Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/uaspJEeVi6k0YFTNf1QVEZiB0io.roa
File: uaspJEeVi6k0YFTNf1QVEZiB0io.roa (raw, json)
Hash identifier: EmfTOvc1gqAZPyZkJOdKA3X+Ibv7xhbWYqJAcDGHtn4=
Subject key identifier: B9:AB:29:24:47:95:8B:A9:34:60:54:CD:7F:54:15:11:98:81:D2:2A
Certificate issuer: /CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Certificate serial: 01856ED4C0ED4BC11722BE67F447384F6DE9
Authority key identifier: 8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/uaspJEeVi6k0YFTNf1QVEZiB0io.roa
Signing time: Sun 01 Jan 2023 19:35:14 +0000
ROA not before: Sun 01 Jan 2023 19:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213296
IP address blocks: 185.177.78.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:c0:ed:4b:c1:17:22:be:67:f4:47:38:4f:6d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Validity
Not Before: Jan 1 19:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9ab292447958ba9346054cd7f5415119881d22a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d6:04:da:c8:72:ca:19:41:e8:d5:06:f9:22:
79:86:8e:f6:fe:36:8f:6f:64:c0:49:77:2b:d0:e7:
9c:c8:44:0e:b2:d6:10:6f:03:6c:a9:72:c6:15:db:
98:c0:ff:4c:f7:17:d6:52:7a:52:2f:a2:02:c1:34:
7f:75:ed:63:48:69:c4:14:20:91:4a:32:61:ec:00:
40:57:30:2f:a4:8d:67:ab:d3:0e:bf:0d:a6:0c:95:
de:03:d4:96:09:58:d4:f1:db:ea:ab:1d:f5:bf:79:
d5:70:24:41:a7:79:6e:da:d6:23:54:af:d9:75:87:
e5:52:af:f5:f0:d2:76:5a:e0:f0:cc:ab:1b:4f:65:
68:d5:01:44:84:0e:54:f3:0d:14:b0:7d:d9:98:bf:
3d:04:16:6f:6f:a3:cf:43:85:a3:dd:fb:e3:1b:a3:
4e:0a:75:c8:56:61:1e:c9:4e:a3:33:0d:53:24:15:
68:b3:e2:8c:d6:75:51:32:16:ce:28:bc:6e:ba:de:
6e:b5:61:d2:b5:97:6b:40:17:55:e7:24:bb:44:9f:
ff:fb:09:90:e3:cd:7d:23:aa:e2:47:45:90:e5:50:
81:40:2a:37:14:59:89:a3:ff:1e:24:a7:13:e2:d5:
7d:5c:69:5d:bc:c2:eb:e3:47:8f:99:55:09:74:03:
46:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:AB:29:24:47:95:8B:A9:34:60:54:CD:7F:54:15:11:98:81:D2:2A
X509v3 Authority Key Identifier:
keyid:8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/uaspJEeVi6k0YFTNf1QVEZiB0io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jnR0gfLJj7tw3KjWXCPeT8o3WD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.78.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:39:6f:6c:a3:ca:43:31:04:35:b9:e2:c5:57:fa:26:61:7a:
01:06:b8:48:87:74:c6:1d:97:e4:da:f6:1f:7c:6e:ec:f7:0e:
18:c6:95:0e:ea:75:68:8f:c7:05:8c:7f:16:a6:70:b7:79:a5:
7d:30:4c:db:9e:c5:ec:38:c5:50:51:82:ab:b8:76:b8:e7:4c:
5b:77:1f:39:fe:e1:7e:31:ba:18:92:7a:36:00:a8:c1:53:50:
5e:fe:f5:3c:26:e1:33:07:1d:9e:81:95:12:27:69:e5:8c:ec:
db:de:f1:8b:5a:4b:02:14:16:f8:ff:21:7c:49:45:45:6d:a6:
7e:ae:a8:12:e4:af:94:a5:7b:ab:54:96:06:22:9e:43:4e:ea:
9b:05:56:cb:27:e7:dd:50:ca:47:76:e5:d8:14:a1:37:c4:d8:
b5:8a:ec:32:67:2b:e8:83:d4:d8:ac:55:ce:ce:47:35:73:05:
48:c4:fd:0c:2f:c7:61:92:e6:3d:18:28:21:9d:ab:50:94:92:
08:41:7f:0a:37:1e:cd:6d:08:9d:2a:71:38:bd:ee:b2:36:24:
cb:42:4e:89:58:93:a9:11:67:98:56:66:fb:4e:bf:c1:ed:f8:
70:02:cc:dc:fb:08:d1:0e:e9:31:63:a9:94:cd:3a:22:bf:89:
5b:1c:d3:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVu1MDtS8EXIr5n9Ec4T23pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlNzQ3NDgxZjJjOThmYmI3MGRjYThkNjVjMjNkZTRmY2Ez
NzU4M2QwHhcNMjMwMTAxMTkzNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOWFiMjkyNDQ3OTU4YmE5MzQ2MDU0Y2Q3ZjU0MTUxMTk4ODFkMjJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltYE2shyyhlB6NUG+SJ5ho72/jaP
b2TASXcr0OecyEQOstYQbwNsqXLGFduYwP9M9xfWUnpSL6ICwTR/de1jSGnEFCCR
SjJh7ABAVzAvpI1nq9MOvw2mDJXeA9SWCVjU8dvqqx31v3nVcCRBp3lu2tYjVK/Z
dYflUq/18NJ2WuDwzKsbT2Vo1QFEhA5U8w0UsH3ZmL89BBZvb6PPQ4Wj3fvjG6NO
CnXIVmEeyU6jMw1TJBVos+KM1nVRMhbOKLxuut5utWHStZdrQBdV5yS7RJ//+wmQ
4819I6riR0WQ5VCBQCo3FFmJo/8eJKcT4tV9XGldvMLr40ePmVUJdANGdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLmrKSRHlYupNGBUzX9UFRGYgdIqMB8GA1UdIwQY
MBaAFI50dIHyyY+7cNyo1lwj3k/KN1g9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvam5SMGdmTEpqN3R3M0tqV1hDUGVUOG8zV0QwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS80MGRiNmItZGE4NS00YzlkLWE5NDgt
NjUyMWQzOTVmMTMyLzEvdWFzcEpFZVZpNmswWUZUTmYxUVZFWmlCMGlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS80MGRiNmItZGE4NS00YzlkLWE5NDgtNjUyMWQzOTVmMTMy
LzEvam5SMGdmTEpqN3R3M0tqV1hDUGVUOG8zV0QwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBubFOMA0G
CSqGSIb3DQEBCwUAA4IBAQA/OW9so8pDMQQ1ueLFV/omYXoBBrhIh3TGHZfk2vYf
fG7s9w4YxpUO6nVoj8cFjH8WpnC3eaV9MEzbnsXsOMVQUYKruHa450xbdx85/uF+
MboYkno2AKjBU1Be/vU8JuEzBx2egZUSJ2nljOzb3vGLWksCFBb4/yF8SUVFbaZ+
rqgS5K+UpXurVJYGIp5DTuqbBVbLJ+fdUMpHduXYFKE3xNi1iuwyZyvog9TYrFXO
zkc1cwVIxP0ML8dhkuY9GCghnatQlJIIQX8KNx7NbQidKnE4ve6yNiTLQk6JWJOp
EWeYVmb7Tr/B7fhwAszc+wjRDukxY6mUzToiv4lbHNML
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:28:04 2025 by rpki-client