Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/ulfJZzhT8wpy57U0KoUeFfu8vxQ.roa
File: ulfJZzhT8wpy57U0KoUeFfu8vxQ.roa (raw, json)
Hash identifier: AtwWNTq68PDZ9VjsN44lL4exz7AEGUWjkGuhke5CGuE=
Subject key identifier: BA:57:C9:67:38:53:F3:0A:72:E7:B5:34:2A:85:1E:15:FB:BC:BF:14
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0189F4041D40B5719B184C0B6B5152F1E356
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/ulfJZzhT8wpy57U0KoUeFfu8vxQ.roa
Signing time: Mon 14 Aug 2023 12:27:37 +0000
ROA not before: Mon 14 Aug 2023 12:27:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 77.83.201.0/24 maxlen: 24
45.136.7.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:04:1d:40:b5:71:9b:18:4c:0b:6b:51:52:f1:e3:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Aug 14 12:27:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba57c9673853f30a72e7b5342a851e15fbbcbf14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:07:d0:c8:36:59:dc:b4:b6:44:0f:fb:66:89:
58:2c:1c:e6:cf:b8:ef:2a:94:36:6e:da:a4:33:89:
0c:d9:cd:9e:b0:59:f4:25:44:37:06:d7:88:89:37:
fb:71:1c:cf:55:7d:15:bb:18:bc:96:d4:a4:95:22:
9f:38:d7:b5:a5:e3:7c:62:65:8f:6b:7d:ca:5f:06:
04:b4:f2:b9:8c:b1:ad:69:15:dc:b0:c8:59:c8:03:
25:94:89:96:63:9d:bd:44:f2:7e:dc:6f:9e:71:bc:
44:29:ed:3d:6d:d1:d0:08:fa:14:41:d2:91:05:ae:
73:1a:00:59:cc:37:57:5d:f9:48:37:f2:ec:87:29:
55:c6:7d:d5:d8:1e:2f:cb:38:0e:f2:78:99:a5:40:
9f:22:c4:bf:c3:ba:cc:5d:b7:c5:73:86:c0:e7:3f:
16:d9:99:55:b4:cc:9f:96:8f:21:3d:67:63:54:67:
c9:b4:cd:bd:72:53:33:4e:fe:d8:70:6d:76:b2:2f:
72:8a:55:fe:d0:1d:a6:3c:3a:ec:98:62:28:1e:48:
b8:f1:48:ee:07:af:34:d4:fb:63:2a:7e:fb:b2:f4:
c9:88:bd:91:90:3e:39:59:c2:e2:cf:d8:a9:df:2f:
24:f8:01:d3:cf:6c:62:46:10:46:61:b7:54:34:ee:
07:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:57:C9:67:38:53:F3:0A:72:E7:B5:34:2A:85:1E:15:FB:BC:BF:14
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/ulfJZzhT8wpy57U0KoUeFfu8vxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.3.0/24
45.136.7.0/24
77.83.201.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b1:3e:d9:ed:cc:f9:ff:90:34:3d:3a:97:cf:a4:ff:18:13:
2d:1c:40:c1:1e:8f:e9:87:a4:ee:1c:48:69:7a:ac:78:37:bd:
2c:b3:13:0d:da:44:2a:62:ed:54:a7:16:0f:35:f9:75:24:8c:
7e:18:bc:2d:7f:d9:20:e4:eb:59:c7:5a:87:08:c8:ac:3d:c4:
f1:5e:60:03:97:ba:2d:21:5e:79:5e:66:af:3d:e0:33:33:a8:
7f:94:db:cf:c5:34:dd:18:06:8e:0c:a3:0c:d9:f0:93:e7:b1:
04:2a:99:3b:bd:2a:70:b4:3e:6a:8e:cf:8c:f0:99:01:d3:d9:
24:e6:ec:2e:05:0e:b4:05:4a:07:b9:1d:3b:e9:9d:59:c0:59:
f9:61:a4:70:1d:5d:7d:a5:8f:93:96:75:49:28:80:2b:a0:f7:
bd:ab:d9:ab:ca:c0:ea:d5:6c:b8:ba:07:e8:eb:ea:b6:9f:89:
8d:06:6c:d7:82:7c:4c:86:0a:b2:6b:3f:69:de:58:7f:eb:a4:
77:95:cd:c0:76:18:33:e4:e2:85:10:5a:25:bd:bc:b8:2b:67:
7c:5f:78:71:ca:24:29:24:50:4c:16:a4:ee:78:97:d9:2b:94:
1a:85:7d:72:92:d0:7e:57:34:8a:a4:02:d6:50:f6:32:67:09:
21:3a:de:82
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYn0BB1AtXGbGEwLa1FS8eNWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjMwODE0MTIyNzM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTU3Yzk2NzM4NTNmMzBhNzJlN2I1MzQyYTg1MWUxNWZiYmNiZjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7QfQyDZZ3LS2RA/7ZolYLBzmz7jv
KpQ2btqkM4kM2c2esFn0JUQ3BteIiTf7cRzPVX0Vuxi8ltSklSKfONe1peN8YmWP
a33KXwYEtPK5jLGtaRXcsMhZyAMllImWY529RPJ+3G+ecbxEKe09bdHQCPoUQdKR
Ba5zGgBZzDdXXflIN/LshylVxn3V2B4vyzgO8niZpUCfIsS/w7rMXbfFc4bA5z8W
2ZlVtMyflo8hPWdjVGfJtM29clMzTv7YcG12si9yilX+0B2mPDrsmGIoHki48Uju
B6801PtjKn77svTJiL2RkD45WcLiz9ip3y8k+AHTz2xiRhBGYbdUNO4HwwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFLpXyWc4U/MKcue1NCqFHhX7vL8UMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvdWxmSlp6aFQ4d3B5NTdVMEtvVWVGZnU4dnhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALYMDAwQA
LYgHAwQATVPJMA0GCSqGSIb3DQEBCwUAA4IBAQABsT7Z7cz5/5A0PTqXz6T/GBMt
HEDBHo/ph6TuHEhpeqx4N70ssxMN2kQqYu1UpxYPNfl1JIx+GLwtf9kg5OtZx1qH
CMisPcTxXmADl7otIV55XmavPeAzM6h/lNvPxTTdGAaODKMM2fCT57EEKpk7vSpw
tD5qjs+M8JkB09kk5uwuBQ60BUoHuR076Z1ZwFn5YaRwHV19pY+TlnVJKIAroPe9
q9mrysDq1Wy4ugfo6+q2n4mNBmzXgnxMhgqyaz9p3lh/66R3lc3Adhgz5OKFEFol
vby4K2d8X3hxyiQpJFBMFqTueJfZK5QahX1yktB+VzSKpALWUPYyZwkhOt6C
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:58 2025 by rpki-client