Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/USVBF07QsxKAlyJVlgYlRIDq0Cg.roa
File: USVBF07QsxKAlyJVlgYlRIDq0Cg.roa (raw, json)
Hash identifier: gC6JB/JMY8WMoc2UwEJyMFw9M8iET4u+0d51GEl9QbM=
Subject key identifier: 51:25:41:17:4E:D0:B3:12:80:97:22:55:96:06:25:44:80:EA:D0:28
Certificate issuer: /CN=27321078f359d7990276dabb0f8c30070e685963
Certificate serial: 01941FFA0112B754C1276F3A91C4275611E9
Authority key identifier: 27:32:10:78:F3:59:D7:99:02:76:DA:BB:0F:8C:30:07:0E:68:59:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JzIQePNZ15kCdtq7D4wwBw5oWWM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/USVBF07QsxKAlyJVlgYlRIDq0Cg.roa
Signing time: Wed 01 Jan 2025 03:47:45 +0000
ROA not before: Wed 01 Jan 2025 03:47:45 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210526
IP address blocks: 185.179.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:01:12:b7:54:c1:27:6f:3a:91:c4:27:56:11:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27321078f359d7990276dabb0f8c30070e685963
Validity
Not Before: Jan 1 03:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=512541174ed0b312809722559606254480ead028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f9:a3:d0:b1:f6:86:78:0b:41:8e:49:aa:d4:
d4:2c:3d:8c:59:56:a7:b4:8f:b1:ab:fc:9a:e2:57:
bf:3a:a9:af:c0:28:ec:8d:99:23:3d:d7:92:ab:e1:
86:da:1b:d8:4b:d5:4a:1b:d6:66:47:62:76:c8:6a:
97:0a:26:61:73:f0:f7:85:a4:a2:f5:88:c9:ba:a3:
44:5d:55:f3:f8:0e:97:a5:06:88:9e:e2:e5:d2:c2:
36:fa:c2:59:df:69:7d:5b:00:43:31:7b:8a:48:53:
05:08:d0:3e:4f:5b:4a:5b:b9:ce:d0:32:da:b8:ca:
c7:40:c9:b0:ae:d7:d8:c9:14:ab:dc:84:a2:94:a4:
e0:3a:ef:df:89:42:26:e9:c9:64:97:d3:ec:da:4c:
50:92:47:6e:cc:23:86:53:f2:0e:e6:4e:2e:c5:1d:
e2:66:57:7c:f6:8e:b5:16:68:95:96:68:5c:bf:ea:
86:89:a0:1e:0a:ea:42:5e:43:2a:e0:12:82:01:40:
e1:1f:34:74:7f:ef:cc:d1:56:65:ec:e1:21:00:3c:
fb:a2:8f:89:3b:12:0a:4e:b8:0f:d9:95:4e:4d:80:
ae:5f:b8:9f:1d:d2:5f:6f:01:b5:5b:99:e1:94:7b:
cc:43:19:21:0a:80:b6:15:18:ee:9a:eb:26:64:c5:
59:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:25:41:17:4E:D0:B3:12:80:97:22:55:96:06:25:44:80:EA:D0:28
X509v3 Authority Key Identifier:
keyid:27:32:10:78:F3:59:D7:99:02:76:DA:BB:0F:8C:30:07:0E:68:59:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JzIQePNZ15kCdtq7D4wwBw5oWWM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/USVBF07QsxKAlyJVlgYlRIDq0Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/eb27f2-e369-4b07-8d1d-c3431d320406/1/JzIQePNZ15kCdtq7D4wwBw5oWWM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.212.0/24
Signature Algorithm: sha256WithRSAEncryption
22:6b:4d:a5:57:62:03:d6:24:5d:aa:ce:0d:ff:58:fe:e1:00:
7a:24:b3:46:ac:e2:41:01:ee:67:7f:3e:60:57:5a:86:78:5f:
ce:71:70:32:54:ca:63:a7:f3:ac:d9:7e:88:e1:c2:8e:ed:f4:
b0:3a:68:d4:34:74:84:7b:1c:9d:3f:0c:7a:11:3d:43:fa:34:
36:29:ca:15:66:42:8d:5e:de:63:16:b8:a5:96:f7:02:73:b9:
24:5d:46:77:a0:67:83:4a:b6:32:73:c8:83:a6:20:10:fc:57:
be:54:50:b9:6d:89:56:7a:22:5a:9b:0f:12:7f:d6:6d:9e:18:
00:5e:1d:8b:b9:5e:0c:78:e2:5a:ee:0f:ba:1d:2a:5d:da:59:
ce:6b:9d:79:f9:28:ec:af:73:5b:eb:3f:d3:27:60:b6:22:c5:
99:a2:7c:2d:bb:f1:10:52:68:92:c4:3e:ab:36:82:ff:ba:96:
e8:ff:00:1c:02:48:ea:22:db:91:c9:87:b0:ee:85:5f:67:e2:
f9:4e:c8:b9:41:85:86:8b:85:b4:49:39:8f:fd:fe:ed:27:1f:
8d:b3:8f:8e:d8:e9:9d:4b:9b:4a:f9:a4:0b:2e:d2:4e:cb:c6:
7e:ae:0e:1e:42:b7:89:e2:69:c0:f3:04:df:4f:e4:fd:21:33:
ba:ac:16:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 16:50:46 2025 by rpki-client