Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/uVoifCcxylK77QUhsILP5mPDze8.roa
File: uVoifCcxylK77QUhsILP5mPDze8.roa (raw, json)
Hash identifier: /awT3Wk50965ug7oXy0HyCdzbNSFA/bNbcgEpco4jFA=
Subject key identifier: B9:5A:22:7C:27:31:CA:52:BB:ED:05:21:B0:82:CF:E6:63:C3:CD:EF
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B2262A111ED2065B42E026399F3BEB
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/uVoifCcxylK77QUhsILP5mPDze8.roa
Signing time: Wed 01 Jan 2025 11:48:30 +0000
ROA not before: Wed 01 Jan 2025 11:48:30 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197142
IP address blocks: 82.177.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:26:2a:11:1e:d2:06:5b:42:e0:26:39:9f:3b:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b95a227c2731ca52bbed0521b082cfe663c3cdef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:67:6c:a2:ca:b5:c3:fc:89:35:84:a0:f2:f5:
2b:c0:3d:9a:49:3e:9e:97:63:1b:c6:ce:a7:65:91:
5b:90:f9:7b:03:79:b6:6a:e0:33:01:60:60:ba:fe:
03:78:0b:ec:ad:93:b8:e8:5b:5d:1a:e6:28:b7:6e:
16:cc:59:85:27:83:5d:a5:6f:f9:98:83:27:c3:20:
b6:b6:9b:6c:46:f6:61:b8:9d:c1:92:dc:ca:74:fd:
eb:80:b6:d5:d7:b9:7b:e8:01:d4:de:e9:81:9d:5c:
4d:4b:53:13:6d:e9:fc:8e:0a:55:52:2a:3c:b9:5e:
fb:31:79:a5:30:72:6f:b0:de:56:61:5f:a6:05:9e:
c6:6e:63:92:1c:7c:93:f7:0b:86:ea:d4:e4:6f:13:
75:75:07:cf:03:86:e8:c1:09:b5:5c:0c:67:f7:f5:
62:76:a3:8b:05:27:be:9f:f0:1f:83:79:b7:ca:95:
00:db:6b:08:82:1a:26:7b:a5:40:87:56:9c:9a:60:
c9:aa:e6:d6:06:93:45:e7:10:2e:3e:f1:5e:21:db:
6f:30:b4:01:96:d2:ba:b0:a4:0d:4f:9f:e8:5d:08:
53:5d:dd:11:d2:fa:85:2d:2f:3e:36:64:e3:f8:49:
2b:50:50:b2:52:de:ea:fc:f8:45:1f:0a:93:27:fa:
a9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:5A:22:7C:27:31:CA:52:BB:ED:05:21:B0:82:CF:E6:63:C3:CD:EF
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/uVoifCcxylK77QUhsILP5mPDze8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.195.0/24
Signature Algorithm: sha256WithRSAEncryption
25:2c:d7:53:cb:cf:24:9e:6e:cc:23:08:03:a3:93:9e:ba:48:
a6:6e:a9:67:93:95:d8:c3:03:24:12:d9:71:f7:1d:75:7a:fd:
41:a3:aa:24:d5:7a:c1:98:31:a7:dd:93:f9:b3:8b:57:91:b5:
ad:fb:d0:7f:f2:7f:da:34:1c:1b:f2:8d:48:67:64:f1:1a:a0:
3c:b1:78:ed:60:a7:92:15:35:f5:ea:aa:95:6e:81:f8:6b:5e:
0e:d1:e4:4d:03:45:95:9d:43:db:ba:11:0c:10:91:6d:ef:e9:
44:5d:b0:10:f2:63:de:25:42:09:46:ca:cf:d0:20:17:d4:72:
49:38:dc:6b:e6:c6:4e:f0:d2:7f:d6:87:d4:2f:91:59:cc:d4:
a6:4d:55:2f:35:47:ec:d4:e1:60:29:c2:e2:3d:ac:c3:bd:f3:
e1:77:5c:b5:4c:6b:93:18:9e:16:61:5b:10:4d:76:d7:5c:2d:
74:08:1a:53:34:50:93:70:22:21:45:ae:5e:f6:96:7c:27:0b:
28:45:43:2b:14:30:a7:54:a8:ea:dd:95:98:f8:bc:ad:11:54:
71:e3:f5:5e:0c:0a:bf:09:aa:3a:5f:c8:36:60:20:bd:d1:aa:
0a:72:04:d2:b3:ba:dc:87:63:a3:ac:a9:21:5f:85:e0:fd:43:
57:1e:01:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:27 2025 by rpki-client