Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/ufDo1kTLEOZD1_qKQ7HiFNKPunM.roa
File: ufDo1kTLEOZD1_qKQ7HiFNKPunM.roa (raw, json)
Hash identifier: ez87p1Up7V/1mOstPVoSc34fcjVVGs1wyCiou6O9r2k=
Subject key identifier: B9:F0:E8:D6:44:CB:10:E6:43:D7:FA:8A:43:B1:E2:14:D2:8F:BA:73
Certificate issuer: /CN=9ce94757ac3f70b40f369307d365ebc9657bab69
Certificate serial: 019425216831F285DD55B6FA9F6762CB5F7E
Authority key identifier: 9C:E9:47:57:AC:3F:70:B4:0F:36:93:07:D3:65:EB:C9:65:7B:AB:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nOlHV6w_cLQPNpMH02XryWV7q2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/ufDo1kTLEOZD1_qKQ7HiFNKPunM.roa
Signing time: Thu 02 Jan 2025 03:48:53 +0000
ROA not before: Thu 02 Jan 2025 03:48:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34542
IP address blocks: 156.28.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:68:31:f2:85:dd:55:b6:fa:9f:67:62:cb:5f:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ce94757ac3f70b40f369307d365ebc9657bab69
Validity
Not Before: Jan 2 03:48:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b9f0e8d644cb10e643d7fa8a43b1e214d28fba73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d5:3a:c0:9e:44:6b:a5:fa:f5:35:a5:6a:a2:
8f:10:34:3d:e6:72:69:48:64:2b:93:de:11:63:aa:
14:6d:d3:fb:cd:89:5c:0d:01:7e:9e:fc:42:b1:2e:
2a:3e:c1:c5:44:bc:0d:24:af:2a:2d:aa:b9:ff:3b:
59:0f:d9:f3:7a:c5:96:05:8d:fd:52:27:b9:30:e4:
43:f2:c4:8b:ee:60:c5:aa:3c:85:ee:d1:2e:c3:85:
f1:3d:bf:c8:8b:04:79:68:63:c0:7c:6c:cc:5e:f6:
42:4e:37:73:50:b8:e4:7d:39:6e:4f:74:e6:a4:3a:
d2:96:3d:59:79:73:3a:c2:5e:b8:c7:d7:6f:bd:78:
d5:40:57:69:72:30:be:57:d5:8e:30:51:5d:06:4b:
a6:be:9a:0c:cb:61:b1:9a:e1:20:c8:e7:cc:cf:03:
bd:5a:a9:6a:d7:27:15:4f:f7:fe:02:f1:48:26:10:
5c:d7:e7:e3:18:90:88:37:1c:3f:08:55:a7:d5:4a:
a6:be:c7:b9:b6:e7:48:54:da:26:3a:1a:74:ff:47:
d8:f0:77:a7:96:08:1d:03:43:44:ae:02:fa:fd:05:
73:3f:7a:fb:14:e1:4f:66:c9:0c:b1:38:4b:40:6e:
a6:99:a6:90:3d:75:f6:9a:be:a8:c6:cf:d6:b8:31:
95:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F0:E8:D6:44:CB:10:E6:43:D7:FA:8A:43:B1:E2:14:D2:8F:BA:73
X509v3 Authority Key Identifier:
keyid:9C:E9:47:57:AC:3F:70:B4:0F:36:93:07:D3:65:EB:C9:65:7B:AB:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nOlHV6w_cLQPNpMH02XryWV7q2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/ufDo1kTLEOZD1_qKQ7HiFNKPunM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/481269-dbdb-425e-9642-e1ea41c9a2e6/1/nOlHV6w_cLQPNpMH02XryWV7q2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
156.28.0.0/16
Signature Algorithm: sha256WithRSAEncryption
