Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/UbWoUW-Nxzf9znTjVEzdPNwBFkc.roa
File: UbWoUW-Nxzf9znTjVEzdPNwBFkc.roa (raw, json)
Hash identifier: 36Bj6RBDz3aHXg8eOoyUuVWxB9pC+f4dBWQQmUFxf3k=
Subject key identifier: 51:B5:A8:51:6F:8D:C7:37:FD:CE:74:E3:54:4C:DD:3C:DC:01:16:47
Certificate issuer: /CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Certificate serial: 33AEF732
Authority key identifier: C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/UbWoUW-Nxzf9znTjVEzdPNwBFkc.roa
Signing time: Sat 01 Jan 2022 14:55:12 +0000
ROA not before: Sat 01 Jan 2022 14:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1273
IP address blocks: 5.28.192.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 867104562 (0x33aef732)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c08d735f346c4fc42a4792ce33808a2210a82bb5
Validity
Not Before: Jan 1 14:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=51b5a8516f8dc737fdce74e3544cdd3cdc011647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:34:0a:86:e3:62:6b:98:e6:f2:cf:04:4c:b9:
ab:36:eb:89:45:3d:26:21:65:c5:bb:38:1a:9d:ac:
10:56:45:4f:26:42:32:79:e6:64:4a:73:ee:bd:3f:
61:0a:11:dc:1f:96:ee:f0:8e:e7:f9:78:93:b1:77:
bb:9c:ae:fd:ed:38:23:3a:21:e9:f5:cb:3c:41:f9:
42:23:af:ae:46:96:a9:6d:16:d1:a5:61:ac:29:8e:
9b:eb:86:69:8c:a3:ff:e8:28:3c:57:97:3e:c3:93:
70:79:e3:8b:0c:fc:d1:c2:ab:d6:24:25:46:5b:5c:
43:16:80:34:db:2e:1d:18:0f:75:d1:0f:62:eb:9a:
1d:32:bc:e7:1f:65:12:19:4c:e4:cb:46:f6:f3:d2:
84:e0:94:f7:9e:43:d2:02:44:7a:b5:4b:9c:64:ab:
e8:bf:36:ff:48:87:a4:b9:a3:9b:cd:e9:ce:b0:a3:
9e:51:6a:69:7a:6a:a5:69:30:37:ed:c0:6c:9f:a3:
de:f4:7c:00:1d:2e:8c:94:7a:1a:46:e4:18:e5:11:
34:f7:7a:fa:b8:46:b4:06:c6:2f:7b:e0:a5:07:16:
4d:08:6d:7f:59:70:82:e8:89:04:b7:de:17:9a:ae:
17:0e:63:10:3c:4a:ad:9b:1a:1f:54:8d:f8:98:e9:
62:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B5:A8:51:6F:8D:C7:37:FD:CE:74:E3:54:4C:DD:3C:DC:01:16:47
X509v3 Authority Key Identifier:
keyid:C0:8D:73:5F:34:6C:4F:C4:2A:47:92:CE:33:80:8A:22:10:A8:2B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wI1zXzRsT8QqR5LOM4CKIhCoK7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/UbWoUW-Nxzf9znTjVEzdPNwBFkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d97287-fd01-4a10-909e-c3f257eb20cc/1/wI1zXzRsT8QqR5LOM4CKIhCoK7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.28.192.0/18
Signature Algorithm: sha256WithRSAEncryption
27:97:21:94:5d:9c:d5:91:13:6b:be:ea:7f:05:2b:69:52:34:
