Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/UOcYa9_wijcIRHEowaEFsvhzcW4.roa
File: UOcYa9_wijcIRHEowaEFsvhzcW4.roa (raw, json)
Hash identifier: tUwVIAhXZ1HVd/+8k4HpFkWguLhngA3Bv+h1B/N8dK4=
Subject key identifier: 50:E7:18:6B:DF:F0:8A:37:08:44:71:28:C1:A1:05:B2:F8:73:71:6E
Certificate issuer: /CN=93b474d05571df3d44f63cca21b40b6e12c392d9
Certificate serial: 01942445101EF986F5075972108B633945BD
Authority key identifier: 93:B4:74:D0:55:71:DF:3D:44:F6:3C:CA:21:B4:0B:6E:12:C3:92:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7R00FVx3z1E9jzKIbQLbhLDktk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/UOcYa9_wijcIRHEowaEFsvhzcW4.roa
Signing time: Wed 01 Jan 2025 23:48:13 +0000
ROA not before: Wed 01 Jan 2025 23:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 33925
IP address blocks: 31.14.8.0/24 maxlen: 24
193.189.98.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:10:1e:f9:86:f5:07:59:72:10:8b:63:39:45:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93b474d05571df3d44f63cca21b40b6e12c392d9
Validity
Not Before: Jan 1 23:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50e7186bdff08a3708447128c1a105b2f873716e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0f:79:05:85:4a:4f:34:f6:b4:6d:91:6f:20:
7e:98:6f:01:e0:c9:72:8b:6e:17:0f:e9:e9:90:4b:
92:97:f6:ae:01:be:9b:47:65:b4:b4:7d:8a:1a:2c:
bf:c2:6a:a4:09:40:e5:fe:e1:c7:2a:d3:3a:b2:45:
51:d1:bd:42:0c:ea:80:ce:02:df:12:d8:3e:fe:59:
ac:5b:2a:68:cc:20:57:41:db:0f:80:ea:cc:09:5b:
4a:b5:81:b8:17:d2:0d:f2:1c:08:9d:cb:69:c7:be:
89:be:fd:04:8b:8f:5b:12:fe:42:75:66:a6:dc:43:
50:da:a3:21:1e:b1:a3:b8:3f:ef:8f:7a:15:d7:12:
63:d4:b1:ab:f8:f4:77:c0:bf:cc:89:2c:6a:c0:45:
c0:71:b7:80:88:6a:02:da:3e:03:29:32:48:e0:2f:
b9:eb:0e:eb:da:ff:05:be:fa:24:a4:62:63:57:db:
ed:a0:12:9e:6b:f9:36:57:03:cb:2f:5f:e0:15:e3:
66:5e:c3:eb:a3:55:52:1c:59:50:cf:fa:86:20:f1:
06:4a:27:97:87:32:90:02:7c:fb:4a:b3:f0:c2:84:
71:1d:43:46:21:3d:27:bf:05:a0:7f:2c:1c:89:32:
e1:9b:6f:e4:71:ed:4e:c4:da:fc:dd:e3:e2:17:2a:
06:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E7:18:6B:DF:F0:8A:37:08:44:71:28:C1:A1:05:B2:F8:73:71:6E
X509v3 Authority Key Identifier:
keyid:93:B4:74:D0:55:71:DF:3D:44:F6:3C:CA:21:B4:0B:6E:12:C3:92:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7R00FVx3z1E9jzKIbQLbhLDktk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/UOcYa9_wijcIRHEowaEFsvhzcW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/k7R00FVx3z1E9jzKIbQLbhLDktk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.8.0/24
193.189.98.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:ee:03:42:71:1d:95:2b:86:ff:eb:8e:44:a2:b5:21:11:a5:
a2:25:a3:33:08:e5:21:ce:cf:2c:35:a4:a9:c8:77:9b:6a:a2:
1e:0e:07:41:bd:e1:e4:f0:b3:f7:da:b2:49:ad:01:96:43:86:
17:0e:fb:fc:6e:61:0e:6b:0e:83:d8:2c:a3:71:00:45:c3:4a:
77:72:84:ca:89:e4:e9:86:f1:43:38:4f:fb:a9:3e:9b:dd:b5:
63:02:a4:43:81:88:0d:c1:9e:87:2b:90:b0:27:4f:fa:0d:68:
c8:50:56:6f:b0:18:d3:ef:0f:1e:40:5c:2b:57:d8:5c:97:97:
06:1b:3a:d6:bd:38:c5:cd:e5:c9:92:98:93:fc:a1:0b:4e:63:
6b:e5:be:34:62:6b:8f:ba:54:b7:20:de:b7:7c:7a:1c:7a:1c:
6d:59:e1:6f:fe:b0:79:20:03:3e:55:79:8e:77:37:87:22:cc:
62:41:4e:04:fc:19:36:f0:d7:9e:ad:0d:f5:cf:56:ef:42:00:
63:75:cd:88:84:fa:79:23:33:c4:04:a7:3a:c6:bd:34:cf:bc:
e5:32:e9:b5:02:07:bd:6a:9c:0a:50:d6:91:46:46:88:85:37:
a0:12:23:55:04:fd:f6:4d:72:eb:a2:90:7b:31:17:37:51:ec:
02:08:fe:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:53 2025 by rpki-client on console.sobornost.net