Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/f-3UB2fpDR25JfmB-ZQsAWx50Bs.roa
File: f-3UB2fpDR25JfmB-ZQsAWx50Bs.roa (raw, json)
Hash identifier: /X5jX7qRcZhxgxunHoLQ2pcUsg7lV6cK9KNavOlbN/w=
Subject key identifier: 7F:ED:D4:07:67:E9:0D:1D:B9:25:F9:81:F9:94:2C:01:6C:79:D0:1B
Certificate issuer: /CN=56db1eaf1792a2cd5289dc7fc5242ea35245134e
Certificate serial: 182BFCF9
Authority key identifier: 56:DB:1E:AF:17:92:A2:CD:52:89:DC:7F:C5:24:2E:A3:52:45:13:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VtserxeSos1Sidx_xSQuo1JFE04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/f-3UB2fpDR25JfmB-ZQsAWx50Bs.roa
Signing time: Sat 01 Jan 2022 06:59:08 +0000
ROA not before: Sat 01 Jan 2022 06:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28907
IP address blocks: 77.87.192.0/21 maxlen: 21
195.39.197.0/24 maxlen: 24
195.39.196.0/23 maxlen: 23
89.184.64.0/19 maxlen: 24
78.27.192.0/22 maxlen: 22
78.27.192.0/18 maxlen: 24
78.27.199.0/24 maxlen: 24
5.149.120.0/21 maxlen: 24
195.177.118.0/23 maxlen: 23
195.177.116.0/23 maxlen: 23
195.177.116.0/22 maxlen: 22
2a02:2278:215::/48 maxlen: 48
2a02:2278::/32 maxlen: 48
2a02:2278:210::/48 maxlen: 48
2a02:2278:100::/48 maxlen: 48
2a02:2278:209::/48 maxlen: 48
2a02:2278:208::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405535993 (0x182bfcf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56db1eaf1792a2cd5289dc7fc5242ea35245134e
Validity
Not Before: Jan 1 06:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fedd40767e90d1db925f981f9942c016c79d01b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:75:f8:20:a0:3d:ad:77:9f:ea:00:2e:f6:51:
a1:84:76:02:a8:fc:e0:ec:5d:6e:d4:8b:50:2e:bd:
7c:82:32:0f:91:8c:33:8e:5b:12:82:20:68:1e:52:
a2:2e:34:d4:15:99:b1:b2:a9:8e:a0:4a:53:16:69:
af:d1:56:4a:2b:42:05:72:c5:8c:72:4b:1d:d6:10:
6b:0c:52:2c:e1:84:58:54:7f:db:c0:31:88:ac:4d:
e1:87:6a:c9:01:8b:72:03:6f:d0:25:d5:c9:0a:02:
e6:19:ff:14:a5:fb:b5:45:cc:54:cc:ab:34:8e:9f:
c0:68:02:30:29:eb:a4:6a:f7:da:5d:ae:39:66:a5:
01:b7:18:65:a6:20:be:a6:8e:3a:30:93:43:9e:8c:
a4:ee:aa:4f:4c:86:30:e1:f4:79:4b:ff:34:55:5e:
ab:60:27:9a:2d:c2:da:22:ec:c9:49:47:ac:81:34:
82:8e:6f:48:07:09:05:9b:0c:5e:50:e9:4f:98:bf:
73:29:1e:e5:1c:85:38:01:a8:02:12:81:81:e4:2d:
9b:1c:d5:68:28:05:5d:9a:ea:7b:fe:9d:e2:5e:c3:
55:f8:41:a3:1b:ba:b0:d0:1c:f0:c1:55:65:ce:c3:
eb:ec:89:66:48:36:78:26:0e:dd:0e:f2:78:76:21:
f0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:ED:D4:07:67:E9:0D:1D:B9:25:F9:81:F9:94:2C:01:6C:79:D0:1B
X509v3 Authority Key Identifier:
keyid:56:DB:1E:AF:17:92:A2:CD:52:89:DC:7F:C5:24:2E:A3:52:45:13:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtserxeSos1Sidx_xSQuo1JFE04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/f-3UB2fpDR25JfmB-ZQsAWx50Bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b4bd5a-9d66-471c-9a0a-4361c8c37d29/1/VtserxeSos1Sidx_xSQuo1JFE04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.120.0/21
77.87.192.0/21
78.27.192.0/18
89.184.64.0/19
195.39.196.0/23
195.177.116.0/22
IPv6:
2a02:2278::/32
Signature Algorithm: sha256WithRSAEncryption
3a:ea:32:f9:b8:14:98:66:9c:99:9a:97:14:d1:6e:ac:04:ca:
ae:74:ae:c5:ed:65:c4:c9:0c:d6:72:07:f8:9a:e1:1d:0f:8f:
df:fa:20:2b:1f:3f:da:0f:7d:38:53:04:32:11:d1:c5:01:1c:
66:6c:3b:8c:98:2e:4c:76:d7:6f:17:8d:d9:25:0f:06:03:42:
65:2f:6e:c2:0e:fa:66:27:49:dc:e5:4d:4e:bf:3c:3f:65:c0:
38:15:ed:68:38:ed:ab:ee:eb:35:c2:49:40:83:4c:ec:a9:8a:
3d:28:85:d9:a8:b9:b6:b2:42:7e:b8:7f:0f:67:b0:43:b0:40:
7f:b7:2c:c0:d3:1b:4e:48:cd:0a:b5:47:f8:89:f9:0d:a3:98:
d3:0d:fe:d7:76:b6:ee:69:df:a9:25:eb:b6:12:66:ca:9c:ba:
a4:e6:16:85:62:2d:63:0a:2a:78:9b:6e:65:3e:05:e3:43:07:
cb:ae:fd:bf:41:c5:88:1f:f3:02:4b:cf:79:40:bf:51:3a:12:
bb:8f:d1:5e:27:cd:22:f3:06:ba:a4:54:2b:a5:68:ed:7d:18:
25:98:93:d7:29:d8:78:cb:ff:e1:f4:b9:e4:4d:4e:34:0d:a5:
2d:e9:0d:d4:fb:eb:0e:78:8f:ff:cf:a7:95:c3:c4:5a:7d:14:
a8:b3:56:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:08 2025 by rpki-client