Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/47bc76-974e-4018-94fd-7f46c8c68e7e/1/UVHym_hND0UKS0TZahA67-xdRaw.roa
File: UVHym_hND0UKS0TZahA67-xdRaw.roa (raw, json)
Hash identifier: pLZ+GW3vB+RehhXMdEErWzND6dd84/xMpKL3yEHLLYo=
Subject key identifier: 51:51:F2:9B:F8:4D:0F:45:0A:4B:44:D9:6A:10:3A:EF:EC:5D:45:AC
Certificate issuer: /CN=32545768f47c35785eebad7a3438a4b1c4f8dc30
Certificate serial: 019427483D257AC5C2492ED62E6D5EB58F85
Authority key identifier: 32:54:57:68:F4:7C:35:78:5E:EB:AD:7A:34:38:A4:B1:C4:F8:DC:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlRXaPR8NXhe6616NDikscT43DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/47bc76-974e-4018-94fd-7f46c8c68e7e/1/UVHym_hND0UKS0TZahA67-xdRaw.roa
Signing time: Thu 02 Jan 2025 13:50:33 +0000
ROA not before: Thu 02 Jan 2025 13:50:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 47770
IP address blocks: 91.208.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:3d:25:7a:c5:c2:49:2e:d6:2e:6d:5e:b5:8f:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32545768f47c35785eebad7a3438a4b1c4f8dc30
Validity
Not Before: Jan 2 13:50:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5151f29bf84d0f450a4b44d96a103aefec5d45ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b7:8b:ad:49:05:60:8c:e2:59:65:42:df:57:
35:bf:b8:fc:72:0e:43:2d:f9:49:36:f7:39:a9:a1:
d6:30:4c:5b:ce:08:f0:d1:a0:96:c0:fa:8c:ab:73:
c2:82:a9:45:29:21:73:91:8d:27:e7:af:7c:c4:6d:
40:b6:2d:cb:fb:61:a1:29:8a:bd:1a:38:1b:af:7b:
c3:c9:69:31:b7:aa:5d:e7:ec:b5:63:d4:e4:c8:c7:
53:c6:9e:d4:9f:a4:11:df:0a:59:4b:e0:72:18:12:
b8:ca:4c:32:a0:10:86:9a:0e:b8:e6:3e:92:a8:b7:
fc:96:9a:51:6a:98:b5:42:4e:d0:4c:a1:a4:fd:3f:
12:17:be:2d:ef:35:47:1a:a9:0d:97:d7:fa:a3:00:
33:cb:16:83:33:59:cc:35:d6:28:2d:0c:ab:53:60:
75:2b:46:d0:e4:c0:45:78:c5:d1:7a:65:de:b0:0d:
40:8f:5e:07:e2:09:d1:3d:ec:8f:7a:cb:84:ac:11:
ca:c5:cd:82:00:d5:95:b7:56:9c:56:9a:f1:b2:70:
f0:1a:44:de:ea:8d:54:e3:e1:2f:50:c0:81:d5:26:
0e:9d:2b:0e:41:57:a9:25:2c:34:07:0c:12:e9:38:
6f:f5:77:17:00:98:9f:07:65:68:fd:73:f9:55:08:
ba:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:51:F2:9B:F8:4D:0F:45:0A:4B:44:D9:6A:10:3A:EF:EC:5D:45:AC
X509v3 Authority Key Identifier:
keyid:32:54:57:68:F4:7C:35:78:5E:EB:AD:7A:34:38:A4:B1:C4:F8:DC:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlRXaPR8NXhe6616NDikscT43DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/47bc76-974e-4018-94fd-7f46c8c68e7e/1/UVHym_hND0UKS0TZahA67-xdRaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/47bc76-974e-4018-94fd-7f46c8c68e7e/1/MlRXaPR8NXhe6616NDikscT43DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.129.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:29:4d:3e:06:24:8b:eb:0e:60:23:4b:45:53:d1:4f:0f:fc:
96:5f:8e:1c:69:4b:95:45:0c:44:d4:45:7a:92:e9:11:1c:21:
94:97:e0:d8:86:75:db:1d:ed:1c:ea:cc:3f:b3:52:8b:95:4f:
48:3f:8c:fb:47:54:6c:c2:e5:ff:85:d8:13:fd:78:41:4d:0f:
da:34:44:84:d1:82:e8:72:c5:04:f1:31:06:71:94:eb:61:f8:
8b:93:a9:cd:90:6f:18:d8:9b:02:5a:e9:96:66:3d:71:65:04:
a3:79:c8:df:ec:5a:09:60:c4:90:bf:ce:bc:04:e2:62:e3:6a:
5b:bf:ca:c8:f6:01:e0:b7:77:49:74:c6:c9:d5:1d:14:b1:a9:
36:64:2b:27:18:d0:85:7c:0c:e5:a8:8e:be:0b:c6:81:74:a2:
39:0e:cf:74:d8:36:d6:2a:d7:b4:2a:4f:ee:71:f6:5f:cc:71:
ec:95:7c:e9:98:eb:ad:c7:1a:1c:26:76:0b:40:92:7d:b9:e4:
0f:3f:05:ac:cb:9b:d6:2a:b1:c3:b8:40:ee:ef:db:2e:9b:f1:
6c:3f:2d:e7:10:dc:19:8d:13:17:bf:c5:16:a4:1c:84:07:eb:
30:d6:44:e5:e9:9d:18:56:3e:ef:9a:ee:97:a7:0a:6e:09:ab:
9b:b2:23:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:07 2025 by rpki-client on console.sobornost.net