Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/UHRFReo-1BSf9UQ2btO_-d0ls1M.roa
File: UHRFReo-1BSf9UQ2btO_-d0ls1M.roa (raw, json)
Hash identifier: 4+IADTWz685Jfzvpde+f4j7X/Tayc+bQXgSrPnujl58=
Subject key identifier: 50:74:45:45:EA:3E:D4:14:9F:F5:44:36:6E:D3:BF:F9:DD:25:B3:53
Certificate issuer: /CN=0d3558546a2c54bbd812a19228aa98e078d3aa68
Certificate serial: 0194228D30961330C962F21391C735B91887
Authority key identifier: 0D:35:58:54:6A:2C:54:BB:D8:12:A1:92:28:AA:98:E0:78:D3:AA:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTVYVGosVLvYEqGSKKqY4HjTqmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/UHRFReo-1BSf9UQ2btO_-d0ls1M.roa
Signing time: Wed 01 Jan 2025 15:47:45 +0000
ROA not before: Wed 01 Jan 2025 15:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216157
IP address blocks: 2a10:a280::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:30:96:13:30:c9:62:f2:13:91:c7:35:b9:18:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d3558546a2c54bbd812a19228aa98e078d3aa68
Validity
Not Before: Jan 1 15:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50744545ea3ed4149ff544366ed3bff9dd25b353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:76:1e:07:5e:03:70:c6:3c:9d:ae:89:c1:b9:
ce:0b:18:50:35:59:02:b4:dd:14:19:dd:10:40:07:
9b:43:51:3e:ab:6a:80:df:fd:c3:5c:2d:00:5c:a9:
af:2b:57:f8:c7:69:26:19:74:a7:39:6a:1b:63:4b:
7d:2a:e3:02:9b:c3:f1:a8:b4:3b:57:08:c8:8a:d1:
96:eb:ea:dc:8b:2d:ac:9d:8e:08:02:2f:f3:db:18:
a7:38:5f:87:2f:22:21:cc:53:de:c2:fe:2a:d6:fe:
74:3a:e2:c9:6c:c3:6a:99:6d:92:f6:37:04:73:cf:
33:6b:83:36:a7:37:44:f4:23:7c:71:8c:11:ce:04:
62:8c:81:ff:b2:54:e9:f6:c5:bf:62:87:23:1a:7f:
ed:dd:06:fb:9a:96:6f:3b:ad:97:3c:71:d1:e1:03:
53:eb:ce:ab:4c:f8:2a:20:ab:13:2d:f7:da:6c:16:
74:ec:85:2f:ab:69:4a:2d:08:b7:60:f1:0b:94:3b:
b8:b8:b0:74:8b:6a:d8:7d:d4:dd:69:30:9f:f1:14:
f2:37:65:25:00:da:99:d0:34:b4:6e:0b:f1:13:cb:
8d:83:3e:6d:af:e9:f6:57:15:56:eb:30:98:f7:5d:
97:0a:b3:48:43:a8:1b:43:ab:21:bc:e0:13:72:98:
7b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:74:45:45:EA:3E:D4:14:9F:F5:44:36:6E:D3:BF:F9:DD:25:B3:53
X509v3 Authority Key Identifier:
keyid:0D:35:58:54:6A:2C:54:BB:D8:12:A1:92:28:AA:98:E0:78:D3:AA:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTVYVGosVLvYEqGSKKqY4HjTqmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/UHRFReo-1BSf9UQ2btO_-d0ls1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/474f27-b286-46f0-ae45-132ffc8bde46/1/DTVYVGosVLvYEqGSKKqY4HjTqmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:a280::/29
Signature Algorithm: sha256WithRSAEncryption
8d:12:bc:8c:1b:1d:72:ea:b0:bd:51:8b:7e:fd:02:49:d6:7f:
ba:ff:13:5d:aa:69:30:74:c3:9e:54:23:2f:7b:b4:8a:7e:b2:
fd:b4:99:75:cc:aa:d2:d7:96:71:e4:74:40:dd:1f:ac:e7:37:
a7:c2:9c:37:a7:a0:c2:6e:16:9f:db:36:d6:63:5c:2a:a1:2b:
82:4e:69:9a:ed:0c:43:d9:22:a8:32:5f:0b:d6:61:44:b0:93:
92:2d:6a:bb:85:f5:95:e0:f3:46:77:93:8d:99:93:02:c9:94:
72:d3:00:66:22:9b:9b:ef:ff:96:02:95:f5:d2:72:16:84:08:
b9:14:37:66:7e:4e:e1:4f:15:42:90:ae:8d:bf:be:2d:00:6e:
14:a2:f3:cf:34:ac:18:97:92:02:6f:1d:27:91:9e:5e:84:93:
d0:59:17:af:e5:90:e5:65:ca:65:19:cb:d6:5c:ab:12:c0:0f:
df:ec:a4:4b:ad:20:bc:24:91:9e:89:52:49:d3:e3:75:44:98:
6e:3e:3a:63:e8:1f:59:3a:a4:e9:1f:05:7e:5a:b5:4a:9c:6c:
19:dd:4f:c8:e6:b1:a2:d9:32:8f:e1:f5:70:8a:5a:9e:70:98:
9f:25:76:05:e2:53:95:af:ac:8a:4a:67:fc:2c:c3:cd:84:ac:
8e:0c:e4:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:04:33 2025 by rpki-client