Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/hd3ZVIz5JB5ylKvLTjhvv1m_fhc.roa
File: hd3ZVIz5JB5ylKvLTjhvv1m_fhc.roa (raw, json)
Hash identifier: yo9HOjwucPNzGs0db7QVJJrPlFhOqDL3pOtNSeZbIfE=
Subject key identifier: 85:DD:D9:54:8C:F9:24:1E:72:94:AB:CB:4E:38:6F:BF:59:BF:7E:17
Certificate issuer: /CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Certificate serial: 01948D0A3F568633CD66FD9192070703564E
Authority key identifier: 66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/hd3ZVIz5JB5ylKvLTjhvv1m_fhc.roa
Signing time: Wed 22 Jan 2025 08:04:06 +0000
ROA not before: Wed 22 Jan 2025 08:04:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 64289
IP address blocks: 185.225.24.0/24 maxlen: 24
185.225.26.0/24 maxlen: 24
192.189.157.0/24 maxlen: 24
2a14:3f80:8::/45 maxlen: 45
2a14:3f80:10::/45 maxlen: 45
2a14:3f80:18::/45 maxlen: 45
2a14:3f80:20::/45 maxlen: 45
2a14:3f80:28::/45 maxlen: 45
2a14:3f80:60::/45 maxlen: 45
2a14:3f80:80::/45 maxlen: 45
2a14:3f80:88::/45 maxlen: 45
2a14:3f80:100::/45 maxlen: 45
2a14:3f80:108::/45 maxlen: 45
2a14:3f80:3d1::/48 maxlen: 48
2a14:3f80:800::/38 maxlen: 38
2a14:3f80:c00::/38 maxlen: 38
2a14:3f80:1000::/38 maxlen: 38
2a14:3f80:1400::/38 maxlen: 38
2a14:3f80:1800::/38 maxlen: 38
2a14:3f80:2000::/38 maxlen: 38
2a14:3f80:2400::/38 maxlen: 38
2a14:3f80:2800::/38 maxlen: 38
2a14:3f80:3000::/38 maxlen: 38
2a14:3f80:3400::/38 maxlen: 38
2a14:3f80:3800::/38 maxlen: 38
2a14:3f80:3c00::/38 maxlen: 38
2a14:3f80:4000::/38 maxlen: 38
2a14:3f80:4400::/38 maxlen: 38
2a14:3f80:5000::/38 maxlen: 38
2a14:3f80:6000::/38 maxlen: 38
2a14:3f80:7000::/38 maxlen: 38
2a14:3f80:8800::/38 maxlen: 38
2a14:3f80:af38::/45 maxlen: 45
2a14:3f81:5800::/38 maxlen: 38
2a14:3f82:4000::/38 maxlen: 38
2a14:3f82:6000::/38 maxlen: 38
2a14:3f82:7000::/38 maxlen: 38
2a14:3f82:8800::/38 maxlen: 38
2a14:3f87:2800::/38 maxlen: 38
2a14:3f87:4800::/38 maxlen: 38
2a14:3f87:6800::/38 maxlen: 38
2a14:3f87:9800::/38 maxlen: 38
2a14:3f87:c800::/38 maxlen: 38
2a14:3f87:f000::/38 maxlen: 38
2a14:3f87:fc00::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:8d:0a:3f:56:86:33:cd:66:fd:91:92:07:07:03:56:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66ed3ba68c78bff2c4724400ade6348482fb4364
Validity
Not Before: Jan 22 08:04:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=85ddd9548cf9241e7294abcb4e386fbf59bf7e17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:31:ae:f5:71:a1:63:b5:55:7a:b4:a2:89:0c:
35:e5:d0:37:7b:c5:63:bc:ee:a7:11:b7:e3:c6:42:
a8:6e:bc:6d:3b:01:aa:8a:b0:44:ae:7c:22:81:64:
78:b8:f5:04:c0:61:67:24:5b:f2:f1:cb:82:1c:a8:
4b:0f:a8:77:d8:6e:b2:f1:ea:36:3c:7d:0f:cd:23:
75:ca:21:62:f8:f3:c0:0f:bd:6a:01:da:7d:e1:81:
