Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/bUJRV3-W-5byMAOZJDjvgqBQoQk.roa
File: bUJRV3-W-5byMAOZJDjvgqBQoQk.roa (raw, json)
Hash identifier: L0Tg7wmODJWiIXRc9/rBYK8fm6paXEGSJwyy1VvlRvE=
Subject key identifier: 6D:42:51:57:7F:96:FB:96:F2:30:03:99:24:38:EF:82:A0:50:A1:09
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 0193AB026A12150B7416FAADD2A32B42F694
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/bUJRV3-W-5byMAOZJDjvgqBQoQk.roa
Signing time: Mon 09 Dec 2024 10:41:22 +0000
ROA not before: Mon 09 Dec 2024 10:41:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59538
IP address blocks: 212.42.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ab:02:6a:12:15:0b:74:16:fa:ad:d2:a3:2b:42:f6:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Dec 9 10:41:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d4251577f96fb96f23003992438ef82a050a109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d9:51:35:26:50:90:1e:79:8c:c1:94:51:49:
b9:6f:ef:45:ef:0b:bb:e0:67:0d:8e:6d:d8:4a:15:
d8:12:d2:be:e8:c6:86:2a:d7:29:e3:e2:4d:23:b6:
c0:a7:8c:cf:d3:39:d0:ba:cf:a4:bd:61:d4:55:c6:
57:00:67:92:24:31:59:96:4b:e5:84:1b:52:55:f1:
34:cc:25:3a:b8:6d:e5:3f:37:8c:99:11:a8:6e:de:
c4:2b:40:e2:c9:c6:51:96:a1:47:87:26:ba:b2:a4:
d9:85:1c:56:b9:dc:36:2e:00:36:55:11:91:39:99:
5d:91:27:bd:b2:e4:85:ef:00:48:f9:79:38:10:84:
96:df:b1:16:e4:38:88:1f:aa:22:46:fc:49:c4:2a:
36:02:8f:cf:70:9e:d0:55:b0:7c:b9:d8:f5:24:5e:
f6:6e:28:c1:b0:8d:3b:cf:6a:74:35:60:20:f1:95:
89:da:50:0b:7d:c2:b1:40:c6:5f:fb:ae:ed:cc:23:
a5:49:56:18:99:f4:a2:95:c9:53:27:c5:57:76:97:
cb:2c:0f:ea:b4:73:03:1e:75:53:a1:ce:42:e5:d6:
cf:28:a6:a2:63:be:17:45:35:d0:36:1a:e9:e8:03:
ae:a5:bb:c0:4a:3a:4d:33:13:2f:9d:d0:6f:4d:46:
21:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:42:51:57:7F:96:FB:96:F2:30:03:99:24:38:EF:82:A0:50:A1:09
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/bUJRV3-W-5byMAOZJDjvgqBQoQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.42.208.0/20
Signature Algorithm: sha256WithRSAEncryption
42:6d:41:31:b4:3f:48:db:71:bd:24:3c:db:2f:45:77:33:89:
94:23:65:06:f0:f3:6b:ac:9a:57:d9:b6:01:94:d6:2a:28:af:
a2:74:01:df:19:00:5e:02:70:4d:aa:2f:f9:1f:81:3a:f4:2d:
47:1d:59:dc:71:5d:ac:11:7d:5f:7a:16:ff:80:cd:64:91:f6:
bd:aa:b2:56:84:61:2c:9e:c2:22:1c:11:c8:31:d6:c3:49:5a:
29:e0:81:0f:21:13:43:e1:a6:ea:6a:c6:94:fa:f5:d0:cf:c6:
8d:a2:70:2e:4b:e6:07:34:5b:e7:e3:9d:8c:21:cc:65:ae:5a:
94:4b:55:2b:67:a5:79:74:a8:e8:3e:82:dd:4f:51:b1:31:74:
07:63:d3:e5:52:28:12:28:5c:3f:8e:05:c0:06:93:a5:04:f1:
40:d0:13:ac:89:a0:10:85:bc:2d:84:b0:a6:e6:50:46:50:de:
fd:d5:d5:0e:76:d4:bf:e0:83:c7:c2:77:50:23:82:df:42:8a:
99:4a:94:6e:2b:1e:19:10:4b:f8:22:86:59:99:41:12:fa:8d:
51:56:20:df:9c:bc:d3:48:93:50:66:2e:ce:09:10:a4:19:8a:
fc:f5:99:18:33:15:77:62:4a:26:5f:b8:d9:e0:92:40:e0:4c:
a0:c1:94:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:49 2025 by rpki-client