Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/ufaF_NQwa4BgkWpKWq30GJ4R248.roa
File: ufaF_NQwa4BgkWpKWq30GJ4R248.roa (raw, json)
Hash identifier: poTh+pbs9bdyOBj5I/xKWyljh04AF4Zi/EYN6bLvemE=
Subject key identifier: B9:F6:85:FC:D4:30:6B:80:60:91:6A:4A:5A:AD:F4:18:9E:11:DB:8F
Certificate issuer: /CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Certificate serial: 325E85ED
Authority key identifier: 6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/ufaF_NQwa4BgkWpKWq30GJ4R248.roa
Signing time: Wed 15 Jun 2022 10:37:44 +0000
ROA not before: Wed 15 Jun 2022 10:37:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39246
IP address blocks: 77.78.134.0/24 maxlen: 24
77.78.133.0/24 maxlen: 24
77.78.139.0/24 maxlen: 24
77.78.138.0/24 maxlen: 24
77.78.137.0/24 maxlen: 24
77.78.136.0/24 maxlen: 24
77.78.135.0/24 maxlen: 24
77.78.143.0/24 maxlen: 24
77.78.142.0/24 maxlen: 24
77.78.141.0/24 maxlen: 24
77.78.140.0/24 maxlen: 24
77.78.132.0/24 maxlen: 24
77.78.131.0/24 maxlen: 24
77.78.129.0/24 maxlen: 24
77.78.128.0/24 maxlen: 24
109.121.132.0/24 maxlen: 24
109.121.131.0/24 maxlen: 24
109.121.130.0/24 maxlen: 24
109.121.129.0/24 maxlen: 24
109.121.151.0/24 maxlen: 24
109.121.150.0/24 maxlen: 24
109.121.149.0/24 maxlen: 24
109.121.148.0/24 maxlen: 24
109.121.146.0/24 maxlen: 24
109.121.155.0/24 maxlen: 24
109.121.154.0/24 maxlen: 24
62.192.132.0/24 maxlen: 24
62.192.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 845055469 (0x325e85ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Validity
Not Before: Jun 15 10:37:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9f685fcd4306b8060916a4a5aadf4189e11db8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f4:7a:98:8a:eb:cf:c8:33:73:71:37:70:95:
a7:f6:13:b6:52:8d:08:24:65:99:c0:f7:a9:b6:b8:
b7:3f:a0:8b:9a:50:22:7a:b3:3e:1e:a7:d7:ed:85:
ee:f3:ce:10:ed:c5:06:61:e2:17:ef:10:36:ad:3f:
29:b0:b9:c1:89:9f:6b:20:18:91:cd:0f:72:7c:37:
9e:90:e8:ab:98:7b:7e:a6:f9:fa:9c:b1:8f:2f:cb:
81:ff:9c:df:14:dd:41:95:b1:9d:8e:d5:e8:ef:50:
26:a9:ca:84:1f:12:84:9c:d0:ec:78:c5:aa:e3:da:
21:09:bc:0a:35:db:09:59:ac:6a:7b:15:db:f2:19:
95:67:fa:be:fd:28:88:33:6d:35:32:6d:99:2d:f7:
e6:25:98:33:2d:bf:94:02:00:16:a6:07:cb:a7:64:
4f:73:24:8d:89:a3:eb:a5:3e:ec:26:ae:c4:43:7f:
2a:e4:93:37:f2:60:30:82:ec:b3:85:a4:07:73:b6:
16:6a:10:71:fd:28:59:a0:be:d0:50:85:ad:19:9f:
d7:1b:bf:3a:52:11:ee:dd:6f:77:6e:d0:c6:53:3d:
92:96:6c:e6:67:a6:53:e6:9c:15:05:a5:93:f1:aa:
2d:82:bd:28:16:ff:bc:5e:05:a7:11:3a:1f:fd:60:
97:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F6:85:FC:D4:30:6B:80:60:91:6A:4A:5A:AD:F4:18:9E:11:DB:8F
X509v3 Authority Key Identifier:
keyid:6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/ufaF_NQwa4BgkWpKWq30GJ4R248.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/bdLps6TXsks6aqFPPto_FPopx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.192.132.0/23
77.78.128.0/23
77.78.131.0-77.78.143.255
109.121.129.0-109.121.132.255
109.121.146.0/24
109.121.148.0/22
109.121.154.0/23
Signature Algorithm: sha256WithRSAEncryption
40:10:eb:1c:b7:3d:03:05:c2:e9:a3:59:69:17:99:60:7f:78:
0b:e4:22:4e:f2:cf:23:3d:3f:fa:af:f4:9f:1d:78:3f:07:b0:
ef:ac:a3:69:52:c6:5c:7f:15:d6:3a:a7:a3:ec:30:f1:9a:41:
d8:f0:c1:46:1d:cd:2a:08:a4:5c:ac:c6:cb:ba:0b:3a:83:33:
b0:ff:e3:8c:de:52:a9:f9:c8:9c:16:b6:68:5b:6c:28:8c:cd:
0f:48:9c:2e:b7:e0:58:68:5a:aa:bb:14:e3:bd:c2:e0:c8:78:
4c:96:94:37:7f:fb:9a:b1:2a:0c:fa:b0:68:c9:32:fa:59:6e:
50:59:62:cd:35:d5:5b:af:15:f9:bd:98:d4:33:a2:f5:8f:70:
b5:b1:5f:7f:69:16:09:c0:c3:81:ef:2e:01:a9:8d:98:21:25:
84:54:32:c9:db:39:64:77:e0:cc:c4:3d:2b:59:cb:53:e7:16:
4d:4d:8a:8f:e7:6b:27:e9:bc:0f:c3:b3:38:76:7a:3e:21:ee:
03:88:b4:9e:12:49:49:98:27:26:3d:36:7f:1b:1e:4e:bb:58:
15:8c:c6:d9:10:60:a3:92:5b:f8:7a:79:34:7c:68:92:8a:a3:
7c:44:97:8e:89:4d:5b:f6:c3:08:76:87:30:e0:ef:66:2a:31:
c0:ba:19:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:26 2023 by rpki-client on console-ams.rpki-client.org