Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/UqC3EkIYfhQPZr2IZsUmfxijB20.roa
File: UqC3EkIYfhQPZr2IZsUmfxijB20.roa (raw, json)
Hash identifier: m4TPWU3yqCNb1B/O8M0UCeAl/Mym7o+L9Szbzz188u4=
Subject key identifier: 52:A0:B7:12:42:18:7E:14:0F:66:BD:88:66:C5:26:7F:18:A3:07:6D
Certificate issuer: /CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Certificate serial: 316515E9
Authority key identifier: 6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/UqC3EkIYfhQPZr2IZsUmfxijB20.roa
Signing time: Thu 24 Feb 2022 12:15:30 +0000
ROA not before: Thu 24 Feb 2022 12:15:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39246
IP address blocks: 77.78.134.0/24 maxlen: 24
77.78.133.0/24 maxlen: 24
77.78.139.0/24 maxlen: 24
77.78.138.0/24 maxlen: 24
77.78.137.0/24 maxlen: 24
77.78.136.0/24 maxlen: 24
77.78.135.0/24 maxlen: 24
77.78.143.0/24 maxlen: 24
77.78.142.0/24 maxlen: 24
109.121.132.0/24 maxlen: 24
109.121.131.0/24 maxlen: 24
109.121.130.0/24 maxlen: 24
109.121.129.0/24 maxlen: 24
77.78.141.0/24 maxlen: 24
77.78.140.0/24 maxlen: 24
109.121.150.0/24 maxlen: 24
109.121.149.0/24 maxlen: 24
109.121.148.0/24 maxlen: 24
77.78.132.0/24 maxlen: 24
77.78.131.0/24 maxlen: 24
77.78.129.0/24 maxlen: 24
77.78.128.0/24 maxlen: 24
62.192.132.0/24 maxlen: 24
62.192.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 828708329 (0x316515e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Validity
Not Before: Feb 24 12:15:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52a0b71242187e140f66bd8866c5267f18a3076d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b0:81:bc:7d:3f:e0:9c:38:3c:d5:b9:9c:90:
44:6a:a6:f7:af:b6:1a:a0:f1:e4:6d:04:04:ca:f6:
a1:5e:df:d9:18:bf:20:9a:6b:bd:fb:a5:a5:c9:fe:
28:d1:d1:5c:21:6b:2b:b8:c2:53:dd:12:f9:3c:44:
50:2c:8c:b4:c4:99:f2:0b:17:12:93:ee:87:43:5b:
05:d8:da:96:22:43:fd:18:fb:d6:57:d9:eb:23:89:
95:1b:3d:64:5a:cc:ce:c4:50:70:bd:8b:bf:de:e4:
7a:8f:6e:46:bd:cb:c2:33:67:90:61:78:bc:32:0e:
c7:be:46:69:53:d1:68:fc:24:67:86:15:3d:a0:71:
63:0a:10:c9:66:f4:84:d3:5f:70:7b:ad:ae:18:da:
1a:40:e6:06:ce:95:b5:ce:f4:03:dd:37:62:c9:69:
38:5c:5a:f4:31:67:98:5b:a2:21:c1:b6:74:ac:8e:
2b:b4:18:82:a2:60:f7:47:28:e4:fd:c4:bf:84:c9:
7c:b6:ef:fa:56:90:d6:06:8f:5d:16:09:3f:ff:48:
4c:e2:08:1f:61:1c:79:79:58:9c:7b:5f:6e:8b:e2:
e5:26:9c:b9:19:02:14:fa:2e:30:aa:15:ce:c2:a2:
75:29:7c:a2:8e:a3:61:62:4f:fd:fe:0a:03:9e:73:
65:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A0:B7:12:42:18:7E:14:0F:66:BD:88:66:C5:26:7F:18:A3:07:6D
X509v3 Authority Key Identifier:
keyid:6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/UqC3EkIYfhQPZr2IZsUmfxijB20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/bdLps6TXsks6aqFPPto_FPopx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.132.0/23
