Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UF5-v2IPLZsLQ9Qs1LaM8gQ0TSw.roa
File: UF5-v2IPLZsLQ9Qs1LaM8gQ0TSw.roa (raw, json)
Hash identifier: 990QP4wyVo6tUyt78dS1H3snAnotHFOv0z0yvOarrsc=
Subject key identifier: 50:5E:7E:BF:62:0F:2D:9B:0B:43:D4:2C:D4:B6:8C:F2:04:34:4D:2C
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01856CCAF991B822B300C601866080E0B449
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UF5-v2IPLZsLQ9Qs1LaM8gQ0TSw.roa
Signing time: Sun 01 Jan 2023 10:05:19 +0000
ROA not before: Sun 01 Jan 2023 10:05:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57630
IP address blocks: 194.71.0.0/23 maxlen: 23
193.234.94.0/24 maxlen: 24
192.71.0.0/24 maxlen: 24
194.103.16.0/23 maxlen: 24
193.234.116.0/22 maxlen: 22
193.183.20.0/24 maxlen: 24
193.181.34.0/24 maxlen: 24
194.103.197.0/24 maxlen: 24
194.103.95.0/24 maxlen: 24
194.14.57.0/24 maxlen: 24
193.234.3.0/24 maxlen: 24
192.165.3.0/24 maxlen: 24
194.103.145.0/24 maxlen: 24
194.132.166.0/24 maxlen: 24
194.132.164.0/24 maxlen: 24
193.183.49.0/24 maxlen: 24
193.234.144.0/24 maxlen: 24
192.165.134.0/23 maxlen: 23
194.132.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:f9:91:b8:22:b3:00:c6:01:86:60:80:e0:b4:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 10:05:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=505e7ebf620f2d9b0b43d42cd4b68cf204344d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:30:2a:c5:24:c7:a4:77:da:25:31:37:89:c2:
19:35:fd:a7:47:c3:5a:d5:ec:3b:20:bb:b8:6d:49:
0a:8c:c5:ae:b9:f0:af:c3:8e:03:c1:a1:54:b4:30:
e4:ea:d1:53:08:7f:9b:b9:ca:1e:b9:9e:0e:df:e7:
fc:10:33:3b:29:e2:4e:ed:a4:b9:54:0a:16:bf:b8:
65:37:97:be:2e:f4:ce:4f:0f:03:99:e5:aa:54:dd:
e0:2c:43:60:3f:68:08:bf:30:09:d6:a2:e6:db:4b:
64:1b:2e:91:05:b8:5c:a5:a2:a8:0d:0c:7c:9a:62:
e5:6a:81:af:36:4e:62:75:6c:31:52:a3:38:30:09:
24:72:a6:4d:76:32:5c:16:54:92:5c:09:1a:ea:1f:
11:72:d7:f7:1b:64:1d:38:41:9d:3c:be:c1:0d:b3:
07:23:7e:fa:eb:d2:35:3f:c7:29:7c:ff:da:04:97:
76:c3:b4:29:12:66:95:4b:d5:6d:c2:dd:67:3b:c2:
d1:f4:f7:81:55:7d:88:0b:cf:7e:3a:6b:51:53:4b:
f5:75:67:d0:6c:49:a8:45:07:f4:fb:d8:73:da:5f:
08:72:c0:6c:a0:81:68:2c:cb:0b:58:e6:01:52:96:
45:39:fb:d1:30:56:d6:f1:61:42:51:b2:23:0a:3e:
34:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:5E:7E:BF:62:0F:2D:9B:0B:43:D4:2C:D4:B6:8C:F2:04:34:4D:2C
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/UF5-v2IPLZsLQ9Qs1LaM8gQ0TSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.0.0/24
192.165.3.0/24
192.165.134.0/23
193.181.34.0/24
193.183.20.0/24
193.183.49.0/24
193.234.3.0/24
193.234.94.0/24
193.234.116.0/22
193.234.144.0/24
194.14.57.0/24
194.71.0.0/23
194.103.16.0/23
194.103.95.0/24
194.103.145.0/24
194.103.197.0/24
194.132.164.0/24
194.132.166.0/24
194.132.186.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:67:10:fd:fd:27:c5:77:e8:48:83:40:a3:51:c6:bc:ab:dd:
d3:c4:1d:f4:c8:49:dc:c2:53:d8:79:6e:30:ab:fe:63:8a:29:
8e:d9:bd:0a:59:4a:2d:db:ea:6f:1b:1a:65:33:86:8e:99:7c:
26:2d:51:0c:69:53:f3:11:7c:07:e6:5e:1d:66:f0:92:e0:7a:
5d:3f:ae:ba:21:95:93:d6:8c:c7:17:c1:89:31:97:0c:3f:a8:
0e:cb:04:47:9e:e8:3b:01:53:f2:80:c4:bd:b3:d4:c4:1d:d1:
d9:38:b1:b0:b5:0b:b5:35:90:d5:65:32:f1:f8:52:29:f5:34:
00:4f:0f:18:8e:19:4b:16:5e:56:18:e6:72:ac:2a:26:b1:0d:
b0:5a:0a:d6:57:8d:74:d6:3e:41:5e:de:de:e3:f7:19:6f:73:
6a:28:b6:25:eb:e6:2c:60:16:96:53:fa:aa:fc:9b:45:25:6c:
24:99:8c:45:f9:f0:45:be:8c:8c:bd:72:ba:df:cd:98:39:5d:
09:4e:5d:c0:ca:1c:3e:62:1c:1b:f1:1d:e8:b3:bd:bd:57:aa:
e4:7a:a7:40:9f:df:0e:db:57:10:bb:f4:7e:69:a3:55:dc:e2:
5e:2c:f4:c9:31:1e:3c:0e:3b:de:8f:de:5d:25:92:31:95:05:
2a:3e:d3:96
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:29 2025 by rpki-client