Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/UqiuKqTQR1pyHUIwfSaJuTVkwgM.roa
File: UqiuKqTQR1pyHUIwfSaJuTVkwgM.roa (raw, json)
Hash identifier: /daQ84/IlyKQccK8HNvLp9yZzU3eH5Tw2SuorEVY8WU=
Subject key identifier: 52:A8:AE:2A:A4:D0:47:5A:72:1D:42:30:7D:26:89:B9:35:64:C2:03
Certificate issuer: /CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Certificate serial: 01942520E32FABD28673A820813C5FDDAFC4
Authority key identifier: 82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/UqiuKqTQR1pyHUIwfSaJuTVkwgM.roa
Signing time: Thu 02 Jan 2025 03:48:19 +0000
ROA not before: Thu 02 Jan 2025 03:48:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34848
IP address blocks: 89.104.192.0/19 maxlen: 19
89.104.206.0/24 maxlen: 24
185.38.180.0/24 maxlen: 24
185.38.181.0/24 maxlen: 24
185.38.182.0/23 maxlen: 23
193.238.184.0/24 maxlen: 24
193.238.186.0/24 maxlen: 24
193.238.187.0/24 maxlen: 24
195.242.120.0/23 maxlen: 23
195.245.210.0/24 maxlen: 24
2a01:77c0::/36 maxlen: 36
2a01:77c0:6::/48 maxlen: 48
2a01:77c0:1180::/48 maxlen: 48
2a01:77c0:1181::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:20:e3:2f:ab:d2:86:73:a8:20:81:3c:5f:dd:af:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Validity
Not Before: Jan 2 03:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=52a8ae2aa4d0475a721d42307d2689b93564c203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:aa:da:0f:14:7f:fa:69:0c:a8:6e:4c:e2:c5:
cf:31:18:c2:ec:1a:4f:67:ce:35:ae:97:3c:00:da:
2f:c4:a7:ca:7d:da:e8:b3:8f:ca:fa:d9:b1:35:19:
40:30:2a:0b:d6:8c:e7:5a:02:c1:22:50:8b:c1:33:
87:60:d4:6b:83:bc:c2:ca:44:f8:5f:c0:ba:b6:41:
1d:54:a2:f3:7f:ba:9d:7f:b8:6a:c1:8e:cc:87:c2:
30:2c:50:09:f0:95:f8:6f:ec:e4:9e:bb:7e:43:4f:
27:f3:b7:1f:70:6b:32:86:bd:c8:e6:94:52:65:10:
a9:d7:5a:14:f3:c6:9c:a0:f0:ae:b9:62:5e:b0:1f:
fd:de:5b:e3:79:83:8f:7b:45:be:86:d4:c2:21:41:
80:1d:04:49:e8:8e:f4:4b:8e:49:a1:f6:db:70:be:
f0:c1:6f:46:62:be:06:69:d0:c3:bb:eb:07:2d:f7:
12:5f:96:55:fc:7f:d9:b2:b6:43:b1:99:e0:d2:bc:
b2:52:22:63:cf:de:d7:86:35:3a:91:cd:00:03:6c:
7e:63:ac:ff:a8:fc:ea:b1:9c:dd:07:38:16:1e:07:
c5:d8:2b:77:de:e2:3d:3a:b1:37:c1:f9:07:98:34:
b3:35:b6:12:55:3f:b8:96:1f:a2:28:6e:b6:af:cb:
2c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A8:AE:2A:A4:D0:47:5A:72:1D:42:30:7D:26:89:B9:35:64:C2:03
X509v3 Authority Key Identifier:
keyid:82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/UqiuKqTQR1pyHUIwfSaJuTVkwgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/gnrxfwSZYn5LPIzFwzPsS452NeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.104.192.0/19
185.38.180.0/22
193.238.184.0/24
193.238.186.0/23
195.242.120.0/23
195.245.210.0/24
IPv6:
2a01:77c0::/36
2a01:77c0:1180::/47
Signature Algorithm: sha256WithRSAEncryption
04:55:e1:1f:97:75:54:40:eb:30:1c:a6:1a:1c:6b:fc:a0:52:
65:99:31:13:4f:bc:f8:8c:ed:d5:2b:e5:56:da:f9:12:15:b8:
53:1c:f2:27:2e:d1:0e:98:19:41:2f:68:06:13:28:2c:04:68:
59:d2:6e:22:8f:e4:d4:86:2c:19:1c:03:71:af:d8:aa:78:d1:
1d:f8:2d:97:13:3f:cd:d9:01:41:18:57:4e:e3:11:40:76:5c:
d4:ac:d5:bd:6b:5d:b8:29:b7:e6:6d:5f:ce:00:7b:a5:be:de:
9d:79:34:65:92:34:26:a3:90:1f:07:2e:91:3a:f1:b9:d8:07:
a8:07:82:13:42:9d:69:9d:2c:c4:48:cc:26:fe:86:75:dc:bf:
69:96:50:22:07:25:78:f6:74:13:a4:b0:78:77:1e:39:38:f4:
e5:5f:0e:a6:2d:01:72:12:7f:c7:9f:2f:42:12:4f:d1:3b:dd:
df:f2:c0:15:e8:4e:01:91:26:f7:a8:80:46:7f:37:5b:63:bc:
11:5b:dd:b0:86:ef:87:43:c6:5c:56:10:f7:7f:02:07:39:c4:
9d:c8:38:04:e2:f0:df:77:2b:5b:78:79:a2:77:c2:2d:ab:8e:
33:51:bf:e2:55:4e:7f:78:12:5d:b6:27:b8:80:07:e1:35:17:
df:04:aa:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:17:44 2025 by rpki-client