Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/ooUmuoTJUKVrljhITIE3RZmPa8U.roa
File: ooUmuoTJUKVrljhITIE3RZmPa8U.roa (raw, json)
Hash identifier: XADymB1v0yNRzER/+kXJ6ybu8PLxSYZQeazIJKgrpIQ=
Subject key identifier: A2:85:26:BA:84:C9:50:A5:6B:96:38:48:4C:81:37:45:99:8F:6B:C5
Certificate issuer: /CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Certificate serial: 018240450CC6E7B82D531103BC19C0BDEC52
Authority key identifier: 2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/ooUmuoTJUKVrljhITIE3RZmPa8U.roa
Signing time: Wed 27 Jul 2022 15:27:23 +0000
ROA not before: Wed 27 Jul 2022 15:27:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34602
IP address blocks: 185.185.140.0/22 maxlen: 22
77.50.0.0/23 maxlen: 23
77.50.4.0/22 maxlen: 22
77.50.2.0/23 maxlen: 23
77.50.0.0/16 maxlen: 16
77.50.8.0/21 maxlen: 21
77.50.16.0/20 maxlen: 20
77.243.96.0/20 maxlen: 20
94.141.160.0/19 maxlen: 19
81.17.144.0/20 maxlen: 20
91.204.128.0/22 maxlen: 22
77.50.128.0/17 maxlen: 17
31.130.128.0/19 maxlen: 19
77.50.32.0/19 maxlen: 19
77.233.192.0/19 maxlen: 19
45.151.60.0/22 maxlen: 22
77.50.64.0/18 maxlen: 18
2a00:e79::/36 maxlen: 36
2a00:e79::/32 maxlen: 32
2a00:e78::/34 maxlen: 34
2a00:e78::/33 maxlen: 33
2a00:e78:6000::/36 maxlen: 36
2a00:e7a::/31 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:40:45:0c:c6:e7:b8:2d:53:11:03:bc:19:c0:bd:ec:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Validity
Not Before: Jul 27 15:27:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a28526ba84c950a56b9638484c813745998f6bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d9:28:f9:19:d7:5f:b3:f3:72:ee:ff:b5:5d:
d7:83:69:c0:63:a1:5d:2a:5d:bc:ba:54:fd:4c:c9:
3e:c1:15:2a:d4:39:2b:aa:11:dc:17:b9:ca:83:44:
ab:80:e7:02:83:bd:17:c9:26:fb:14:4c:97:b8:73:
f4:38:3e:cd:10:49:bb:7a:e2:0b:05:36:db:49:59:
59:95:5f:bf:f4:a0:f9:b1:df:64:58:fc:e6:2f:fa:
22:4b:72:e7:f3:f2:d2:df:85:eb:8f:44:1e:82:c8:
71:b9:c6:1b:44:9e:10:09:97:e8:1a:89:ab:13:c4:
4d:19:a6:3c:f0:91:48:a2:5d:c9:c8:bd:b4:d5:16:
8b:46:62:54:c4:66:cd:2e:04:a3:cc:5e:ff:a0:be:
9f:12:7c:10:2a:90:37:74:23:4f:0c:13:6e:bb:52:
14:3f:b7:cc:7d:19:f1:55:34:33:9a:84:45:79:6a:
fb:fa:32:83:98:32:96:5a:f6:59:ae:9a:ca:8d:bc:
30:a4:62:c9:ee:06:80:a8:9e:b4:a3:0e:e2:c7:82:
51:67:8f:dd:3f:ff:62:34:e2:78:3d:8f:80:a4:1a:
84:39:d6:2c:d1:50:5d:d2:5b:5e:96:2c:10:1e:73:
9e:40:0e:1c:22:e5:f8:fb:81:82:39:8b:38:ae:ad:
a9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:85:26:BA:84:C9:50:A5:6B:96:38:48:4C:81:37:45:99:8F:6B:C5
X509v3 Authority Key Identifier:
keyid:2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/ooUmuoTJUKVrljhITIE3RZmPa8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LHHJYAXhOoSj8x7x2ZF3f0tuMac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.128.0/19
45.151.60.0/22
77.50.0.0/16
77.233.192.0/19
77.243.96.0/20
81.17.144.0/20
91.204.128.0/22
94.141.160.0/19
185.185.140.0/22
IPv6:
2a00:e78::/33
2a00:e79::-2a00:e7b:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
87:7e:c9:c9:c4:5e:0a:5f:f8:62:39:bf:1d:77:3a:86:d6:12:
37:59:9c:25:9c:f1:8c:92:8a:58:ff:10:65:8f:0c:80:d9:ba:
d8:b6:77:ff:b5:c8:69:f0:43:f9:cf:1b:e0:c5:b9:2e:8c:5d:
b4:cd:ef:04:ba:e2:5d:7c:c0:93:fc:ac:7b:b1:59:99:e5:9b:
e9:ad:20:ad:24:84:8e:4b:af:0b:df:48:cc:cf:78:cf:0e:fa:
86:9a:22:01:05:19:5a:7b:ce:fa:c3:c4:13:12:80:ea:b4:73:
90:1d:60:d4:de:b7:6a:d9:60:61:ec:8c:1e:c6:a3:ae:f1:98:
16:87:25:27:e2:9a:b1:7c:1a:f4:03:1a:23:a5:6a:4f:2c:ae:
97:ca:84:49:d3:15:51:a6:ed:10:81:f2:ca:1a:54:72:84:c6:
20:03:8c:d6:40:84:f8:0b:3e:5a:e5:49:1a:e2:fb:84:38:d6:
92:41:54:a8:5f:3a:20:2d:18:a9:dc:27:07:ea:fa:8f:82:f7:
c8:68:91:6c:20:f3:25:37:7a:46:35:16:d1:c1:f6:4c:02:68:
f4:2b:46:09:3b:af:64:a0:7f:9b:9b:1c:66:33:02:ca:81:13:
24:fd:31:69:e1:a1:f9:e9:47:59:96:fc:82:46:44:b4:b2:27:
b4:62:cf:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:59:00 2025 by rpki-client