Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/HHwaE_MKd-EGyMJZL8kPcEqbLa8.roa
File: HHwaE_MKd-EGyMJZL8kPcEqbLa8.roa (raw, json)
Hash identifier: xy0mm0TeO9CjPTUPkLB6YRNEwA3JPa878dxCy2IR/Qo=
Subject key identifier: 1C:7C:1A:13:F3:0A:77:E1:06:C8:C2:59:2F:C9:0F:70:4A:9B:2D:AF
Certificate issuer: /CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Certificate serial: 01904B4F6CAC25F8DC1A1398CE07B37464BC
Authority key identifier: 69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/HHwaE_MKd-EGyMJZL8kPcEqbLa8.roa
Signing time: Mon 24 Jun 2024 17:33:34 +0000
ROA not before: Mon 24 Jun 2024 17:33:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59711
IP address blocks: 5.149.248.0/23 maxlen: 23
5.149.254.0/23 maxlen: 23
77.83.196.0/24 maxlen: 24
77.83.197.0/24 maxlen: 24
77.83.198.0/24 maxlen: 24
79.141.164.0/23 maxlen: 23
79.141.174.0/23 maxlen: 23
89.150.40.0/24 maxlen: 24
89.150.57.0/24 maxlen: 24
91.193.18.0/24 maxlen: 24
185.40.86.0/24 maxlen: 24
185.80.52.0/23 maxlen: 23
185.80.54.0/23 maxlen: 23
185.81.114.0/23 maxlen: 23
185.81.114.0/24 maxlen: 24
185.81.115.0/24 maxlen: 24
185.104.192.0/24 maxlen: 24
185.104.193.0/24 maxlen: 24
185.104.194.0/24 maxlen: 24
185.117.88.0/23 maxlen: 23
185.117.90.0/23 maxlen: 23
185.123.102.0/24 maxlen: 24
185.174.133.0/24 maxlen: 24
185.174.135.0/24 maxlen: 24
185.235.137.0/24 maxlen: 24
185.235.138.0/24 maxlen: 24
193.42.36.0/24 maxlen: 24
193.42.39.0/24 maxlen: 24
195.95.155.0/24 maxlen: 24
2a01:8640::/48 maxlen: 48
2a01:8640:2::/48 maxlen: 48
2a01:8640:6::/48 maxlen: 48
2a01:8640:9::/48 maxlen: 48
2a01:8640:a::/48 maxlen: 48
2a01:8640:f::/48 maxlen: 48
2a01:8640:11::/48 maxlen: 48
2a01:8640:12::/48 maxlen: 48
2a01:8640:13::/48 maxlen: 48
2a01:8640:14::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4b:4f:6c:ac:25:f8:dc:1a:13:98:ce:07:b3:74:64:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=691242c33bc2e2e9e45850a0fc64ab2c7506a4b8
Validity
Not Before: Jun 24 17:33:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c7c1a13f30a77e106c8c2592fc90f704a9b2daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:dd:8f:83:08:20:c5:6e:5e:e0:cc:01:c8:28:
e1:cf:f4:21:f4:8d:76:3e:7b:fb:4a:5b:f7:fc:a9:
e9:38:b9:bb:84:3d:da:e7:89:b8:c6:f5:ce:20:6b:
09:d4:1b:f5:86:a8:6b:21:1a:d5:bf:e9:e5:10:f4:
dc:f5:d0:2e:64:3c:11:16:b4:74:8d:ec:02:1f:3c:
a3:ed:0b:86:69:44:08:e8:df:cf:85:f5:0e:33:e8:
cf:ad:db:db:f3:2d:b5:e2:e4:7d:a0:37:7e:17:c7:
