Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/hHtckGqemrpNAmEZkF_C7ZqFGps.roa
File: hHtckGqemrpNAmEZkF_C7ZqFGps.roa (raw, json)
Hash identifier: 6rK+7+UeieUEf2pfDuwihAUhLaeB5yKvApLBhoaO4wU=
Subject key identifier: 84:7B:5C:90:6A:9E:9A:BA:4D:02:61:19:90:5F:C2:ED:9A:85:1A:9B
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018C3F16993D34E7F6C49A321EA2884FCC04
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/hHtckGqemrpNAmEZkF_C7ZqFGps.roa
Signing time: Wed 06 Dec 2023 12:24:54 +0000
ROA not before: Wed 06 Dec 2023 12:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209737
IP address blocks: 5.180.107.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
5.180.104.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
45.147.46.0/24 maxlen: 24
45.147.47.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.229.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.203.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
45.136.5.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a09:8780::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3f:16:99:3d:34:e7:f6:c4:9a:32:1e:a2:88:4f:cc:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Dec 6 12:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=847b5c906a9e9aba4d026119905fc2ed9a851a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:80:db:94:e8:fe:55:71:6d:97:cb:0d:db:50:
40:f7:91:7c:2d:88:bb:97:78:e8:d6:34:ec:b3:c2:
0f:46:c6:7b:07:b0:3c:0c:f9:59:e7:39:f7:f9:da:
02:f8:67:ee:83:44:72:6e:8a:ee:9d:38:96:96:03:
7e:09:b3:0b:99:7f:cf:63:3c:f2:54:67:a9:63:ff:
d0:d5:80:dd:c8:98:c4:cd:69:70:54:55:16:a3:02:
0e:76:07:40:51:1e:6b:0e:b3:27:35:b5:fb:6e:c3:
28:2c:00:62:87:f3:07:71:4e:2b:a5:64:03:ff:a0:
b3:dc:62:c6:1a:1e:ae:d9:62:88:7a:2f:04:54:dc:
9f:1e:a1:bb:82:92:81:37:5e:2b:0a:96:d7:22:e9:
97:d7:4c:0f:cc:2a:36:00:0f:9a:f4:3a:37:70:9a:
f8:dc:6b:e4:84:b3:13:e0:cf:e3:66:13:09:a5:8d:
d2:70:7f:b9:a1:43:1b:5d:a1:8d:db:d4:df:54:e9:
dc:e0:ce:0d:7a:04:5d:b6:f8:25:00:f3:a6:59:82:
3d:a7:08:01:e7:01:f9:e4:69:eb:68:66:ef:a5:5a:
1f:7b:13:35:a7:45:fc:0a:12:5f:91:54:2f:cb:26:
c6:ae:e6:4e:01:83:6a:7f:f4:b6:a9:a3:8c:b9:e5:
19:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:7B:5C:90:6A:9E:9A:BA:4D:02:61:19:90:5F:C2:ED:9A:85:1A:9B
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/hHtckGqemrpNAmEZkF_C7ZqFGps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
5.180.107.0/24
45.131.0.0/23
45.136.5.0/24
45.141.148.0/24
