Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/UCwT6CL5WW3mYzoKNlTk2SOU8IA.roa
File: UCwT6CL5WW3mYzoKNlTk2SOU8IA.roa (raw, json)
Hash identifier: N87SKU9+C8nd7bvGxIGpUOdKdK4qImbFhv+zWkYw2Wc=
Subject key identifier: 50:2C:13:E8:22:F9:59:6D:E6:63:3A:0A:36:54:E4:D9:23:94:F0:80
Certificate issuer: /CN=6eab53640b0931924b73f760925845150a6ccca5
Certificate serial: 019425222A0CF2A99533792614F136E51D20
Authority key identifier: 6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/UCwT6CL5WW3mYzoKNlTk2SOU8IA.roa
Signing time: Thu 02 Jan 2025 03:49:43 +0000
ROA not before: Thu 02 Jan 2025 03:49:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43848
IP address blocks: 185.51.220.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:2a:0c:f2:a9:95:33:79:26:14:f1:36:e5:1d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eab53640b0931924b73f760925845150a6ccca5
Validity
Not Before: Jan 2 03:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=502c13e822f9596de6633a0a3654e4d92394f080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:68:1a:0a:b1:4a:55:93:48:10:b5:b7:1e:b9:
9d:c2:67:e1:3d:96:5c:4b:8e:4a:e7:eb:4d:6d:a5:
e8:0b:da:cf:7e:26:1a:d7:41:a1:12:3a:54:42:2f:
28:33:1c:74:92:6d:e5:70:f1:6d:e6:50:ab:fb:a0:
49:0a:fb:e3:30:5b:8a:a4:15:a3:6c:e4:0d:e0:d4:
45:06:24:44:27:ff:6d:eb:79:3c:ce:08:5c:07:eb:
4c:c2:5b:2a:58:48:c7:db:17:f1:27:ab:79:24:fe:
54:36:07:81:34:30:5b:d2:99:80:a1:1c:fb:d5:a0:
6d:ba:c4:6b:e7:bc:c7:90:a0:54:b8:ca:25:62:7f:
fc:c7:aa:b3:bb:b5:f2:d1:e0:ca:7e:78:69:cd:63:
e4:ee:0a:d8:c4:55:f4:37:d7:dc:82:75:84:e8:8d:
1e:85:6e:57:39:d8:a9:2c:e0:86:9a:15:3b:fa:e9:
4a:45:72:75:4a:74:a9:2e:19:d4:9d:bb:68:73:29:
dc:61:a9:14:04:48:79:91:9f:0f:8b:36:0c:c3:70:
6d:11:50:be:bc:91:86:aa:f0:24:90:30:63:69:cb:
22:4a:0c:6d:c3:2f:ee:b2:fe:56:a8:16:2e:45:96:
89:6b:ec:41:cd:ac:12:c0:19:a6:b8:92:3c:53:ee:
41:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2C:13:E8:22:F9:59:6D:E6:63:3A:0A:36:54:E4:D9:23:94:F0:80
X509v3 Authority Key Identifier:
keyid:6E:AB:53:64:0B:09:31:92:4B:73:F7:60:92:58:45:15:0A:6C:CC:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqtTZAsJMZJLc_dgklhFFQpszKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/UCwT6CL5WW3mYzoKNlTk2SOU8IA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/2a38e6-294e-4fa3-a5a0-53046323951f/1/bqtTZAsJMZJLc_dgklhFFQpszKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.220.0/23
Signature Algorithm: sha256WithRSAEncryption
97:66:e1:f7:dd:37:e7:de:30:68:3e:d6:cf:9f:2f:56:ae:9d:
bf:82:e9:9f:5f:ef:e3:5b:12:28:7d:15:18:2e:5e:18:28:7d:
df:cf:ba:5d:d1:d0:95:de:3e:db:7d:dc:7d:56:9e:70:04:35:
67:55:2d:42:88:a4:b5:29:ec:f8:7a:b2:51:97:75:ae:94:88:
d8:87:b9:98:06:63:af:a2:69:e8:73:a4:d1:8a:d3:c6:96:49:
13:c8:b5:df:bd:76:69:d6:46:ef:21:48:33:97:43:22:70:63:
28:6b:1a:8a:66:30:8e:6d:eb:dd:aa:71:d6:67:34:89:6b:96:
cc:55:1c:28:18:58:a2:e5:37:49:82:f2:92:91:d9:fd:3b:b0:
06:5c:1d:a9:ff:ad:af:0d:3e:ee:a4:89:f3:f3:a8:a0:42:9f:
4b:8b:35:db:5a:23:02:49:27:c0:c5:db:df:45:c9:44:1f:66:
51:7d:7c:81:09:97:96:a7:8d:95:3a:93:71:2b:81:c1:55:c1:
66:5d:c9:c8:a8:95:22:41:2e:d6:77:ed:09:b0:f4:d6:d9:71:
a3:46:4b:f0:15:40:65:11:24:0c:37:51:25:56:a3:67:05:b0:
13:1d:e1:90:c1:86:38:8b:0c:48:36:74:9f:0e:eb:c4:ac:12:
2a:fe:ef:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:31 2025 by rpki-client on console.sobornost.net