Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/302863-5689-43fc-872f-fc44a8ace370/1/UNDXrDbQNDGfw9Atw8J1Rhg9324.roa
File: UNDXrDbQNDGfw9Atw8J1Rhg9324.roa (raw, json)
Hash identifier: wsuYDSHLl9ueT9Z/8hPQn0p6GzwP0XVwWj6eE/OeB10=
Subject key identifier: 50:D0:D7:AC:36:D0:34:31:9F:C3:D0:2D:C3:C2:75:46:18:3D:DF:6E
Certificate issuer: /CN=864b0e13cf27aff66be730bece98e04b00fdfb9e
Certificate serial: 01941FFAA82A85FDD684B7B47C800149EF57
Authority key identifier: 86:4B:0E:13:CF:27:AF:F6:6B:E7:30:BE:CE:98:E0:4B:00:FD:FB:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hksOE88nr_Zr5zC-zpjgSwD9-54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/302863-5689-43fc-872f-fc44a8ace370/1/UNDXrDbQNDGfw9Atw8J1Rhg9324.roa
Signing time: Wed 01 Jan 2025 03:48:28 +0000
ROA not before: Wed 01 Jan 2025 03:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8312
IP address blocks: 77.74.48.0/21 maxlen: 24
77.74.48.0/22 maxlen: 22
77.74.52.0/22 maxlen: 22
185.58.56.0/22 maxlen: 24
185.58.59.0/24 maxlen: 24
193.16.154.0/24 maxlen: 24
193.189.149.0/24 maxlen: 24
195.210.56.0/23 maxlen: 24
2a01:310::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:a8:2a:85:fd:d6:84:b7:b4:7c:80:01:49:ef:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864b0e13cf27aff66be730bece98e04b00fdfb9e
Validity
Not Before: Jan 1 03:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50d0d7ac36d034319fc3d02dc3c27546183ddf6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ae:66:c5:42:a7:e0:20:d2:0a:30:62:75:b0:
27:94:40:45:26:88:92:25:46:94:27:92:ca:a4:16:
ef:e2:d3:0c:c2:2b:05:fe:4d:84:cb:44:79:63:e5:
1e:e2:ed:35:6f:48:6f:99:73:82:8f:54:7f:57:d0:
29:50:39:68:ef:6e:bd:2a:b2:b5:05:65:3e:0e:83:
a2:27:3d:6e:dd:51:59:f7:1e:18:49:e2:e6:0e:a7:
9b:21:4e:fd:70:30:9c:ff:9c:25:c6:f3:28:a1:60:
de:d9:bc:cb:0d:05:d9:5a:5a:13:6b:63:b2:6d:69:
28:bc:47:7c:55:83:a4:67:82:07:35:4b:09:35:08:
8d:7c:39:54:e0:de:e1:02:5e:5c:a1:0e:d9:71:b7:
a6:79:b2:7c:f5:84:e1:04:5f:fe:3b:91:50:9a:d4:
35:aa:62:b2:cd:e7:1c:ef:67:66:97:28:90:f4:16:
d2:80:7e:c3:e7:44:f4:78:9c:bf:2a:02:67:d2:0f:
2f:c5:9e:b4:d9:36:0b:9a:48:58:e0:9e:cc:58:49:
84:0a:63:3b:bd:0f:77:93:72:6a:0b:5e:9f:da:62:
b7:07:48:02:cc:e4:47:cf:c2:33:24:22:dd:0e:4b:
a2:7c:ea:9b:de:c8:39:f4:6b:1b:fc:26:4e:ec:14:
52:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:D0:D7:AC:36:D0:34:31:9F:C3:D0:2D:C3:C2:75:46:18:3D:DF:6E
X509v3 Authority Key Identifier:
keyid:86:4B:0E:13:CF:27:AF:F6:6B:E7:30:BE:CE:98:E0:4B:00:FD:FB:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hksOE88nr_Zr5zC-zpjgSwD9-54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/302863-5689-43fc-872f-fc44a8ace370/1/UNDXrDbQNDGfw9Atw8J1Rhg9324.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/302863-5689-43fc-872f-fc44a8ace370/1/hksOE88nr_Zr5zC-zpjgSwD9-54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.48.0/21
