Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/UjW45_nwwDyy7U6KgL12bzJQzEc.roa
File: UjW45_nwwDyy7U6KgL12bzJQzEc.roa (raw, json)
Hash identifier: /fACruVku3R5AKdxYsyHTMTOPD+N6jhws1Th6oL9Zv8=
Subject key identifier: 52:35:B8:E7:F9:F0:C0:3C:B2:ED:4E:8A:80:BD:76:6F:32:50:CC:47
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 019370317764A3B4139E9FE3FDDF9D82F615
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/UjW45_nwwDyy7U6KgL12bzJQzEc.roa
Signing time: Thu 28 Nov 2024 00:35:10 +0000
ROA not before: Thu 28 Nov 2024 00:35:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214381
IP address blocks: 37.77.18.0/24 maxlen: 24
37.77.19.0/24 maxlen: 24
37.77.20.0/24 maxlen: 24
37.77.21.0/24 maxlen: 24
37.77.22.0/24 maxlen: 24
37.77.23.0/24 maxlen: 24
37.77.24.0/24 maxlen: 24
37.77.25.0/24 maxlen: 24
37.77.26.0/24 maxlen: 24
37.77.27.0/24 maxlen: 24
37.77.30.0/24 maxlen: 24
37.77.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:70:31:77:64:a3:b4:13:9e:9f:e3:fd:df:9d:82:f6:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Nov 28 00:35:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5235b8e7f9f0c03cb2ed4e8a80bd766f3250cc47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e3:11:1c:0a:9c:6f:0a:40:75:77:e2:b7:86:
f1:5c:3b:95:7d:5e:75:ce:39:9e:1f:b6:df:9d:fa:
8e:2b:c3:ef:65:b8:fc:49:f6:02:77:e6:39:28:f9:
c9:cc:a1:ab:b4:db:a6:e1:21:0f:66:49:1a:80:52:
de:f0:a1:30:a1:17:7c:df:bb:ab:2e:29:6a:64:37:
e3:66:a7:06:d9:7f:d3:2d:b3:91:59:2f:3d:03:07:
9b:95:eb:0c:90:76:b0:06:0f:0e:1a:96:01:15:1f:
42:ba:89:b0:f9:1a:fe:9c:ae:27:1a:8d:40:8c:24:
ff:62:b3:dc:55:6a:e8:61:da:32:82:c0:0b:bf:ef:
88:98:bd:ec:6c:bb:2b:26:1b:fc:3a:79:6b:3a:70:
d7:80:85:7e:59:c0:1d:04:53:37:b5:e3:20:90:1c:
8a:3f:10:84:95:cb:73:77:2d:c2:43:b0:2e:a8:69:
49:ca:76:71:25:84:1d:47:57:0d:28:d7:f7:87:24:
ae:b3:05:75:b7:fd:4e:df:87:49:0f:f6:fa:fc:50:
f9:06:85:94:41:ca:8a:33:de:f6:d7:6a:e2:d3:3f:
db:c0:77:28:f8:bf:ae:48:35:6a:95:97:b3:16:11:
99:d9:36:c7:17:f2:c3:b1:83:c8:ea:7f:0f:7a:53:
b6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:35:B8:E7:F9:F0:C0:3C:B2:ED:4E:8A:80:BD:76:6F:32:50:CC:47
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/UjW45_nwwDyy7U6KgL12bzJQzEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.18.0-37.77.27.255
37.77.30.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:6b:fc:6c:92:da:10:ba:c5:fd:7c:eb:7e:49:74:57:a0:a5:
29:c7:2d:a5:63:de:0f:19:c4:09:fe:51:b4:0f:51:71:2d:11:
21:d6:eb:67:5d:06:1d:f3:b4:54:98:e9:5e:97:af:28:b9:a0:
68:88:2e:e2:6a:97:67:9c:b2:ca:e7:59:d1:62:4f:30:fb:c5:
27:07:64:0f:ae:ca:ec:a9:45:fd:f3:d8:b0:3b:57:cd:5c:5e:
ee:09:8d:46:bd:9f:7e:be:d1:80:fd:6a:b6:89:8e:97:73:fd:
c3:1e:eb:09:90:8b:7e:9e:a0:92:9c:d8:9f:ad:03:6d:be:fc:
e2:f8:73:80:a0:fb:fa:bc:ee:f4:25:b1:07:60:56:1f:4d:8f:
3e:f2:50:93:ec:8d:78:f2:98:4f:ab:8b:60:a7:a8:0c:67:c1:
69:73:a8:c7:8d:ca:ea:24:7f:2c:6d:8f:06:d1:81:2a:11:41:
d9:ef:16:c6:df:fb:49:b1:0f:e3:0d:09:18:09:44:88:63:23:
6e:6a:6f:ac:57:b3:bb:cf:a0:68:20:19:31:c0:67:14:72:25:
b7:4a:59:06:92:59:dc:2f:37:58:a1:2f:f8:2b:2d:0c:94:e6:
56:d7:9a:5c:d6:cb:bb:73:df:14:5b:41:f5:af:37:e9:fa:82:
14:2b:a9:39
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:28 2024 by rpki-client on console.sobornost.net