49:a7:be:83:f3:dc:81:6b:f0:b7:4b:d8:c9:cf:b2:60:38:05:
01:5e:58:85:17:7b:79:8f:97:52:85:b7:b5:76:e9:0f:df:4e:
81:18:e0:52:ca:14:2a:f0:32:bf:bb:45:8d:62:7d:46:89:5d:
f8:64:ca:30:c6:95:13:ba:75:da:2f:a4:43:ed:c9:06:d8:71:
b6:86:7c:af:2d:53:e3:4e:9c:4b:1b:e1:06:f5:1e:83:18:80:
4e:b4:2c:c1:7c:27:05:75:f0:2b:77:b5:ee:97:1c:53:f6:09:
8f:01:9a:b5:3b:49:9b:7f:51:fa:df:59:58:84:b6:f9:96:fb:
0d:60:b6:1c:b6:ca:7a:fe:b0:ab:e6:c8:a7:70:15:72:9a:e9:
da:64:03:52:44:1e:c9:b9:62:63:e0:4d:a6:95:8e:8c:01:19:
fe:10:e8:de:14:d0:ff:4b:24:41:19:b7:bb:35:bf:0d:26:4f:
d0:f3:8a:e9:6b:a4:c7:fc:b6:81:f9:65:7e:27:33:3e:04:47:
a6:1c:d6:93:3c:c0:88:cd:bb:04:f6:74:bf:82:b4:94:ec:4f:
ed:f2:a1:89:6d:7d:7d:e4:b6:eb:c5:70:b5:ce:5d:bd:da:f9:
e8:52:8d:7a:ae:28:de:27:8f:d4:ee:bb:bf:9b:7a:49:aa:c4:
1b:5b:16:f4
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAZQlIWgx8oXdVbb6n2diy19+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljZTk0NzU3YWMzZjcwYjQwZjM2OTMwN2QzNjVlYmM5NjU3
YmFiNjkwHhcNMjUwMTAyMDM0ODUzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOWYwZThkNjQ0Y2IxMGU2NDNkN2ZhOGE0M2IxZTIxNGQyOGZiYTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudU6wJ5Ea6X69TWlaqKPEDQ95nJp
SGQrk94RY6oUbdP7zYlcDQF+nvxCsS4qPsHFRLwNJK8qLaq5/ztZD9nzesWWBY39
Uie5MORD8sSL7mDFqjyF7tEuw4XxPb/IiwR5aGPAfGzMXvZCTjdzULjkfTluT3Tm
pDrSlj1ZeXM6wl64x9dvvXjVQFdpcjC+V9WOMFFdBkumvpoMy2GxmuEgyOfMzwO9
Wqlq1ycVT/f+AvFIJhBc1+fjGJCINxw/CFWn1Uqmvse5tudIVNomOhp0/0fY8Hen
lggdA0NErgL6/QVzP3r7FOFPZskMsThLQG6mmaaQPXX2mr6oxs/WuDGV4QIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFLnw6NZEyxDmQ9f6ikOx4hTSj7pzMB8GA1UdIwQY
MBaAFJzpR1esP3C0DzaTB9Nl68lle6tpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbk9sSFY2d19jTFFQTnBNSDAyWHJ5V1Y3cTJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS80ODEyNjktZGJkYi00MjVlLTk2NDIt
ZTFlYTQxYzlhMmU2LzEvdWZEbzFrVExFT1pEMV9xS1E3SGlGTktQdW5NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS80ODEyNjktZGJkYi00MjVlLTk2NDItZTFlYTQxYzlhMmU2
LzEvbk9sSFY2d19jTFFQTnBNSDAyWHJ5V1Y3cTJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAnBwwDQYJ
KoZIhvcNAQELBQADggEBAEmnvoPz3IFr8LdL2MnPsmA4BQFeWIUXe3mPl1KFt7V2
6Q/fToEY4FLKFCrwMr+7RY1ifUaJXfhkyjDGlRO6ddovpEPtyQbYcbaGfK8tU+NO
nEsb4Qb1HoMYgE60LMF8JwV18Ct3te6XHFP2CY8BmrU7SZt/UfrfWViEtvmW+w1g
thy2ynr+sKvmyKdwFXKa6dpkA1JEHsm5YmPgTaaVjowBGf4Q6N4U0P9LJEEZt7s1
vw0mT9DziulrpMf8toH5ZX4nMz4ER6Yc1pM8wIjNuwT2dL+CtJTsT+3yoYltfX3k
tuvFcLXOXb3a+ehSjXquKN4nj9Tuu7+bekmqxBtbFvQ=
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:20 2025 by rpki-client on console.sobornost.net