24:80:37:a0:d6:6f:5b:24:18:75:0a:2a:89:22:fb:
c2:3c:6b:f0:b9:ac:73:3f:bd:ff:e0:54:a0:d1:a9:
ba:0e:23:96:17:e3:d4:43:b2:7b:1f:c4:17:dc:24:
bb:16:4b:28:75:48:ad:9a:50:55:88:0b:e2:13:38:
25:56:42:3e:ad:66:26:5f:db:de:1a:e2:f7:4c:00:
05:5b:15:79:8e:17:0b:b9:ae:e2:f8:75:f8:72:f7:
6d:01:e3:90:4c:de:3d:a4:c6:6c:ce:64:32:33:c2:
64:56:f2:b8:ab:84:10:79:88:81:19:06:49:46:4b:
da:85:bc:7f:8e:51:e7:cb:79:67:3f:18:4d:c0:c3:
c5:dc:76:c6:c6:72:ff:11:71:1f:3f:10:ec:e1:22:
5c:40:4d:dd:86:a0:20:e2:6c:0f:1b:a1:76:c5:95:
54:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DD:D9:54:8C:F9:24:1E:72:94:AB:CB:4E:38:6F:BF:59:BF:7E:17
X509v3 Authority Key Identifier:
keyid:66:ED:3B:A6:8C:78:BF:F2:C4:72:44:00:AD:E6:34:84:82:FB:43:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zu07pox4v_LEckQAreY0hIL7Q2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/hd3ZVIz5JB5ylKvLTjhvv1m_fhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/b79a68-5b02-4097-a2e3-0a43b7a3eb54/1/Zu07pox4v_LEckQAreY0hIL7Q2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.24.0/24
185.225.26.0/24
192.189.157.0/24
IPv6:
2a14:3f80:8::-2a14:3f80:2f:ffff:ffff:ffff:ffff:ffff
2a14:3f80:60::/45
2a14:3f80:80::/44
2a14:3f80:100::/44
2a14:3f80:3d1::/48
2a14:3f80:800::-2a14:3f80:1bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:2000::-2a14:3f80:2bff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:3000::-2a14:3f80:47ff:ffff:ffff:ffff:ffff:ffff
2a14:3f80:5000::/38
2a14:3f80:6000::/38
2a14:3f80:7000::/38
2a14:3f80:8800::/38
2a14:3f80:af38::/45
2a14:3f81:5800::/38
2a14:3f82:4000::/38
2a14:3f82:6000::/38
2a14:3f82:7000::/38
2a14:3f82:8800::/38
2a14:3f87:2800::/38
2a14:3f87:4800::/38
2a14:3f87:6800::/38
2a14:3f87:9800::/38
2a14:3f87:c800::/38
2a14:3f87:f000::/38
2a14:3f87:fc00::/38
Signature Algorithm: sha256WithRSAEncryption
51:e7:75:cd:5d:1a:97:48:10:3b:e3:93:f9:9b:e7:f8:9e:95:
37:ad:0f:83:13:ce:22:45:b0:1e:bc:78:69:08:6c:47:2b:d0:
b8:e7:56:3c:b0:92:e6:74:55:33:16:b3:62:d5:9b:b9:22:8c:
7e:a0:94:bd:44:f3:77:8f:bd:4c:86:8d:31:1e:51:1a:ae:e7:
cb:09:84:82:5a:41:91:b0:99:29:f6:db:22:e9:f2:10:02:fd:
51:15:5e:53:18:2c:4d:11:77:15:6c:da:4f:9c:a1:40:56:23:
a9:e6:3f:d7:60:f4:f6:5d:57:5f:e3:4e:de:50:c2:d4:5c:04:
8b:b3:51:e6:c7:00:75:02:a7:28:43:13:e8:59:78:25:98:2e:
dc:ea:21:3d:5d:6f:7c:9e:b2:a8:61:65:54:41:6d:08:53:f5:
4f:ca:d3:4b:cb:a4:2f:2a:7e:b5:c0:91:68:14:f9:5c:3d:68:
d2:81:b0:b2:d8:30:55:dc:2e:28:c4:e9:fd:43:26:7e:49:70:
c2:53:a5:b7:36:2c:aa:a5:86:f1:cd:66:e8:de:20:42:89:68:
ee:c8:e5:31:b3:b4:b2:dc:6b:92:f2:01:87:bb:f7:12:67:09:
60:24:3b:08:39:2e:9d:bb:1e:33:36:06:b0:6f:6b:37:5b:4f:
d2:70:a1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:47:16 2025 by rpki-client