Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/UkwQ5P4K-6hNdEb9fPfnCQvn8Cg.roa
File: UkwQ5P4K-6hNdEb9fPfnCQvn8Cg.roa (raw, json)
Hash identifier: 3YnYR2wJLHM5g/DZxwAp32GCtIPF1553r3/M3FEeh+s=
Subject key identifier: 52:4C:10:E4:FE:0A:FB:A8:4D:74:46:FD:7C:F7:E7:09:0B:E7:F0:28
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 01941F8C863FE5E7C6D1AB381FF986247295
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/UkwQ5P4K-6hNdEb9fPfnCQvn8Cg.roa
Signing time: Wed 01 Jan 2025 01:48:10 +0000
ROA not before: Wed 01 Jan 2025 01:48:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49228
IP address blocks: 45.94.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:86:3f:e5:e7:c6:d1:ab:38:1f:f9:86:24:72:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jan 1 01:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=524c10e4fe0afba84d7446fd7cf7e7090be7f028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5d:51:c2:d2:27:40:d6:4d:d4:b3:2b:af:43:
3e:76:5d:02:69:7d:62:76:48:6b:03:0d:9e:36:bf:
d0:5c:60:c7:4d:c5:83:38:15:52:c1:ba:1c:ca:2c:
83:87:ca:d9:1f:40:9b:61:1d:58:f9:18:fd:ca:56:
30:3c:f5:e1:92:12:e5:3c:ea:c7:51:06:4c:26:e8:
31:f6:e1:59:1d:8d:9f:ec:4c:a6:4c:55:89:e0:a5:
0c:34:06:dd:35:e6:23:3e:a0:ef:99:52:07:24:75:
3f:99:de:e7:e8:6e:75:1b:60:f1:ee:4a:84:fd:a4:
e5:2c:c3:3a:8a:79:73:3b:3f:ac:23:cc:ba:3a:e4:
c4:85:c3:0e:3f:a5:f8:20:91:44:73:81:32:e6:24:
2f:a0:4f:3f:03:ef:a7:72:ed:91:00:08:0a:6c:bf:
c8:d7:3a:3a:14:83:ae:e3:02:11:c9:06:22:cd:50:
ce:86:e3:ed:b4:ac:89:2c:af:b4:0e:14:cd:b4:85:
2b:87:76:97:82:8b:3e:1f:a9:77:1b:61:ee:bf:41:
c1:f0:56:c9:71:e2:43:a0:a3:1e:bc:cf:58:2f:e2:
59:ff:c0:e6:3a:9a:84:94:5f:82:9f:a8:b0:52:66:
bf:72:b8:a3:89:d9:6e:fc:64:c2:e8:b3:d2:66:da:
9a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4C:10:E4:FE:0A:FB:A8:4D:74:46:FD:7C:F7:E7:09:0B:E7:F0:28
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/UkwQ5P4K-6hNdEb9fPfnCQvn8Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.212.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:b8:65:04:73:6d:83:43:de:6a:e6:4c:0f:37:71:0e:4d:e5:
7c:fc:4f:ef:d2:51:7e:63:74:6b:50:df:52:ee:44:9a:f8:dd:
0c:32:a5:53:17:b8:da:c3:35:a7:6c:dc:ca:a1:18:5b:8e:a3:
d9:c7:7a:0d:c6:cd:d7:94:6b:66:a2:73:af:21:f1:82:e8:e4:
8b:5c:d0:47:96:95:96:75:89:e2:51:51:34:53:fc:44:ef:7b:
0c:cc:0a:69:35:c5:53:19:36:f9:0b:ca:be:58:22:81:75:2b:
c4:9a:bf:1e:34:e2:3b:6b:df:38:3e:89:29:07:b2:c1:08:5c:
76:10:0b:7d:46:f7:39:56:96:b2:40:fb:eb:f9:e5:ae:2a:f5:
ae:6b:d6:6e:98:ef:03:7b:31:26:7a:2a:07:91:60:57:ac:5a:
cd:7c:ec:c2:9a:06:2a:11:bd:29:c2:0d:de:91:be:4d:db:ac:
c9:cb:83:ed:cd:ba:d7:59:1d:83:a6:00:03:8a:be:96:b0:c3:
2b:b1:b9:e2:bd:c4:28:9d:a1:ba:e8:e2:4e:c5:8d:88:ed:0c:
a4:2f:36:fa:3f:d1:28:5e:78:ae:70:d9:96:7e:ab:98:0b:d4:
fc:c7:b2:4c:f5:6c:eb:5b:7c:e8:de:b9:b3:b7:8a:ab:1e:9b:
89:a4:5f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net