Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/007d5f-5b07-4eaf-a732-3ba436a3cc68/1/uzsX5SF1dVvuO1_s47VuAXUSAyU.roa
File: uzsX5SF1dVvuO1_s47VuAXUSAyU.roa (raw, json)
Hash identifier: WoITMZVFqkG63Wb7oSDzr0axMN4aTE47+vr6THoCfgs=
Subject key identifier: BB:3B:17:E5:21:75:75:5B:EE:3B:5F:EC:E3:B5:6E:01:75:12:03:25
Certificate issuer: /CN=6d3318ffd53e419ca5b5927d37ecf8d63f8d009c
Certificate serial: 018571D7B8A7FD559A356B744FCDAB8F5307
Authority key identifier: 6D:33:18:FF:D5:3E:41:9C:A5:B5:92:7D:37:EC:F8:D6:3F:8D:00:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTMY_9U-QZyltZJ9N-z41j-NAJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/007d5f-5b07-4eaf-a732-3ba436a3cc68/1/uzsX5SF1dVvuO1_s47VuAXUSAyU.roa
Signing time: Mon 02 Jan 2023 09:37:21 +0000
ROA not before: Mon 02 Jan 2023 09:37:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211949
IP address blocks: 178.217.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:b8:a7:fd:55:9a:35:6b:74:4f:cd:ab:8f:53:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d3318ffd53e419ca5b5927d37ecf8d63f8d009c
Validity
Not Before: Jan 2 09:37:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb3b17e52175755bee3b5fece3b56e0175120325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:15:d6:31:b5:37:37:07:86:8b:e6:ac:32:d2:
1f:d8:bf:2e:93:27:7b:e1:3e:92:19:30:08:cc:4b:
55:ab:38:52:86:e4:38:5c:16:ad:c5:34:70:9e:28:
2a:2f:ef:e8:02:51:fa:81:52:76:63:96:cb:12:34:
48:c2:2d:0d:23:29:52:8d:02:8e:ee:42:c0:bc:2f:
f5:9e:e0:7d:1c:21:96:68:82:8d:d3:4b:82:36:84:
d8:7a:cc:56:78:d2:4a:b4:ab:e8:90:a9:80:0d:4f:
ea:5a:b0:1e:a4:e1:7f:a9:76:b8:ab:f1:7c:cf:b4:
32:2c:09:1c:10:4f:c0:0b:43:28:4b:67:74:16:a0:
60:4b:00:29:ea:43:d1:16:b2:e1:5f:fb:67:b3:5a:
a0:f2:47:ae:bc:95:5a:16:26:b1:19:0a:2e:ef:33:
a3:60:89:a1:b2:02:8e:b0:53:28:89:fb:f4:61:33:
be:d9:67:9d:53:09:96:af:6c:9d:60:e9:65:f5:41:
b1:25:68:c9:e7:13:8f:6f:19:21:2d:d1:e3:58:d2:
eb:d0:a6:e3:49:45:3b:2a:14:c1:a0:c4:f4:ba:55:
c4:9e:f6:bb:93:c4:b6:5c:bb:f6:12:23:29:fd:6b:
85:f0:31:d7:4c:9e:7e:de:63:ff:68:68:33:94:fe:
5c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3B:17:E5:21:75:75:5B:EE:3B:5F:EC:E3:B5:6E:01:75:12:03:25
X509v3 Authority Key Identifier:
keyid:6D:33:18:FF:D5:3E:41:9C:A5:B5:92:7D:37:EC:F8:D6:3F:8D:00:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTMY_9U-QZyltZJ9N-z41j-NAJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/007d5f-5b07-4eaf-a732-3ba436a3cc68/1/uzsX5SF1dVvuO1_s47VuAXUSAyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/007d5f-5b07-4eaf-a732-3ba436a3cc68/1/bTMY_9U-QZyltZJ9N-z41j-NAJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.217.234.0/24