59:98:3b:cf:81:9c:6c:4d:54:14:b9:05:4a:5e:dd:21:b1:3b:
a4:99:7a:82:b4:27:63:e5:dd:6b:7c:93:55:11:b1:09:5f:7e:
14:7e:6f:c1:68:ad:84:f4:d7:fb:60:09:a1:ab:04:4f:67:9a:
42:f9:d0:14:7e:83:59:e3:20:97:fe:ed:8c:6f:2e:71:54:cc:
3d:23:bd:c8:c2:8b:cc:de:9c:b9:ae:7c:59:0f:4b:00:81:41:
7a:b5:5d:c0:e8:10:68:37:b6:27:da:b8:aa:31:28:b3:dc:04:
13:16:e8:92:c4:52:92:ef:a9:26:35:15:d1:32:b4:93:a7:da:
09:28:39:94:15:bb:bb:a3:de:28:30:92:d4:71:08:cf:e2:cf:
09:20:6c:36:68:ca:b6:5c:59:0a:55:df:c4:f3:de:68:c6:62:
6a:07:8c:bb:79:54:cf:7d:b5:05:51:29:8c:c4:9c:c3:d7:7b:
39:ff:4d:75:16:74:f4:7e:e1:4c:c5:2d:e8:b8:b6:46:63:6a:
03:f8:9d:e6:ae:f2:ae:ef:73:f3:dc:69:0c:d5:08:a0:69:25:
31:5f:71:54:22:cf:78:c3:97:db:c8:de:83:11:27:d5:8b:7c:
16:c5:58:96
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEM673MjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MDhkNzM1ZjM0NmM0ZmM0MmE0NzkyY2UzMzgwOGEyMjEwYTgyYmI1MB4XDTIyMDEw
MTE0NTUxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTFiNWE4NTE2Zjhk
YzczN2ZkY2U3NGUzNTQ0Y2RkM2NkYzAxMTY0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO00CobjYmuY5vLPBEy5qzbriUU9JiFlxbs4Gp2sEFZFTyZC
MnnmZEpz7r0/YQoR3B+W7vCO5/l4k7F3u5yu/e04Izoh6fXLPEH5QiOvrkaWqW0W
0aVhrCmOm+uGaYyj/+goPFeXPsOTcHnjiwz80cKr1iQlRltcQxaANNsuHRgPddEP
YuuaHTK85x9lEhlM5MtG9vPShOCU955D0gJEerVLnGSr6L82/0iHpLmjm83pzrCj
nlFqaXpqpWkwN+3AbJ+j3vR8AB0ujJR6GkbkGOURNPd6+rhGtAbGL3vgpQcWTQht
f1lwguiJBLfeF5quFw5jEDxKrZsaH1SN+JjpYpkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRRtahRb43HN/3OdONUTN083AEWRzAfBgNVHSMEGDAWgBTAjXNfNGxPxCpH
ks4zgIoiEKgrtTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dJMXpYelJzVDhRcVI1TE9NNENLSWhDb0s3VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvZDk3Mjg3LWZkMDEtNGExMC05MDllLWMzZjI1N2ViMjBjYy8x
L1ViV29VVy1OeHpmOXpuVGpWRXpkUE53QkZrYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
ZDk3Mjg3LWZkMDEtNGExMC05MDllLWMzZjI1N2ViMjBjYy8xL3dJMXpYelJzVDhR
cVI1TE9NNENLSWhDb0s3VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBgUcwDANBgkqhkiG9w0BAQsFAAOC
AQEAJ5chlF2c1ZETa77qfwUraVI0WZg7z4GcbE1UFLkFSl7dIbE7pJl6grQnY+Xd
a3yTVRGxCV9+FH5vwWithPTX+2AJoasET2eaQvnQFH6DWeMgl/7tjG8ucVTMPSO9
yMKLzN6cua58WQ9LAIFBerVdwOgQaDe2J9q4qjEos9wEExboksRSku+pJjUV0TK0
k6faCSg5lBW7u6PeKDCS1HEIz+LPCSBsNmjKtlxZClXfxPPeaMZiageMu3lUz321
BVEpjMScw9d7Of9NdRZ09H7hTMUt6Li2RmNqA/id5q7yru9z89xpDNUIoGklMV9x
VCLPeMOX28jegxEn1Yt8FsVYlg==
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:39:33 2025 by rpki-client