 48
2a02:348:3c::/48 maxlen: 48
2a02:348:46::/48 maxlen: 48
2a02:348:47::/48 maxlen: 48
2a02:348:4b::/48 maxlen: 48
2a02:348:4c::/48 maxlen: 48
2a02:348:4f::/48 maxlen: 48
2a02:348:50::/48 maxlen: 48
2a02:348:53::/48 maxlen: 48
2a02:348:54::/48 maxlen: 48
2a02:348:55::/48 maxlen: 48
2a02:348:56::/48 maxlen: 48
2a02:348:57::/48 maxlen: 48
2a02:348:58::/48 maxlen: 48
2a02:348:59::/48 maxlen: 48
2a02:348:5a::/48 maxlen: 48
2a02:348:5b::/48 maxlen: 48
2a02:348:5d::/48 maxlen: 48
2a02:348:5e::/48 maxlen: 48
2a02:348:5f::/48 maxlen: 48
2a02:348:60::/48 maxlen: 48
2a02:348:61::/48 maxlen: 48
2a02:348:62::/48 maxlen: 48
2a02:348:63::/48 maxlen: 48
2a02:348:6e::/48 maxlen: 48
2a02:348:6f::/48 maxlen: 48
2a02:348:70::/48 maxlen: 48
2a02:348:71::/48 maxlen: 48
2a02:348:73::/48 maxlen: 48
2a02:348:74::/48 maxlen: 48
2a02:348:75::/48 maxlen: 48
2a02:348:76::/48 maxlen: 48
2a02:348:77::/48 maxlen: 48
2a02:348:78::/48 maxlen: 48
2a02:348:79::/48 maxlen: 48
2a02:348:7b::/48 maxlen: 48
2a02:348:7c::/48 maxlen: 48
2a02:348:7d::/48 maxlen: 48
2a02:348:7e::/48 maxlen: 48
2a02:348:7f::/48 maxlen: 48
2a02:348:80::/48 maxlen: 48
2a02:348:81::/48 maxlen: 48
2a02:348:82::/48 maxlen: 48
2a02:348:83::/48 maxlen: 48
2a02:348:84::/48 maxlen: 48
2a02:348:85::/48 maxlen: 48
2a02:348:86::/48 maxlen: 48
2a02:348:87::/48 maxlen: 48
2a02:348:88::/48 maxlen: 48
2a02:348:89::/48 maxlen: 48
2a02:348:8a::/48 maxlen: 48
2a02:348:8b::/48 maxlen: 48
2a02:348:8c::/48 maxlen: 48
2a02:348:8d::/48 maxlen: 48
2a02:348:8e::/48 maxlen: 48
2a02:348:8f::/48 maxlen: 48
2a02:348:90::/48 maxlen: 48
2a02:348:91::/48 maxlen: 48
2a02:348:92::/48 maxlen: 48
2a02:348:94::/48 maxlen: 48
2a02:348:95::/48 maxlen: 48
2a02:348:96::/48 maxlen: 48
2a02:348:97::/48 maxlen: 48
2a02:348:98::/48 maxlen: 48
2a02:348:99::/48 maxlen: 48
2a02:348:9a::/48 maxlen: 48
2a02:348:9b::/48 maxlen: 48
2a02:348:9c::/48 maxlen: 48
2a02:348:a0::/48 maxlen: 48
2a02:348:a1::/48 maxlen: 48
2a02:348:a2::/48 maxlen: 48
2a02:348:a3::/48 maxlen: 48
2a02:348:ac::/48 maxlen: 48
2a02:348:b1::/48 maxlen: 48
2a02:348:b2::/48 maxlen: 48
2a02:348:b3::/48 maxlen: 48
2a02:348:b4::/48 maxlen: 48
2a02:348:b9::/48 maxlen: 48
2a02:348:ba::/48 maxlen: 48
2a02:348:bb::/48 maxlen: 48
2a02:348:bc::/48 maxlen: 48
2a02:348:c8::/48 maxlen: 48
2a02:348:5e6::/48 maxlen: 48
2a02:348:1001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:d8:52:ce:83:00:ce:38:54:6f:d3:50:c6:2d:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Validity