Signature Algorithm: sha256WithRSAEncryption
45:dd:cd:c6:2d:b0:45:16:32:15:12:ec:c5:94:01:b9:aa:29:
b8:84:21:e6:2d:64:1e:42:b1:6a:69:55:77:65:45:be:a3:3b:
52:0e:ac:4a:e7:f9:b8:43:b3:2d:9d:dd:f6:87:d6:69:3b:7b:
93:9a:64:25:23:11:20:4e:10:f6:ef:99:77:44:16:eb:90:98:
55:65:9c:8d:24:e3:97:a8:59:70:8a:c7:22:28:3e:11:a4:77:
a4:ae:8f:32:7f:9f:9f:4f:17:e4:e2:d9:34:a1:ca:c7:75:30:
8b:6c:28:32:93:98:31:a5:b6:e2:2e:30:72:ba:d2:42:34:d2:
f7:a0:df:58:3d:86:73:17:d1:9b:5a:99:2d:ed:32:fe:ce:97:
76:4e:f8:20:2c:a4:93:74:cd:e2:ff:63:8e:51:1f:93:bc:86:
b3:76:8f:52:0c:0c:7e:fd:a4:23:e2:46:77:dd:f1:75:9a:42:
1a:f2:06:7b:19:74:04:67:c5:7b:41:59:83:41:47:7f:c8:98:
35:2c:a6:ce:72:39:b2:69:cb:93:10:bf:98:ba:85:ae:fb:e6:
88:89:75:ee:6e:c5:40:ee:76:1f:39:af:68:2c:d0:ab:81:8e:
8d:f8:e9:f0:26:b8:e6:8c:b6:48:66:77:1f:a4:c5:49:33:6f:
44:1d:d5:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx17in/VWaNWt0T82rj1MHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMzMxOGZmZDUzZTQxOWNhNWI1OTI3ZDM3ZWNmOGQ2M2Y4
ZDAwOWMwHhcNMjMwMTAyMDkzNzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjNiMTdlNTIxNzU3NTViZWUzYjVmZWNlM2I1NmUwMTc1MTIwMzI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhXWMbU3NweGi+asMtIf2L8ukyd7
4T6SGTAIzEtVqzhShuQ4XBatxTRwnigqL+/oAlH6gVJ2Y5bLEjRIwi0NIylSjQKO
7kLAvC/1nuB9HCGWaIKN00uCNoTYesxWeNJKtKvokKmADU/qWrAepOF/qXa4q/F8
z7QyLAkcEE/AC0MoS2d0FqBgSwAp6kPRFrLhX/tns1qg8keuvJVaFiaxGQou7zOj
YImhsgKOsFMoifv0YTO+2WedUwmWr2ydYOll9UGxJWjJ5xOPbxkhLdHjWNLr0Kbj
SUU7KhTBoMT0ulXEnva7k8S2XLv2EiMp/WuF8DHXTJ5+3mP/aGgzlP5clQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLs7F+UhdXVb7jtf7OO1bgF1EgMlMB8GA1UdIwQY
MBaAFG0zGP/VPkGcpbWSfTfs+NY/jQCcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlRNWV85VS1RWnlsdFpKOU4tejQxai1OQUp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8wMDdkNWYtNWIwNy00ZWFmLWE3MzIt
M2JhNDM2YTNjYzY4LzEvdXpzWDVTRjFkVnZ1TzFfczQ3VnVBWFVTQXlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8wMDdkNWYtNWIwNy00ZWFmLWE3MzItM2JhNDM2YTNjYzY4
LzEvYlRNWV85VS1RWnlsdFpKOU4tejQxai1OQUp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAstnqMA0G
CSqGSIb3DQEBCwUAA4IBAQBF3c3GLbBFFjIVEuzFlAG5qim4hCHmLWQeQrFqaVV3
ZUW+oztSDqxK5/m4Q7Mtnd32h9ZpO3uTmmQlIxEgThD275l3RBbrkJhVZZyNJOOX
qFlwisciKD4RpHekro8yf5+fTxfk4tk0ocrHdTCLbCgyk5gxpbbiLjByutJCNNL3
oN9YPYZzF9GbWpkt7TL+zpd2TvggLKSTdM3i/2OOUR+TvIazdo9SDAx+/aQj4kZ3
3fF1mkIa8gZ7GXQEZ8V7QVmDQUd/yJg1LKbOcjmyacuTEL+YuoWu++aIiXXubsVA
7nYfOa9oLNCrgY6N+OnwJrjmjLZIZncfpMVJM29EHdWI
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:49 2025 by rpki-client