Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b3fdd7-088a-4f62-8c2a-945407a017b2/1/UfsWVLXlKS-YeedBQ6KLEcHVpj4.roa
File: UfsWVLXlKS-YeedBQ6KLEcHVpj4.roa (raw, json)
Hash identifier: boZrSX+IxVlQdGAIp3Em+CvprqHqmfbsNvAMqDk06S4=
Subject key identifier: 51:FB:16:54:B5:E5:29:2F:98:79:E7:41:43:A2:8B:11:C1:D5:A6:3E
Certificate issuer: /CN=55b53e8930434c72a5807a055082b98599b2707f
Certificate serial: 019564527365D7D6A3926B622934AEF41125
Authority key identifier: 55:B5:3E:89:30:43:4C:72:A5:80:7A:05:50:82:B9:85:99:B2:70:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbU-iTBDTHKlgHoFUIK5hZmycH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b3fdd7-088a-4f62-8c2a-945407a017b2/1/UfsWVLXlKS-YeedBQ6KLEcHVpj4.roa
Signing time: Wed 05 Mar 2025 03:21:19 +0000
ROA not before: Wed 05 Mar 2025 03:21:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29107
IP address blocks: 77.87.144.0/22 maxlen: 22
77.87.148.0/22 maxlen: 22
92.249.64.0/18 maxlen: 18
178.54.0.0/17 maxlen: 17
178.54.4.0/24 maxlen: 24
178.54.5.0/24 maxlen: 24
178.54.6.0/24 maxlen: 24
178.54.7.0/24 maxlen: 24
178.54.8.0/24 maxlen: 24
178.54.9.0/24 maxlen: 24
178.54.10.0/24 maxlen: 24
178.54.11.0/24 maxlen: 24
178.54.120.0/24 maxlen: 24
178.54.121.0/24 maxlen: 24
193.201.80.0/23 maxlen: 23
194.0.88.0/22 maxlen: 22
194.0.88.0/23 maxlen: 23
194.0.90.0/23 maxlen: 23
195.69.84.0/22 maxlen: 22
195.69.84.0/23 maxlen: 23
195.69.86.0/23 maxlen: 23
2001:67c:2b14::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:64:52:73:65:d7:d6:a3:92:6b:62:29:34:ae:f4:11:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55b53e8930434c72a5807a055082b98599b2707f
Validity
Not Before: Mar 5 03:21:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=51fb1654b5e5292f9879e74143a28b11c1d5a63e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:40:3c:af:11:f5:91:1a:24:d6:0e:9a:1a:a0:
13:9e:b3:ae:4d:44:5d:4f:a9:ff:c8:eb:31:7e:c3:
49:4e:1a:c0:3b:99:99:1b:3e:1d:fd:26:fb:90:d2:
9b:ff:d0:99:74:97:d9:5c:7a:7c:bb:49:58:3a:76:
95:2d:2d:6e:13:21:9e:0b:06:ad:3c:2c:02:91:2a:
6d:66:64:a9:82:54:49:3d:0e:db:8d:2e:98:65:54:
fb:ad:cf:71:dd:36:e5:d6:c3:e3:7c:38:06:0e:4d:
73:9f:15:a2:19:53:48:5a:9e:5c:86:fe:7f:4c:03:
4a:c9:ec:c4:1e:b4:79:95:d1:a6:24:6c:13:e8:bc:
bc:b6:2c:cc:c4:a5:1b:d5:60:b9:52:4f:d9:46:b5:
ff:ad:ce:23:92:95:1c:9e:ce:6b:f2:75:14:54:ae:
41:68:66:77:d6:38:e0:63:95:f9:1b:c7:83:97:c5:
66:06:11:f1:af:c1:15:64:14:bf:d2:db:f8:b7:cf:
ca:18:f0:5b:cb:ed:3e:30:92:31:4a:ea:fd:ed:54:
6d:f5:e5:a6:aa:14:59:1f:ff:13:3b:34:ee:ca:ec:
89:a2:b3:40:51:3e:b1:39:7c:02:fa:55:db:ea:84:
b4:e1:54:bf:92:ea:75:fe:f9:6d:72:a4:49:2e:c2:
69:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:FB:16:54:B5:E5:29:2F:98:79:E7:41:43:A2:8B:11:C1:D5:A6:3E
X509v3 Authority Key Identifier:
keyid:55:B5:3E:89:30:43:4C:72:A5:80:7A:05:50:82:B9:85:99:B2:70:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbU-iTBDTHKlgHoFUIK5hZmycH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b3fdd7-088a-4f62-8c2a-945407a017b2/1/UfsWVLXlKS-YeedBQ6KLEcHVpj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b3fdd7-088a-4f62-8c2a-945407a017b2/1/VbU-iTBDTHKlgHoFUIK5hZmycH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.87.144.0/21
92.249.64.0/18
178.54.0.0/17
193.201.80.0/23
194.0.88.0/22
195.69.84.0/22
IPv6:
2001:67c:2b14::/48
Signature Algorithm: sha256WithRSAEncryption
14:21:c6:f4:bc:ba:e1:91:ba:22:42:50:4d:49:75:a1:6d:39:
24:95:e5:d9:93:74:6a:aa:6b:61:d3:ef:57:8d:49:ca:e3:05:
3b:39:94:29:58:d2:e0:fb:5d:31:20:e8:9a:7e:3d:67:6e:31:
ff:89:94:d8:d8:8d:d9:75:46:5b:b1:5f:85:38:bf:7e:c3:db:
33:bc:6d:68:3b:56:7d:e0:3b:2c:5b:2a:06:80:98:2a:65:26:
55:9d:03:8e:9e:d6:03:05:23:f6:72:1f:a6:3d:bf:09:fc:fd:
98:2e:6d:22:f7:8d:98:3c:91:cc:f6:ac:44:67:59:5b:17:d0:
5f:02:1f:25:b9:d2:22:a8:a0:85:83:af:c0:02:36:c0:55:ef:
85:a9:7d:62:39:10:59:22:28:e5:d9:af:bb:92:25:af:86:b5:
48:3d:c8:a6:31:7e:a3:42:c1:5a:54:85:ef:9a:5f:17:35:e5:
a1:95:cb:1d:42:04:dd:38:e2:4d:7a:17:17:10:58:99:2c:9e:
97:e6:ff:fe:c8:31:c8:4b:d2:a6:19:66:9c:43:1a:9f:e0:d7:
71:bb:15:a0:19:56:4b:e7:90:b2:ef:a3:b0:0f:63:a9:db:7c:
9a:98:99:6b:71:94:e8:98:b4:af:32:07:b3:46:cc:54:03:ee:
6e:10:7b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:01 2025 by rpki-client on console.sobornost.net