Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/uubBFiB3y4Ci3H4BIi-bX1VaOrM.roa
File: uubBFiB3y4Ci3H4BIi-bX1VaOrM.roa (raw, json)
Hash identifier: noihtKteW+Z3lZ9yCyAnWbphQGD23/5bR+q8gaaZxQc=
Subject key identifier: BA:E6:C1:16:20:77:CB:80:A2:DC:7E:01:22:2F:9B:5F:55:5A:3A:B3
Certificate issuer: /CN=1352a9e5f25bea7d8cdf5f68eda3cfdd9684687b
Certificate serial: 1309DA5D
Authority key identifier: 13:52:A9:E5:F2:5B:EA:7D:8C:DF:5F:68:ED:A3:CF:DD:96:84:68:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E1Kp5fJb6n2M319o7aPP3ZaEaHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/uubBFiB3y4Ci3H4BIi-bX1VaOrM.roa
Signing time: Sat 01 Jan 2022 09:59:41 +0000
ROA not before: Sat 01 Jan 2022 09:59:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59854
IP address blocks: 188.214.142.0/24 maxlen: 24
89.35.173.0/24 maxlen: 24
93.119.227.0/24 maxlen: 24
185.171.185.0/24 maxlen: 24
185.171.184.0/24 maxlen: 24
185.171.187.0/24 maxlen: 24
77.81.165.0/24 maxlen: 24
77.81.164.0/24 maxlen: 24
77.81.164.0/23 maxlen: 24
128.0.47.0/24 maxlen: 24
128.0.46.0/23 maxlen: 24
128.0.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319412829 (0x1309da5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1352a9e5f25bea7d8cdf5f68eda3cfdd9684687b
Validity
Not Before: Jan 1 09:59:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bae6c1162077cb80a2dc7e01222f9b5f555a3ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dd:7e:83:a2:fc:03:97:7d:82:8f:3e:48:90:
98:46:2d:54:3d:66:ae:16:b1:9a:a6:ef:6f:e1:ce:
56:e7:f1:ff:dd:f6:97:a1:a5:47:04:86:05:9c:30:
32:62:e5:5e:89:84:14:93:17:89:1b:73:62:64:2a:
95:1b:26:66:5f:9c:43:b5:c1:47:eb:8c:a7:2f:1d:
75:b2:40:e7:21:f2:dd:f0:76:d9:f1:ac:49:85:f3:
a6:08:6b:91:31:54:29:fc:d3:bf:66:2a:3c:03:e9:
e6:1b:bc:5c:2e:1b:cf:28:84:21:a6:e0:a0:b5:70:
95:db:d2:0d:f1:de:3d:d8:2c:6c:23:9e:2c:9d:c3:
23:9c:61:94:62:34:2d:69:72:78:81:d6:27:4b:ea:
d1:6e:93:bf:90:fd:cd:3b:6a:a3:0b:7a:0d:91:87:
aa:db:a8:4c:25:98:9a:de:4f:f4:de:8d:1b:c0:e8:
67:25:8d:d5:8f:80:fd:11:7a:56:95:a5:68:b3:5a:
e9:24:bb:7b:c9:b4:33:8b:ee:f8:6e:14:28:02:bf:
b5:2d:c6:fc:00:ea:9b:1c:ff:39:f3:e3:5e:f7:11:
d3:04:c3:68:72:bd:d9:e9:18:d0:d6:6f:d5:5b:3f:
8f:a1:62:0f:47:7d:c9:b9:4e:66:85:77:67:87:8f:
27:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:E6:C1:16:20:77:CB:80:A2:DC:7E:01:22:2F:9B:5F:55:5A:3A:B3
X509v3 Authority Key Identifier:
keyid:13:52:A9:E5:F2:5B:EA:7D:8C:DF:5F:68:ED:A3:CF:DD:96:84:68:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E1Kp5fJb6n2M319o7aPP3ZaEaHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/uubBFiB3y4Ci3H4BIi-bX1VaOrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/353670-f3ae-453f-a034-034996970b9c/1/E1Kp5fJb6n2M319o7aPP3ZaEaHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.81.164.0/23
89.35.173.0/24
93.119.227.0/24
128.0.46.0/23
185.171.184.0/23
185.171.187.0/24
188.214.142.0/24
Signature Algorithm: sha256WithRSAEncryption
89:84:a4:8f:6f:c3:65:27:e9:38:97:1a:fc:f2:3e:6d:e1:d0:
6e:6b:78:a6:9d:85:ee:fa:6e:7d:8d:a4:87:ae:c1:7b:d4:c7:
8f:0a:4a:27:08:79:5d:9c:20:6f:36:94:78:27:f8:29:77:bc:
99:a3:5a:fa:07:4f:7f:36:69:0e:7d:3b:a4:22:23:cf:b7:c8:
49:6c:cd:2d:f6:16:74:92:dc:42:8e:cb:fa:3e:7f:65:52:85:
34:9e:9d:21:de:d0:64:39:da:10:ec:89:29:f7:4a:c8:11:06:
91:47:1c:b0:44:c6:58:77:3b:fb:e0:1b:e9:96:02:d6:80:1b:
dc:fe:2a:07:ba:4d:0e:dc:46:db:68:8b:1f:f3:8f:72:cf:34:
50:df:56:ea:a8:24:aa:68:59:0a:5f:93:1c:ba:33:3e:11:51:
8a:3a:58:13:b2:f0:3f:83:da:c8:b4:4b:1d:29:9f:c1:c5:7b:
ab:91:05:87:2a:31:31:e5:24:18:8e:0f:57:ad:23:41:9e:e9:
8f:b8:0f:44:6f:b5:ba:4e:b1:6e:13:4c:24:c8:f1:62:27:4c:
13:f1:a2:6d:45:33:f7:1c:a3:03:89:63:64:00:1a:27:42:ba:
bf:00:60:0e:e9:c7:74:e2:7b:3e:2b:91:93:00:20:43:a2:33:
43:5a:92:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 05:20:35 2025 by rpki-client