Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/UBFB7-eyLPUxfUL-wCKCJT8Ptls.roa
File: UBFB7-eyLPUxfUL-wCKCJT8Ptls.roa (raw, json)
Hash identifier: H8nQa5GHkevRvzlbDCXV+VyuH/lnVXG9l1VL5yJukIw=
Subject key identifier: 50:11:41:EF:E7:B2:2C:F5:31:7D:42:FE:C0:22:82:25:3F:0F:B6:5B
Certificate issuer: /CN=5dddc965c3e90a82200f4afbb92991904d06422c
Certificate serial: 010A27A0
Authority key identifier: 5D:DD:C9:65:C3:E9:0A:82:20:0F:4A:FB:B9:29:91:90:4D:06:42:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd3JZcPpCoIgD0r7uSmRkE0GQiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/UBFB7-eyLPUxfUL-wCKCJT8Ptls.roa
Signing time: Mon 07 Mar 2022 17:38:51 +0000
ROA not before: Mon 07 Mar 2022 17:38:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59253
IP address blocks: 146.19.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17442720 (0x10a27a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dddc965c3e90a82200f4afbb92991904d06422c
Validity
Not Before: Mar 7 17:38:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=501141efe7b22cf5317d42fec02282253f0fb65b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:61:45:9e:50:8c:54:e5:c1:0e:44:d7:df:fc:
8f:82:da:21:ce:4f:14:08:47:35:2a:42:0e:0c:a6:
2d:82:67:ee:c1:6b:24:96:7b:f2:bd:98:c4:b9:c0:
40:f5:0e:ae:60:91:1d:b7:b2:96:cd:b0:11:7e:20:
ad:20:e0:0e:cc:e0:d5:ed:d9:ed:25:cf:32:4a:1d:
00:c6:5e:39:41:2a:20:0b:5e:e0:38:54:ec:55:cf:
29:5e:a3:1e:de:5f:84:60:c2:17:a3:18:0a:b4:32:
31:a1:26:dd:7b:db:f3:b5:ee:63:95:02:95:83:67:
0c:48:b6:e3:e7:96:09:1b:e0:35:26:1c:7b:e2:33:
49:d3:00:db:3a:ee:20:06:ff:20:61:d4:26:c8:27:
a1:21:94:f9:73:1e:a7:96:49:90:25:70:b4:23:d8:
4a:97:f1:b8:a4:a6:4a:11:ea:87:af:41:36:45:c6:
dc:f6:df:8e:97:fe:aa:3c:8b:ca:03:d4:53:13:d4:
b9:00:53:de:a5:2a:44:90:e8:7e:78:b5:37:97:6d:
c3:d9:ec:b5:e8:85:ef:7e:23:09:e3:4d:ec:ea:5e:
19:1d:6f:7f:32:05:ef:01:fd:2b:7e:60:97:ce:3e:
66:d5:d8:34:fc:5f:84:cb:5d:6d:0e:b1:f4:23:ce:
08:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:11:41:EF:E7:B2:2C:F5:31:7D:42:FE:C0:22:82:25:3F:0F:B6:5B
X509v3 Authority Key Identifier:
keyid:5D:DD:C9:65:C3:E9:0A:82:20:0F:4A:FB:B9:29:91:90:4D:06:42:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd3JZcPpCoIgD0r7uSmRkE0GQiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/UBFB7-eyLPUxfUL-wCKCJT8Ptls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/Xd3JZcPpCoIgD0r7uSmRkE0GQiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.7.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:48:56:1a:03:f8:64:59:19:d7:83:38:54:40:f9:db:ce:3b:
93:e4:95:07:8d:1d:fb:1c:52:e6:72:46:b5:c3:94:98:9e:2e:
b7:36:77:93:42:61:4c:49:bb:c0:88:ea:bd:87:21:19:53:98:
58:89:c2:a7:4f:38:2d:c9:7e:0b:d2:3f:a1:6d:a6:84:97:23:
8d:0c:97:81:36:77:19:4d:66:11:19:cf:5c:0a:2e:21:20:77:
24:76:ae:ea:e6:41:fe:79:92:09:a1:91:4a:48:55:36:c4:2c:
98:96:b0:57:f5:b9:e2:d1:1a:cf:3a:b8:50:5e:86:e8:78:a6:
10:3f:3b:e1:b6:a9:13:4e:f0:8e:7c:4f:72:08:58:fc:9b:7e:
80:46:54:a2:b5:0f:bc:87:0c:94:50:8d:e2:1e:21:84:20:b2:
38:19:27:e1:02:7f:54:55:83:ca:be:f2:fb:9f:18:8c:b5:fe:
7c:31:95:f5:e1:05:26:f3:91:7d:d5:fc:cf:df:34:e1:9b:2c:
5e:8f:7a:48:f5:b8:4b:8e:b0:86:1d:98:57:aa:f2:83:7f:78:
e3:f6:d0:5d:ec:89:0c:70:3e:5c:5c:fb:a4:2e:2b:ad:2c:46:
1a:ee:cc:39:c7:14:ac:ed:e8:af:c7:f3:8c:f0:9b:d9:b5:eb:
fd:20:55:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:08 2023 by rpki-client on console.sobornost.net