5a:a3:82:cd:e1:a1:65:d9:f9:2d:16:2b:90:12:14:
21:d8:df:0b:0d:11:61:00:64:af:30:de:48:52:22:
da:2d:16:e5:42:66:d4:92:a6:78:a5:df:99:75:20:
b2:61:20:cd:88:b3:56:91:48:18:91:69:f6:4d:f4:
17:fb:69:2b:e5:99:64:56:1d:fa:8e:5c:76:e3:9b:
6a:2f:c5:42:d8:4f:37:c0:c3:77:23:31:54:08:d8:
13:60:fb:de:1b:0a:3d:e3:ef:38:2c:5c:7f:d4:72:
45:20:fd:4e:1f:75:5a:0e:54:12:1a:dd:4f:d8:cd:
51:13:be:a1:7a:60:46:47:33:c9:f3:c9:e3:20:85:
87:5e:09:e4:30:1d:a8:d9:9d:90:06:9e:e7:3f:a5:
96:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:7C:1A:13:F3:0A:77:E1:06:C8:C2:59:2F:C9:0F:70:4A:9B:2D:AF
X509v3 Authority Key Identifier:
keyid:69:12:42:C3:3B:C2:E2:E9:E4:58:50:A0:FC:64:AB:2C:75:06:A4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aRJCwzvC4unkWFCg_GSrLHUGpLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/HHwaE_MKd-EGyMJZL8kPcEqbLa8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6356b9-c49f-4b4d-8e29-362ffe8ee270/1/aRJCwzvC4unkWFCg_GSrLHUGpLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.248.0/23
5.149.254.0/23
77.83.196.0-77.83.198.255
79.141.164.0/23
79.141.174.0/23
89.150.40.0/24
89.150.57.0/24
91.193.18.0/24
185.40.86.0/24
185.80.52.0/22
185.81.114.0/23
185.104.192.0-185.104.194.255
185.117.88.0/22
185.123.102.0/24
185.174.133.0/24
185.174.135.0/24
185.235.137.0-185.235.138.255
193.42.36.0/24
193.42.39.0/24
195.95.155.0/24
IPv6:
2a01:8640::/48
2a01:8640:2::/48
2a01:8640:6::/48
2a01:8640:9::-2a01:8640:a:ffff:ffff:ffff:ffff:ffff
2a01:8640:f::/48
2a01:8640:11::-2a01:8640:14:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6f:ad:fa:24:07:8b:e4:d2:31:61:04:81:91:5f:e2:cd:e5:91:
85:c3:0b:64:a4:54:b9:94:ab:b1:96:e3:6e:fe:9a:a4:23:e8:
82:c8:48:a4:54:44:19:09:06:9a:fd:8c:77:83:f2:db:dc:69:
c9:8f:86:70:b8:f3:63:a3:2c:50:b1:2b:70:26:63:dc:29:9a:
91:ef:d7:12:cd:76:99:7e:16:a5:ce:68:88:32:7f:7a:7a:20:
a0:71:1f:84:a0:0f:3a:9a:f1:bc:ac:2d:6f:7b:8b:0d:58:7f:
63:2c:28:e7:b6:34:97:fa:b2:d0:a6:0c:14:d5:db:4f:00:ac:
f2:9d:3b:0e:e5:17:01:13:4e:95:83:5c:2a:8d:71:61:d6:8c:
f8:9f:3b:54:e2:12:a4:ba:21:31:7b:32:be:56:69:46:9b:7d:
d5:e0:1b:a7:5c:f3:f3:1f:6f:bd:74:3f:75:25:c5:02:4d:d3:
cd:63:d9:4a:ae:52:42:23:ca:29:7b:6f:37:5d:00:69:23:60:
5a:9c:a6:70:81:1b:6d:a6:dd:f5:7d:81:d3:0e:4c:55:0c:38:
f2:44:64:76:13:11:d8:30:80:9f:79:58:70:be:be:11:95:79:
88:05:f4:5e:32:e1:eb:2e:f4:54:05:95:aa:12:20:d6:05:18:
69:88:1c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:02 2025 by rpki-client