Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/aUmaQEWRoE1QO_xmwTCfYrd0iAI.roa
File: aUmaQEWRoE1QO_xmwTCfYrd0iAI.roa (raw, json)
Hash identifier: KmZy81mfy9sZbmzpjyQc2GLJJhLJJJePfwOXkxp6EMc=
Subject key identifier: 69:49:9A:40:45:91:A0:4D:50:3B:FC:66:C1:30:9F:62:B7:74:88:02
Certificate issuer: /CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Certificate serial: 0194274809559638E0612E2614371B61DB13
Authority key identifier: 8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/aUmaQEWRoE1QO_xmwTCfYrd0iAI.roa
Signing time: Thu 02 Jan 2025 13:50:19 +0000
ROA not before: Thu 02 Jan 2025 13:50:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199287
IP address blocks: 80.76.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:09:55:96:38:e0:61:2e:26:14:37:1b:61:db:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d842656177b4267ab55e4ba165a5ec00f5084bc
Validity
Not Before: Jan 2 13:50:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69499a404591a04d503bfc66c1309f62b7748802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:dc:ae:62:de:3a:fa:fe:cc:a6:10:d6:1a:8f:
c4:0b:4e:9b:ff:de:5f:da:c0:39:48:7a:cc:4c:7d:
96:1d:47:bf:34:2b:1a:ad:97:eb:3f:81:45:c3:a1:
b5:38:c9:90:18:50:d5:77:d9:0d:b6:c3:c9:14:32:
fc:6e:80:35:47:e2:d4:7d:5e:8a:d4:c7:96:9b:c5:
fc:6f:2a:20:f8:fa:67:49:79:02:05:14:ec:b8:5b:
0f:ea:df:cc:03:56:2f:7a:fc:51:10:0b:88:e6:51:
b9:d2:14:64:f3:2a:0a:c8:99:22:ff:9d:09:23:58:
7a:54:a3:ab:9f:a0:a0:10:9d:8f:f8:3c:4b:a7:d0:
52:da:67:86:0c:8f:36:a4:43:61:79:f9:34:c2:1b:
ea:9d:ff:14:92:39:63:e1:21:39:1a:44:1e:98:42:
c6:64:48:58:2a:3a:d7:a0:e4:f8:17:f5:b3:0f:51:
d1:e7:6a:5d:b2:15:99:6a:9b:6d:e9:d3:b2:65:32:
97:8e:17:c8:0c:57:48:5f:2e:10:c1:9e:be:ea:63:
80:c6:27:5d:93:59:54:f3:4e:c1:d9:e2:8f:7c:68:
c2:14:bf:50:7c:14:b9:24:bb:1e:f5:19:a4:bd:8c:
6e:df:ad:3c:32:23:f5:55:17:de:8b:3e:f6:88:93:
21:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:49:9A:40:45:91:A0:4D:50:3B:FC:66:C1:30:9F:62:B7:74:88:02
X509v3 Authority Key Identifier:
keyid:8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/aUmaQEWRoE1QO_xmwTCfYrd0iAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.228.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:79:2e:bc:4a:22:bd:f3:03:b7:9b:74:ce:41:fd:f2:d1:8c:
0d:90:30:d4:92:5e:66:6b:c1:ca:07:ab:d9:6f:de:8e:d4:84:
76:68:cc:15:13:7d:23:79:81:23:9b:5f:27:ee:1e:f8:4a:b3:
c0:42:8c:9c:b6:0b:6c:52:ec:8e:db:51:4f:09:98:cc:a4:67:
03:e6:b9:fc:d2:8b:c0:64:8d:e4:1a:09:96:a5:06:bc:50:a1:
06:62:86:60:50:64:fc:e0:52:85:94:33:9c:d3:d8:f1:05:53:
83:46:39:ed:70:f7:63:f1:83:16:d4:1b:6f:9f:5d:da:38:54:
0b:dd:3c:24:bf:41:57:d1:3c:f0:4d:93:ed:3c:51:83:65:d3:
cf:4a:c4:7f:fc:4f:58:84:f2:6f:0b:9a:2c:db:c6:23:98:40:
23:8d:95:9d:18:7b:8a:26:97:f1:04:1e:8c:83:ad:c7:e5:b1:
fc:19:58:f1:96:8a:89:81:eb:e9:bb:57:4e:da:e0:8f:3e:35:
d4:69:9f:5f:5b:26:a9:6d:df:64:2f:db:88:4c:26:5a:9e:7d:
3d:09:35:98:21:24:53:7d:11:51:bc:ea:20:88:cc:e3:08:2f:
0b:04:ca:a3:f0:5e:3a:44:42:b9:e6:73:ba:3a:e4:d9:96:44:
c3:32:56:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:02:08 2025 by rpki-client