185.58.56.0/22
193.16.154.0/24
193.189.149.0/24
195.210.56.0/23
IPv6:
2a01:310::/32
Signature Algorithm: sha256WithRSAEncryption
24:df:47:03:1e:5a:5e:fe:06:c0:b7:bc:56:f0:58:c0:4b:8f:
cf:3b:e6:95:e8:91:cd:6f:39:70:11:be:bf:54:dc:5f:1d:e3:
5c:ec:7a:06:96:10:8c:ab:a6:a4:f4:5f:05:dd:4d:d8:0b:b9:
b0:ea:e8:47:3d:0e:32:c3:c6:47:93:27:2e:34:78:b1:eb:85:
b9:6c:eb:b9:76:7a:5b:ae:56:11:96:f3:f7:e0:2d:fd:b7:d4:
2d:14:ff:0b:dd:6f:7a:6d:7c:24:fe:67:48:59:66:1c:87:cb:
95:f7:4d:c6:20:50:00:59:fb:62:28:09:66:1b:54:63:25:dd:
5f:bf:39:80:f9:21:69:b8:48:2e:0c:70:08:81:3d:7a:ce:4d:
68:27:b8:de:0a:3a:77:c8:8b:76:51:db:28:2d:21:1f:af:7a:
19:0a:51:36:19:52:37:da:df:7c:6f:98:36:96:4e:47:2d:6e:
10:04:61:83:26:22:ac:90:34:b3:22:82:ac:1f:8d:71:ad:1e:
4d:95:89:82:17:6c:d1:9f:32:4d:28:e1:3f:92:ba:2e:17:22:
24:d9:1e:2d:ee:1f:8c:19:2f:bd:86:c5:b6:86:dd:ab:10:0a:
31:e6:cf:88:de:2d:89:b4:d6:a7:1c:b5:fa:cc:b5:e4:66:c6:
1e:da:59:67
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAZQf+qgqhf3WhLe0fIABSe9XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NGIwZTEzY2YyN2FmZjY2YmU3MzBiZWNlOThlMDRiMDBm
ZGZiOWUwHhcNMjUwMTAxMDM0ODI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MGQwZDdhYzM2ZDAzNDMxOWZjM2QwMmRjM2MyNzU0NjE4M2RkZjZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAza5mxUKn4CDSCjBidbAnlEBFJoiS
JUaUJ5LKpBbv4tMMwisF/k2Ey0R5Y+Ue4u01b0hvmXOCj1R/V9ApUDlo7269KrK1
BWU+DoOiJz1u3VFZ9x4YSeLmDqebIU79cDCc/5wlxvMooWDe2bzLDQXZWloTa2Oy
bWkovEd8VYOkZ4IHNUsJNQiNfDlU4N7hAl5coQ7ZcbemebJ89YThBF/+O5FQmtQ1
qmKyzecc72dmlyiQ9BbSgH7D50T0eJy/KgJn0g8vxZ602TYLmkhY4J7MWEmECmM7
vQ93k3JqC16f2mK3B0gCzORHz8IzJCLdDkuifOqb3sg59Gsb/CZO7BRSdwIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFFDQ16w20DQxn8PQLcPCdUYYPd9uMB8GA1UdIwQY
MBaAFIZLDhPPJ6/2a+cwvs6Y4EsA/fueMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGtzT0U4OG5yX1pyNXpDLXpwamdTd0Q5LTU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8zMDI4NjMtNTY4OS00M2ZjLTg3MmYt
ZmM0NGE4YWNlMzcwLzEvVU5EWHJEYlFOREdmdzlBdHc4SjFSaGc5MzI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy8zMDI4NjMtNTY4OS00M2ZjLTg3MmYtZmM0NGE4YWNlMzcw
LzEvaGtzT0U4OG5yX1pyNXpDLXpwamdTd0Q5LTU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDTUowAwQC
uTo4AwQAwRCaAwQAwb2VAwQBw9I4MA0EAgACMAcDBQAqAQMQMA0GCSqGSIb3DQEB
CwUAA4IBAQAk30cDHlpe/gbAt7xW8FjAS4/PO+aV6JHNbzlwEb6/VNxfHeNc7HoG
lhCMq6ak9F8F3U3YC7mw6uhHPQ4yw8ZHkycuNHix64W5bOu5dnpbrlYRlvP34C39
t9QtFP8L3W96bXwk/mdIWWYch8uV903GIFAAWftiKAlmG1RjJd1fvzmA+SFpuEgu
DHAIgT16zk1oJ7jeCjp3yIt2UdsoLSEfr3oZClE2GVI32t98b5g2lk5HLW4QBGGD
JiKskDSzIoKsH41xrR5NlYmCF2zRnzJNKOE/krouFyIk2R4t7h+MGS+9hsW2ht2r
EAox5s+I3i2JtNanHLX6zLXkZsYe2lln
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:19 2025 by rpki-client on console.sobornost.net