Not Before: Jan 2 01:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c5319d6afabdccb9931070add4aaa1797082496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9a:a0:3d:c0:79:df:a7:72:d2:bf:a2:f7:d7:
f1:6b:70:8c:e9:56:f9:ff:3e:3b:fd:c9:2c:b8:7b:
a2:36:99:af:b8:3b:df:84:33:3b:a7:81:a3:a3:01:
99:9b:b0:3c:f3:8d:ba:b2:f0:bd:34:ec:f2:79:38:
22:87:39:3c:ab:c5:0c:9d:db:2c:3b:d2:fe:79:a5:
ad:e8:d2:e9:60:e2:79:eb:35:44:8c:61:17:4c:8c:
d5:e8:67:ab:69:1d:01:4c:cc:b3:94:36:67:ee:66:
6d:8d:2e:66:95:72:22:fa:4e:ce:06:43:04:ed:00:
0b:98:10:a6:af:62:a9:fd:7a:7c:2c:62:66:2a:22:
7e:3d:28:ac:05:1c:52:f2:dc:98:a4:fe:26:03:9e:
11:50:b7:55:45:77:1d:4a:a0:5c:a7:b2:27:d5:d8:
a1:c3:51:1c:b5:ac:db:60:25:df:ac:75:bb:d1:cc:
3b:91:67:44:e5:ed:9a:da:a9:d5:89:26:65:93:8f:
47:d2:a7:4b:e6:06:ea:aa:e8:fe:25:11:89:db:93:
a8:1d:ab:e1:9f:d7:1b:b4:f3:f1:07:5f:3c:f8:1d:
db:5e:9e:ab:3b:22:28:ad:9f:fb:5d:30:b3:c4:e1:
ce:3c:99:5e:43:07:c3:fe:bc:e9:4b:c9:38:70:b8:
89:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:53:19:D6:AF:AB:DC:CB:99:31:07:0A:DD:4A:AA:17:97:08:24:96
X509v3 Authority Key Identifier:
keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/HFMZ1q-r3MuZMQcK3UqqF5cIJJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.96.0/21
37.34.48.0/21
37.230.96.0/21
79.170.88.0/21
81.4.84.0/22
83.96.200.0/21
83.96.212.0-83.96.223.255
83.96.236.0-83.96.247.255
83.96.252.0/22
85.10.176.0/22
85.10.184.0/21
85.222.224.0/21
89.31.96.0/21
93.191.128.0/21
141.138.192.0/20
178.18.80.0/20
185.3.208.0/22
185.21.188.0/22
185.96.4.0/22
185.110.172.0/22
185.110.200.0/22
193.138.204.0/22
194.60.207.0/24
213.187.240.0/21
IPv6:
2a02:348::/32
Signature Algorithm: sha256WithRSAEncryption
21:a0:d6:e0:ff:80:4f:1a:88:ac:07:03:53:d8:d1:84:4d:75:
08:62:11:9d:58:52:3c:7e:03:49:64:84:d3:71:25:4a:d1:9e:
b4:99:76:a6:01:7c:11:41:50:d0:7b:6b:1f:05:38:df:01:a4:
eb:12:50:0e:63:81:cd:e1:e2:4d:e2:ff:95:f9:ca:50:39:d2:
aa:6c:37:c8:4e:b2:c1:e0:76:d0:27:52:75:e4:20:e8:bd:67:
ec:40:0a:17:6a:ad:fc:c0:89:4f:e5:55:8e:23:fd:c4:42:70:
90:51:e5:13:bd:f0:98:a1:87:48:e0:88:4a:94:90:29:25:c9:
25:70:96:17:1a:e3:59:68:31:03:1a:eb:6b:d7:15:57:18:b3:
aa:bb:27:a4:65:35:5f:e0:0a:91:36:a4:ef:bd:5e:c5:1d:83:
94:8a:77:ba:92:10:80:85:12:be:55:b9:a0:31:92:c2:ad:7e:
cf:37:18:43:d5:a1:86:d8:8b:a7:20:cb:d3:3e:ef:e7:99:6c:
a8:7b:79:e7:72:2c:a6:04:16:b7:5b:80:e6:9d:6f:61:4b:a4:
3d:28:a7:94:a6:87:be:aa:6c:11:23:0d:87:9c:9e:ff:aa:36:
e2:5a:e3:1f:94:75:40:f4:10:dd:47:e5:7f:61:5b:f2:cf:a6:
a3:88:1b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:32 2025 by rpki-client