Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/8fa051-4357-4d31-8537-6812babc5a8b/1/UrEloH-EfSQuf5OcsdhtCS70bME.roa
File: UrEloH-EfSQuf5OcsdhtCS70bME.roa (raw, json)
Hash identifier: OTZcLcyc4zdIbOn2iDb0LTLM0UhUILn0r6Q9NsA/Bn0=
Subject key identifier: 52:B1:25:A0:7F:84:7D:24:2E:7F:93:9C:B1:D8:6D:09:2E:F4:6C:C1
Certificate issuer: /CN=e97656f22015589ff7cc66056867f605d81449bc
Certificate serial: 018CC3B729902EB7198537869999AE36591B
Authority key identifier: E9:76:56:F2:20:15:58:9F:F7:CC:66:05:68:67:F6:05:D8:14:49:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XZW8iAVWJ_3zGYFaGf2BdgUSbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/8fa051-4357-4d31-8537-6812babc5a8b/1/UrEloH-EfSQuf5OcsdhtCS70bME.roa
Signing time: Mon 01 Jan 2024 06:30:10 +0000
ROA not before: Mon 01 Jan 2024 06:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21277
IP address blocks: 185.37.160.0/22 maxlen: 22
2a00:f7a0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:29:90:2e:b7:19:85:37:86:99:99:ae:36:59:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e97656f22015589ff7cc66056867f605d81449bc
Validity
Not Before: Jan 1 06:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52b125a07f847d242e7f939cb1d86d092ef46cc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0f:f6:b6:9f:ce:6b:d3:e7:33:40:3f:25:39:
e9:76:90:4f:3a:8f:7a:13:53:02:55:cb:1d:a2:9f:
b6:82:1d:9e:6a:64:90:0e:ba:34:24:8f:bd:81:a6:
5b:94:a4:80:fe:6f:c8:ed:bc:6d:41:a5:a0:76:c5:
71:ad:da:f0:e5:8c:bf:5c:e4:2c:b4:ef:dc:ab:e6:
d2:e8:1e:87:20:f6:a7:03:38:d4:2a:9e:83:08:31:
65:fb:eb:5c:2e:ea:47:ae:0b:24:79:71:28:d7:2a:
7c:82:f8:25:18:4b:81:f8:8f:bd:61:19:e8:93:14:
6c:38:d2:6c:49:5a:36:cc:91:2f:78:1c:61:ed:c0:
1c:e8:cc:c5:e0:a3:73:d0:9b:3a:27:f0:92:ba:6a:
40:9d:8f:4a:11:08:5f:16:6c:f5:09:64:8b:e0:d4:
3e:99:fc:31:6e:56:34:7a:25:2b:e1:62:93:84:7c:
98:2d:97:7e:ef:3c:ba:77:35:9e:e9:9f:2d:38:6a:
53:a3:2d:58:3d:03:7d:f0:a9:2a:80:0f:11:fa:23:
86:2e:60:83:59:ee:bb:bf:2b:55:1b:6b:b8:df:60:
d9:ff:a0:5b:e1:0d:7b:49:f0:38:18:9b:23:e6:73:
39:94:60:e0:65:13:48:98:91:d9:29:53:0a:b7:e2:
ff:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B1:25:A0:7F:84:7D:24:2E:7F:93:9C:B1:D8:6D:09:2E:F4:6C:C1
X509v3 Authority Key Identifier:
keyid:E9:76:56:F2:20:15:58:9F:F7:CC:66:05:68:67:F6:05:D8:14:49:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XZW8iAVWJ_3zGYFaGf2BdgUSbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8fa051-4357-4d31-8537-6812babc5a8b/1/UrEloH-EfSQuf5OcsdhtCS70bME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8fa051-4357-4d31-8537-6812babc5a8b/1/6XZW8iAVWJ_3zGYFaGf2BdgUSbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.37.160.0/22
IPv6:
2a00:f7a0::/32
Signature Algorithm: sha256WithRSAEncryption
0c:fe:1c:f6:59:5f:af:e8:33:06:11:1e:3f:c6:bc:60:69:91:
ef:c1:d7:a8:39:99:c8:69:00:a4:a9:73:68:f9:fa:54:04:99:
b9:af:9e:66:9c:f5:4b:e6:d7:32:92:c8:b7:d3:39:85:26:2c:
ab:fe:bc:b3:d0:a0:a7:1d:ca:20:e3:1c:23:04:69:4a:03:f0:
42:e0:9b:8d:fe:5e:fc:fd:1a:93:37:86:c1:11:5b:7f:6a:51:
43:78:9a:e1:15:9a:f2:a0:67:4b:64:af:c0:12:66:9d:06:e5:
fc:af:8b:64:43:8f:8d:2e:53:54:20:8b:e2:fc:ff:a5:20:2a:
dd:a5:9d:81:25:e2:e5:4a:76:d4:f8:ce:85:3b:e3:ef:1b:a5:
f2:45:90:77:63:7e:c8:50:76:dc:e8:11:7d:8e:f4:77:41:f5:
37:a6:58:2e:39:34:4e:51:bd:5d:84:9d:c0:0f:28:50:ff:80:
6f:26:fe:20:08:8e:db:69:11:d5:a6:4e:80:8b:aa:b3:75:95:
e5:be:7d:fe:ec:43:e3:6b:4e:c0:5a:02:23:9c:5b:ca:92:46:
cd:ad:ea:55:b0:1b:f4:b9:60:75:09:39:de:b1:fc:fb:cd:86:
23:18:0e:94:7d:cf:87:b2:0a:38:bb:05:cf:46:e3:63:bd:23:
d4:7e:90:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:21 2024 by rpki-client on console.sobornost.net