45.147.44.0/24
45.147.46.0/23
77.83.200.0/22
194.116.228.0/23
194.116.236.0/24
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a09:8780::/29
Signature Algorithm: sha256WithRSAEncryption
84:91:1a:18:00:9a:ba:bb:85:3c:17:79:2b:e9:c8:ad:8c:95:
03:13:55:5d:97:0e:f3:c2:29:df:8a:83:a8:59:d3:34:a7:c0:
ca:9e:90:7e:7e:dc:fe:eb:82:6c:86:49:37:ec:0f:c9:72:98:
e0:fc:02:b6:ab:0c:75:24:63:9d:05:77:e6:c2:81:a4:e1:87:
a3:41:3b:35:2d:50:b9:6f:7c:9e:7f:d1:12:2e:1d:09:7f:1a:
b8:2a:6e:f9:62:bc:8c:8c:61:9f:33:46:dd:f2:af:34:26:e6:
d8:13:ea:07:0f:4b:63:6c:44:ba:b7:b1:9a:83:0f:bc:d9:a2:
31:40:5f:3b:de:76:91:9e:bd:e5:33:e2:a9:09:e4:e1:b2:da:
ab:06:8b:57:28:ee:93:d3:e9:3d:00:19:c4:ae:ae:09:f7:5c:
f1:8e:6b:47:4d:c7:51:a0:5a:d4:d2:b4:11:fe:d2:13:44:f9:
e6:d2:51:47:9b:b6:3c:4b:34:cf:6b:d1:32:eb:70:44:91:ed:
e8:92:26:6e:11:00:f1:9d:ff:5b:28:5d:a3:b3:c6:3f:39:f7:
44:1d:ed:8f:54:9c:fd:a0:2a:72:1a:d1:8d:80:f2:b9:5d:e6:
fd:d9:3a:36:b5:ef:23:bf:a4:75:04:79:a8:34:2a:ce:1e:32:
26:1d:c2:b3
-----BEGIN CERTIFICATE-----
MIIFVDCCBDygAwIBAgISAYw/Fpk9NOf2xJoyHqKIT8wEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjMxMjA2MTIyNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDdiNWM5MDZhOWU5YWJhNGQwMjYxMTk5MDVmYzJlZDlhODUxYTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjYDblOj+VXFtl8sN21BA95F8LYi7
l3jo1jTss8IPRsZ7B7A8DPlZ5zn3+doC+Gfug0RyborunTiWlgN+CbMLmX/PYzzy
VGepY//Q1YDdyJjEzWlwVFUWowIOdgdAUR5rDrMnNbX7bsMoLABih/MHcU4rpWQD
/6Cz3GLGGh6u2WKIei8EVNyfHqG7gpKBN14rCpbXIumX10wPzCo2AA+a9Do3cJr4
3GvkhLMT4M/jZhMJpY3ScH+5oUMbXaGN29TfVOnc4M4NegRdtvglAPOmWYI9pwgB
5wH55GnraGbvpVofexM1p0X8ChJfkVQvyybGruZOAYNqf/S2qaOMueUZMwIDAQAB
o4ICYDCCAlwwHQYDVR0OBBYEFIR7XJBqnpq6TQJhGZBfwu2ahRqbMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvaEh0Y2tHcWVtcnBOQW1FWmtGX0M3WnFGR3BzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHYGCCsGAQUFBwEHAQH/BGcwZTBUBAIAATBOAwQABbRoAwQA
BbRrAwQBLYMAAwQALYgFAwQALY2UAwQALZMsAwQBLZMuAwQCTVPIAwQBwnTkAwQA
wnTsAwQAwpIaAwQAwpIkAwQAwpIvMA0EAgACMAcDBQMqCYeAMA0GCSqGSIb3DQEB
CwUAA4IBAQCEkRoYAJq6u4U8F3kr6citjJUDE1Vdlw7zwinfioOoWdM0p8DKnpB+
ftz+64Jshkk37A/Jcpjg/AK2qwx1JGOdBXfmwoGk4YejQTs1LVC5b3yef9ESLh0J
fxq4Km75YryMjGGfM0bd8q80JubYE+oHD0tjbES6t7Gagw+82aIxQF873naRnr3l
M+KpCeThstqrBotXKO6T0+k9ABnErq4J91zxjmtHTcdRoFrU0rQR/tITRPnm0lFH
m7Y8SzTPa9Ey63BEke3okiZuEQDxnf9bKF2js8Y/OfdEHe2PVJz9oCpyGtGNgPK5
Xeb92To2te8jv6R1BHmoNCrOHjImHcKz
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:18 2025 by rpki-client