77.78.128.0/23
77.78.131.0-77.78.143.255
109.121.129.0-109.121.132.255
109.121.148.0-109.121.150.255
Signature Algorithm: sha256WithRSAEncryption
4a:53:ee:4d:92:cc:3a:ff:4c:1c:93:b8:bf:43:7c:5e:72:b4:
4d:84:56:de:2b:d6:96:b7:ea:a6:cd:dd:35:28:30:32:31:f5:
a2:17:4f:6f:77:d0:43:ef:02:2f:33:b7:2f:78:f4:47:03:6b:
3d:a0:c6:37:25:5f:d1:66:21:17:f0:0b:55:48:4a:a3:79:a0:
e3:fb:de:69:8f:66:b2:51:fc:33:58:36:cd:b6:3f:0c:b3:41:
3c:3b:c0:88:32:32:2c:c6:9c:d7:1d:d1:1c:23:26:3b:59:0b:
fe:5a:6a:03:c3:16:a7:aa:1e:68:00:10:01:34:92:55:37:9e:
ff:b0:69:e5:ef:83:e9:fc:c4:e0:41:5e:21:1f:44:40:17:eb:
4f:e8:fb:ec:d8:e1:6a:71:d5:2e:24:69:69:43:b1:24:63:e1:
e3:bb:e7:2c:ea:2a:64:24:b4:14:7b:5f:08:bf:1d:93:d7:83:
4e:07:54:d4:98:06:57:ae:62:9d:8c:a3:1d:9d:af:ce:32:1f:
c6:7b:3d:d5:2b:a3:de:64:b5:c4:4d:0c:7c:eb:28:d2:11:94:
d5:6e:ad:0e:2f:44:0c:70:ed:24:8b:90:d4:89:e0:61:84:78:
5b:13:2a:cb:4a:da:af:95:94:40:12:b4:5d:e3:26:f8:be:3d:
33:19:4f:d6
-----BEGIN CERTIFICATE-----
MIIFHzCCBAegAwIBAgIEMWUV6TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZGQyZTliM2E0ZDdiMjRiM2E2YWExNGYzZWRhM2YxNGZhMjljNzZiMB4XDTIyMDIy
NDEyMTUzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTJhMGI3MTI0MjE4
N2UxNDBmNjZiZDg4NjZjNTI2N2YxOGEzMDc2ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPGwgbx9P+CcODzVuZyQRGqm96+2GqDx5G0EBMr2oV7f2Ri/
IJprvfulpcn+KNHRXCFrK7jCU90S+TxEUCyMtMSZ8gsXEpPuh0NbBdjaliJD/Rj7
1lfZ6yOJlRs9ZFrMzsRQcL2Lv97keo9uRr3LwjNnkGF4vDIOx75GaVPRaPwkZ4YV
PaBxYwoQyWb0hNNfcHutrhjaGkDmBs6Vtc70A903YslpOFxa9DFnmFuiIcG2dKyO
K7QYgqJg90co5P3Ev4TJfLbv+laQ1gaPXRYJP/9ITOIIH2EceXlYnHtfbovi5Sac
uRkCFPouMKoVzsKidSl8oo6jYWJP/f4KA55zZUECAwEAAaOCAjkwggI1MB0GA1Ud
DgQWBBRSoLcSQhh+FA9mvYhmxSZ/GKMHbTAfBgNVHSMEGDAWgBRt0umzpNeySzpq
oU8+2j8U+inHazAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JkTHBzNlRYc2tzNmFxRlBQdG9fRlBvcHgycy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvY2Q5YmM4LTExYzUtNGY1YS1iYjI1LTQ1YWU3YjNkYWU2OC8x
L1VxQzNFa0lZZmhRUFpyMklac1VtZnhpakIyMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
Y2Q5YmM4LTExYzUtNGY1YS1iYjI1LTQ1YWU3YjNkYWU2OC8xL2JkTHBzNlRYc2tz
NmFxRlBQdG9fRlBvcHgycy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBP
BggrBgEFBQcBBwEB/wRAMD4wPAQCAAEwNgMEAT7AhAMEAU1OgDAMAwQATU6DAwQE
TU6AMAwDBABteYEDBABteYQwDAMEAm15lAMEAG15ljANBgkqhkiG9w0BAQsFAAOC
AQEASlPuTZLMOv9MHJO4v0N8XnK0TYRW3ivWlrfqps3dNSgwMjH1ohdPb3fQQ+8C
LzO3L3j0RwNrPaDGNyVf0WYhF/ALVUhKo3mg4/veaY9mslH8M1g2zbY/DLNBPDvA
iDIyLMac1x3RHCMmO1kL/lpqA8MWp6oeaAAQATSSVTee/7Bp5e+D6fzE4EFeIR9E
QBfrT+j77NjhanHVLiRpaUOxJGPh47vnLOoqZCS0FHtfCL8dk9eDTgdU1JgGV65i
nYyjHZ2vzjIfxns91Suj3mS1xE0MfOso0hGU1W6tDi9EDHDtJIuQ1IngYYR4WxMq
y0rar5WUQBK0XeMm+L49MxlP1g==
-----END CERTIFICATE-----
Generated at Sat Apr 19 15:21:03 2025 by rpki-client