Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/UVX7i73xTf8HXSe4y9KHKB797Lc.roa
File: UVX7i73xTf8HXSe4y9KHKB797Lc.roa (raw, json)
Hash identifier: aDk/GLVDvACcwLd9kMCdjb1R7e1Nu8NwyRgL4qjO1BE=
Subject key identifier: 51:55:FB:8B:BD:F1:4D:FF:07:5D:27:B8:CB:D2:87:28:1E:FD:EC:B7
Certificate issuer: /CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Certificate serial: 0194BB5EE7D0B92FF2B71C33A85FD530D8FC
Authority key identifier: 57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/UVX7i73xTf8HXSe4y9KHKB797Lc.roa
Signing time: Fri 31 Jan 2025 07:59:06 +0000
ROA not before: Fri 31 Jan 2025 07:59:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20119
IP address blocks: 185.210.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:5e:e7:d0:b9:2f:f2:b7:1c:33:a8:5f:d5:30:d8:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Validity
Not Before: Jan 31 07:59:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5155fb8bbdf14dff075d27b8cbd287281efdecb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:07:fa:9c:28:80:da:0c:f9:ce:31:13:12:de:
97:e5:ad:17:9b:ea:80:df:9c:fb:80:f6:6a:72:d9:
45:df:31:39:8e:05:cc:6a:46:68:7d:54:f7:f2:52:
a3:98:ef:52:a2:f6:40:27:0d:89:1d:17:bd:69:34:
d1:82:c9:68:26:1b:51:b7:3e:08:28:23:79:a7:c2:
5b:30:0d:82:43:49:e9:41:a2:ab:b1:b9:d5:f7:e3:
56:7d:04:0f:76:31:c5:f6:0f:d8:b7:3e:f7:3b:75:
9b:62:9e:ce:65:7c:db:07:a8:ab:92:3a:43:05:db:
5c:13:8d:bc:67:5a:f4:55:6d:11:91:47:d7:41:10:
56:02:4a:96:12:64:47:ee:fc:4e:f0:be:58:28:82:
4a:3a:52:5f:3f:08:7b:45:86:a2:99:5f:92:c6:ab:
26:9d:79:e0:c6:c3:00:a2:cd:54:b6:2c:0e:66:82:
19:79:f8:c9:a5:86:4d:84:99:e0:72:8c:3f:bf:58:
d8:f7:f2:29:40:27:09:8c:fc:01:6f:32:b6:93:6e:
0b:2d:5b:0b:1a:02:59:9f:ef:c8:72:33:26:e3:92:
0c:c1:69:a8:f3:d5:9a:60:c9:3d:7e:94:01:9a:96:
cd:f6:ea:0d:4a:a0:79:67:1f:4d:8f:c0:ad:8e:19:
b8:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:55:FB:8B:BD:F1:4D:FF:07:5D:27:B8:CB:D2:87:28:1E:FD:EC:B7
X509v3 Authority Key Identifier:
keyid:57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/UVX7i73xTf8HXSe4y9KHKB797Lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.192.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ba:cc:73:cc:81:8c:cf:f3:b8:ab:37:d4:59:bd:41:c6:d2:
6a:92:05:28:1f:dd:9d:25:b3:a0:2d:1e:4f:68:75:84:9c:06:
ff:93:01:fa:63:10:24:55:25:08:86:49:a3:0e:ae:72:4f:68:
c4:ce:35:7a:12:50:bf:18:b2:8a:04:6d:f1:75:e3:98:60:52:
82:58:35:0b:31:3e:84:62:04:5f:37:6e:f0:d1:65:b5:da:a3:
49:fb:df:7d:d4:ba:16:12:e2:25:d3:f7:5e:da:7a:f9:db:34:
97:19:b2:39:6c:fb:b0:72:15:db:85:24:e4:56:65:59:ba:1e:
bd:2c:20:b0:57:13:7d:1d:21:7a:1e:ca:30:7e:51:2e:36:a2:
d2:27:4d:9a:6e:df:8d:01:5b:4b:a5:75:ed:98:19:81:5b:a3:
36:41:b8:b0:0a:dc:0a:a4:40:19:da:29:5a:ca:cd:bb:cf:ac:
e0:8c:bc:99:d4:cc:a5:0d:d7:f4:b8:5f:79:fd:76:dc:69:5d:
05:de:8d:3c:19:10:f9:37:1d:25:d2:c3:dd:5f:d8:47:6b:2d:
f1:74:2a:4f:99:c0:ea:2e:1b:0c:5a:fb:94:a7:6f:b0:8a:78:
8d:e0:51:dc:39:88:b3:12:ed:67:82:b2:d9:22:83:f9:6e:37:
52:63:7a:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:21 2025 by rpki-client