Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/1UFASVSjkEzXc5tQ25VkH1ROuXU.roa
File: 1UFASVSjkEzXc5tQ25VkH1ROuXU.roa (raw, json)
Hash identifier: FEphZlPPth39Q8IYVS1tkgibJvxdeb7bB5z0TSOkV2w=
Subject key identifier: D5:41:40:49:54:A3:90:4C:D7:73:9B:50:DB:95:64:1F:54:4E:B9:75
Certificate issuer: /CN=ba051b540188f74aba19a90ab7b5dcc429d47a98
Certificate serial: 0185DD8769CDD57EB2029061355530ADE1E7
Authority key identifier: BA:05:1B:54:01:88:F7:4A:BA:19:A9:0A:B7:B5:DC:C4:29:D4:7A:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ugUbVAGI90q6GakKt7XcxCnUepg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/1UFASVSjkEzXc5tQ25VkH1ROuXU.roa
Signing time: Mon 23 Jan 2023 07:28:37 +0000
ROA not before: Mon 23 Jan 2023 07:28:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 87.236.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:dd:87:69:cd:d5:7e:b2:02:90:61:35:55:30:ad:e1:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba051b540188f74aba19a90ab7b5dcc429d47a98
Validity
Not Before: Jan 23 07:28:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d541404954a3904cd7739b50db95641f544eb975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c2:09:06:f9:e9:49:e8:7c:e4:47:d4:6e:72:
52:ab:66:fe:60:79:86:08:b9:47:7d:35:11:db:2e:
c0:9d:66:d3:07:69:90:aa:43:10:e2:a3:7f:7a:24:
b5:89:db:dd:2f:f0:05:a1:fc:b1:ed:bb:98:f4:e2:
2e:81:aa:c7:78:94:f2:26:f6:2e:2d:b9:08:9f:86:
be:ca:3a:ec:60:e8:aa:64:46:47:a6:5a:89:9f:e3:
f1:5e:7b:41:60:cf:e2:13:f1:58:0b:24:ed:8a:61:
74:dd:ee:7e:fa:31:e6:e8:61:cc:7d:19:bc:e7:ed:
d6:f0:a2:37:ff:31:0d:52:ec:4d:d3:5d:84:b4:03:
8f:3d:f1:f8:59:a0:bf:f3:03:6f:a9:f1:dd:6c:03:
04:05:39:a0:97:7e:e7:30:30:7c:16:b6:23:ba:16:
5d:c8:3c:ff:8a:46:b3:bd:46:15:2d:aa:69:3c:42:
67:23:aa:fb:a3:12:f9:1e:28:4a:b8:b5:ca:e8:df:
c0:03:65:fe:c3:04:ad:c0:60:5c:df:7d:e9:93:4a:
b8:84:92:d0:dd:e2:6d:69:73:61:78:4c:61:12:d6:
15:74:81:2d:28:65:ba:d0:8c:06:b9:73:79:8a:a9:
5f:6a:27:05:16:d7:3d:86:30:db:87:19:f7:2b:6c:
a9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:41:40:49:54:A3:90:4C:D7:73:9B:50:DB:95:64:1F:54:4E:B9:75
X509v3 Authority Key Identifier:
keyid:BA:05:1B:54:01:88:F7:4A:BA:19:A9:0A:B7:B5:DC:C4:29:D4:7A:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ugUbVAGI90q6GakKt7XcxCnUepg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/1UFASVSjkEzXc5tQ25VkH1ROuXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/986d6c-9a44-4ee1-921c-30bfed2a719c/1/ugUbVAGI90q6GakKt7XcxCnUepg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.236.166.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:a7:88:d9:c8:f0:69:a0:82:db:15:3b:4b:a6:9d:5f:75:7f:
1e:0a:8f:3c:83:97:f7:b4:38:d7:3d:be:42:88:cb:b4:22:6a:
5e:39:be:fb:8a:19:ed:56:63:0b:93:25:a1:60:a2:8b:c0:e4:
fa:3a:c5:d7:11:73:02:fc:aa:69:f1:5a:f5:bb:54:2a:d1:c0:
03:fb:e7:be:5a:b5:19:ae:8e:1d:ce:4c:b4:e2:51:cd:bb:ef:
af:82:fd:2e:bd:1a:71:e1:3e:fa:a2:a3:da:76:90:a8:79:af:
d2:99:80:14:7f:93:da:95:2a:84:8d:f0:22:f7:90:f1:b7:44:
65:e0:dc:74:67:6c:d8:cf:ec:4c:c0:f6:03:80:84:3e:77:09:
60:6d:46:7b:4e:84:63:77:dc:dd:2a:bf:b6:82:17:d2:2c:52:
2e:5c:07:8b:c4:3b:65:e0:ec:68:ae:ff:57:69:99:c9:79:51:
19:11:9f:bc:c8:b6:4c:45:a3:30:2c:d0:90:f7:ac:ce:f8:68:
50:b9:cc:b9:f3:f1:4a:23:b5:d1:21:03:af:94:40:7f:a7:12:
f1:2e:35:8d:90:72:b9:7a:72:58:7a:0e:c6:ba:da:ab:bc:93:
56:fb:a4:b5:99:4c:3b:e7:83:d8:28:f3:2e:85:07:53:ed:9d:
6a:cd:40:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:44:31 2025 by rpki-client