Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/U9TBHp1UsOw7Zh1H-tWzwm3JOCA.roa
File: U9TBHp1UsOw7Zh1H-tWzwm3JOCA.roa (raw, json)
Hash identifier: 4/o7ep0Rzn4AYd62WYDHIGXLd65AU6jrJUZVetdSwNo=
Subject key identifier: 53:D4:C1:1E:9D:54:B0:EC:3B:66:1D:47:FA:D5:B3:C2:6D:C9:38:20
Certificate issuer: /CN=7a5b03e2483bed134387bfc3047a13989fdea41f
Certificate serial: 0193DF14367646B213D8040809D010424CC0
Authority key identifier: 7A:5B:03:E2:48:3B:ED:13:43:87:BF:C3:04:7A:13:98:9F:DE:A4:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elsD4kg77RNDh7_DBHoTmJ_epB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/U9TBHp1UsOw7Zh1H-tWzwm3JOCA.roa
Signing time: Thu 19 Dec 2024 13:21:03 +0000
ROA not before: Thu 19 Dec 2024 13:21:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34912
IP address blocks: 5.150.144.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:df:14:36:76:46:b2:13:d8:04:08:09:d0:10:42:4c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a5b03e2483bed134387bfc3047a13989fdea41f
Validity
Not Before: Dec 19 13:21:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53d4c11e9d54b0ec3b661d47fad5b3c26dc93820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:14:c0:6b:1c:4d:14:a9:74:83:f7:4c:1a:56:
b8:a6:1b:fc:e0:3a:88:9c:29:5f:8f:09:1c:d8:30:
0e:aa:4c:df:54:8a:48:18:23:d3:06:ef:97:e6:b5:
4c:97:b3:39:58:36:a1:fc:01:df:75:f7:92:cf:a3:
2e:3a:94:fd:a3:0a:5a:2b:7b:44:ae:77:ea:db:4b:
03:88:75:eb:c3:4c:d2:39:2c:6b:94:d2:08:e0:1b:
96:64:98:f6:64:10:6e:2b:73:e3:fb:86:45:a1:64:
cd:79:27:51:90:e8:cb:fc:e0:07:cd:08:d7:75:58:
09:a6:4e:6a:6b:d9:96:32:ab:13:42:62:d8:d8:d1:
de:08:46:0e:ae:8a:92:58:95:ee:c6:ec:79:66:60:
37:ac:f7:c7:68:28:37:3e:54:3c:7b:b3:5d:d0:b8:
22:ef:51:e8:70:62:df:4a:72:cd:a7:67:5b:f0:b3:
e9:0e:b7:5f:15:6e:00:6f:9e:f9:c7:10:db:f6:50:
5e:20:da:4b:d8:31:33:47:f5:04:a6:4a:da:cd:58:
a7:20:3e:e6:41:dc:d5:9e:55:3d:12:ca:5c:ca:c9:
a0:c5:2b:df:88:3b:36:06:62:b1:d2:55:2a:db:28:
51:d2:03:df:05:c8:c6:6f:08:f5:d9:d1:f2:c9:36:
d9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D4:C1:1E:9D:54:B0:EC:3B:66:1D:47:FA:D5:B3:C2:6D:C9:38:20
X509v3 Authority Key Identifier:
keyid:7A:5B:03:E2:48:3B:ED:13:43:87:BF:C3:04:7A:13:98:9F:DE:A4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elsD4kg77RNDh7_DBHoTmJ_epB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/U9TBHp1UsOw7Zh1H-tWzwm3JOCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3d1760-e4e6-4667-a54c-71e561cb78e9/1/elsD4kg77RNDh7_DBHoTmJ_epB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.150.144.0/21
Signature Algorithm: sha256WithRSAEncryption
01:f5:1a:7f:87:51:b9:b9:6b:68:16:60:69:d3:8d:e4:3d:ed:
7a:2d:78:ca:02:17:03:c8:97:ca:3e:09:f4:21:fc:d2:4d:1c:
81:c4:83:db:b4:0b:4d:3f:f0:c3:42:e4:1f:5d:b2:c2:51:a0:
1a:10:3d:31:22:66:48:4a:36:67:41:f5:88:8c:c7:89:9b:f0:
04:fa:f1:42:2b:a2:b7:eb:42:e3:9e:a0:5f:1e:c7:7b:f1:47:
ea:63:10:cd:67:d3:3c:11:fd:a5:73:38:bc:2c:a4:c6:ea:06:
b2:4e:e3:52:dc:4c:37:27:60:ad:b3:57:12:3b:58:1d:9b:67:
cf:c5:99:a7:d5:69:a3:d9:6f:2f:bc:c8:2d:a1:0c:00:cc:a1:
8f:30:6a:51:88:17:5c:10:7d:a8:6a:95:e2:f6:f3:c4:d9:d0:
77:b1:6a:20:b3:25:6f:ff:45:92:da:8d:37:d4:32:b2:1e:49:
60:f8:6d:c6:a3:6d:f5:da:8c:b3:2d:ad:73:7e:c5:9e:8c:1b:
6f:eb:70:ed:c5:ee:ca:eb:47:a9:da:73:46:29:82:d7:50:e9:
05:9a:88:00:6b:47:ce:c2:14:23:35:82:6a:c2:cb:d6:8d:ee:
ce:f8:dd:8a:67:5f:bd:f0:fe:b7:ed:a9:44:2f:a2:55:41:4f:
c8:41:3d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:58 2024 by rpki-client on console.sobornost.net