Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/ul-xO-5mZZApWQIPteBxrXhy3Gg.roa
File: ul-xO-5mZZApWQIPteBxrXhy3Gg.roa (raw, json)
Hash identifier: Xgcb4gBJ+LBlJQi0BqbRaMDSR7lxsJ55H3PWqex5WBk=
Subject key identifier: BA:5F:B1:3B:EE:66:65:90:29:59:02:0F:B5:E0:71:AD:78:72:DC:68
Certificate issuer: /CN=07526589c5194f1e5fbb9fdc51667daf0562d6d9
Certificate serial: 0194228E40403AE4D22591EAEDD787830B2C
Authority key identifier: 07:52:65:89:C5:19:4F:1E:5F:BB:9F:DC:51:66:7D:AF:05:62:D6:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B1JlicUZTx5fu5_cUWZ9rwVi1tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/ul-xO-5mZZApWQIPteBxrXhy3Gg.roa
Signing time: Wed 01 Jan 2025 15:48:55 +0000
ROA not before: Wed 01 Jan 2025 15:48:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206041
IP address blocks: 185.32.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:40:40:3a:e4:d2:25:91:ea:ed:d7:87:83:0b:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07526589c5194f1e5fbb9fdc51667daf0562d6d9
Validity
Not Before: Jan 1 15:48:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ba5fb13bee6665902959020fb5e071ad7872dc68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:11:06:64:8a:12:01:dc:ef:ee:6c:e8:1f:8f:
fc:70:45:6b:4e:f4:b4:c1:96:29:03:f1:d9:9d:b5:
6a:f1:d0:5b:d9:e1:60:86:7e:09:79:92:0e:3d:c5:
95:ea:1b:e6:f0:35:21:17:22:be:d9:91:2c:b8:b5:
27:9c:ea:89:67:e3:7c:52:2d:c4:a4:67:af:b5:c5:
bc:2d:40:04:ec:f3:1a:4d:0a:e0:f3:37:c1:23:4e:
c0:a4:c1:36:8b:02:a6:44:79:9c:6f:ab:a1:13:90:
e1:61:c3:c0:d5:d8:c0:49:58:15:92:a9:b8:f7:20:
35:4f:b6:20:81:3b:f7:ad:7b:30:cd:59:61:90:9f:
33:b2:d2:22:96:f8:0e:9a:e0:fb:26:bb:86:7e:bb:
bb:18:9d:42:9f:e8:f6:31:e5:23:d3:5f:e7:cb:f2:
cf:7f:bf:e4:b3:be:44:a4:31:90:9d:d9:42:39:9d:
59:6a:2d:d3:bf:12:3a:af:6f:5a:63:a2:78:78:01:
dc:d7:28:2d:a4:55:85:f6:54:68:3f:00:40:26:9e:
35:ef:fa:a7:a8:37:13:14:75:ec:81:82:5a:b9:51:
85:52:63:12:e0:7e:30:5e:c2:77:e4:f5:97:50:3a:
57:03:83:dd:3f:9c:85:ad:e5:50:6a:ca:e4:d8:a0:
d8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:5F:B1:3B:EE:66:65:90:29:59:02:0F:B5:E0:71:AD:78:72:DC:68
X509v3 Authority Key Identifier:
keyid:07:52:65:89:C5:19:4F:1E:5F:BB:9F:DC:51:66:7D:AF:05:62:D6:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B1JlicUZTx5fu5_cUWZ9rwVi1tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/ul-xO-5mZZApWQIPteBxrXhy3Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/B1JlicUZTx5fu5_cUWZ9rwVi1tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.69.0/24
Signature Algorithm: sha256WithRSAEncryption
45:6d:d9:3e:75:c6:63:8b:77:9c:8c:84:b9:f4:ed:fb:0a:e4:
ba:d6:0a:29:f7:1e:62:33:ea:d5:5e:fb:60:24:59:91:bc:00:
9f:5a:da:ec:6b:00:af:01:a7:e9:66:43:a8:da:bf:7b:2b:c7:
9f:cf:6e:7a:97:ef:aa:60:96:2a:ad:a8:60:a6:64:1f:a6:e1:
8b:24:8b:a1:1d:c1:fd:76:fc:42:33:4a:26:ed:74:9f:02:74:
fa:b5:77:df:ea:a5:09:3d:2b:3c:da:ea:bd:72:f5:00:cd:d3:
b0:3e:44:ae:43:96:9d:56:fa:2e:b5:0a:1a:cd:e4:d0:48:cc:
e7:ec:07:1f:63:4d:70:c9:11:15:1a:f4:5f:09:b1:89:c7:f4:
6d:dd:1f:92:ab:55:77:ea:12:98:b3:c2:1b:75:00:7a:92:a8:
0e:9b:21:bd:36:1c:7c:b4:7a:79:ec:57:85:2c:58:36:cb:f4:
2c:97:4a:82:ec:60:b4:bf:5d:8f:c4:74:84:d4:17:e1:df:d5:
b5:bb:42:93:7a:99:d3:31:a7:f9:7c:fd:f4:74:21:0c:d4:5a:
bd:fd:e7:eb:d1:a5:82:13:b9:fb:77:7d:14:d6:9f:a1:95:d1:
d9:84:f2:a5:ce:6c:62:ac:c6:aa:2f:4a:bf:b6:81:ad:8c:b0:
07:55:1b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:15 2025 by rpki-client on console.sobornost.net