Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/602c35-d366-47c0-a334-21dead0c5e9c/1/UXWSLhVlTXSrRh4vQjiJGZfTc28.roa
File: UXWSLhVlTXSrRh4vQjiJGZfTc28.roa (raw, json)
Hash identifier: GwWbj030dqXFgPoZUUmrOygMcwYdz6TWzzcKF95NLWM=
Subject key identifier: 51:75:92:2E:15:65:4D:74:AB:46:1E:2F:42:38:89:19:97:D3:73:6F
Certificate issuer: /CN=dcef19adfa6945589bc2d100154e5a58c4498a14
Certificate serial: 019422FB3A1D38D916A99920DCFBF30B1688
Authority key identifier: DC:EF:19:AD:FA:69:45:58:9B:C2:D1:00:15:4E:5A:58:C4:49:8A:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O8ZrfppRVibwtEAFU5aWMRJihQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/602c35-d366-47c0-a334-21dead0c5e9c/1/UXWSLhVlTXSrRh4vQjiJGZfTc28.roa
Signing time: Wed 01 Jan 2025 17:47:57 +0000
ROA not before: Wed 01 Jan 2025 17:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210237
IP address blocks: 5.181.228.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:3a:1d:38:d9:16:a9:99:20:dc:fb:f3:0b:16:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef19adfa6945589bc2d100154e5a58c4498a14
Validity
Not Before: Jan 1 17:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5175922e15654d74ab461e2f4238891997d3736f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f6:f6:8b:59:fc:af:66:f9:2d:95:62:92:b7:
27:50:fa:fb:42:0d:3e:08:79:a6:41:d2:20:6a:45:
33:94:8d:df:e4:20:33:03:2f:05:d2:e9:d2:72:bc:
ca:57:21:bf:75:e4:e2:cc:50:4a:48:92:b0:0a:96:
d2:89:b3:52:bb:c9:85:6c:c1:78:9c:44:7a:78:2f:
97:89:00:02:25:01:ff:c2:7b:bc:2c:e3:ed:ce:91:
4f:5c:72:69:1b:27:4c:05:4e:19:0b:b6:f4:87:45:
88:ce:88:9b:18:03:13:32:20:ae:7b:54:60:f1:23:
4d:e6:1d:00:c8:7c:cb:aa:fb:db:04:71:1f:eb:56:
0b:09:23:2a:b4:6c:3b:90:0c:e9:89:90:fe:4e:03:
cb:25:e6:76:90:21:70:f8:9a:b1:9a:de:ed:93:34:
d5:72:50:34:ed:0c:09:87:f9:64:11:66:0c:18:c6:
69:48:5b:0e:73:ec:4c:58:14:50:f1:29:c0:57:61:
0a:09:dd:47:fb:2a:cd:dc:de:e5:6f:7c:65:f9:80:
10:68:36:60:a0:45:b5:63:7e:c6:d3:e4:af:f0:07:
33:08:df:d0:09:e9:d5:8a:00:4e:8d:70:7a:a5:39:
c1:87:66:3f:01:4b:43:c5:ba:30:aa:14:47:0d:43:
80:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:75:92:2E:15:65:4D:74:AB:46:1E:2F:42:38:89:19:97:D3:73:6F
X509v3 Authority Key Identifier:
keyid:DC:EF:19:AD:FA:69:45:58:9B:C2:D1:00:15:4E:5A:58:C4:49:8A:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O8ZrfppRVibwtEAFU5aWMRJihQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/602c35-d366-47c0-a334-21dead0c5e9c/1/UXWSLhVlTXSrRh4vQjiJGZfTc28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/602c35-d366-47c0-a334-21dead0c5e9c/1/3O8ZrfppRVibwtEAFU5aWMRJihQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.228.0/22
Signature Algorithm: sha256WithRSAEncryption
46:82:21:88:b7:31:f4:c6:29:0e:84:5f:c2:c1:89:ad:74:a4:
2a:b6:89:fd:3d:16:cf:39:54:4c:ac:0c:08:e4:a5:d1:36:0e:
9a:00:25:fa:5c:18:d8:88:38:4a:a1:1c:90:c9:9f:ee:3a:93:
c7:93:a8:2e:50:ae:b2:f5:4a:81:96:40:6d:ca:11:48:7f:c0:
30:90:d0:8a:e6:0d:ee:4c:ca:84:c6:a6:80:de:28:2f:22:fc:
2f:2f:04:2d:f5:7f:be:c3:ae:bc:86:c2:bc:c0:6c:03:31:79:
7a:47:7d:80:81:04:4a:6b:33:a2:ef:d5:da:13:8d:11:06:f9:
e1:68:c7:f2:fb:e4:ba:8e:ec:b2:9c:20:f5:54:ad:65:fe:f1:
ca:08:df:7b:3e:62:71:74:b9:f6:63:b3:64:27:81:3c:cf:96:
42:36:22:6e:b3:4c:9a:26:6d:74:cb:0c:f5:ed:da:29:1d:83:
d5:d6:3c:57:0a:71:d3:d5:11:0d:f6:ea:39:f1:6b:54:9b:17:
02:b4:e5:04:ce:bc:81:5c:6d:0b:e0:70:75:ff:b9:8e:b2:64:
52:48:7d:b1:c2:83:e6:58:f6:c4:1b:8c:b0:e4:a3:a2:2c:8c:
0f:66:a5:9e:45:57:ce:0d:fe:83:be:d4:1d:92:7f:bd:38:e2:
ee:c0:75:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:32:03 2025 by rpki-client