Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/UMHCyN1PhpnvoYUbs1CT_48YLGk.roa
File: UMHCyN1PhpnvoYUbs1CT_48YLGk.roa (raw, json)
Hash identifier: i765qk64qL4Uog5FTQxpy5y2jivRwNCYq0ub5NcQaLk=
Subject key identifier: 50:C1:C2:C8:DD:4F:86:99:EF:A1:85:1B:B3:50:93:FF:8F:18:2C:69
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 01961AAD5FE4296DD00A8AAD447E83243E43
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/UMHCyN1PhpnvoYUbs1CT_48YLGk.roa
Signing time: Wed 09 Apr 2025 13:11:31 +0000
ROA not before: Wed 09 Apr 2025 13:11:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44812
IP address blocks: 185.65.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1a:ad:5f:e4:29:6d:d0:0a:8a:ad:44:7e:83:24:3e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Apr 9 13:11:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50c1c2c8dd4f8699efa1851bb35093ff8f182c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a2:7e:be:21:b1:b6:03:ca:0a:6a:3c:5f:4a:
1d:1f:8b:85:6d:28:d9:8e:c3:f9:a0:74:1e:c8:e4:
60:72:f1:df:a6:f3:07:31:10:cf:ed:1a:d3:4a:91:
46:ba:81:30:5b:ff:10:6b:a8:a1:58:ae:62:16:ca:
56:bf:ce:ee:6a:8c:75:65:39:6b:56:6c:a2:1d:56:
f4:f4:be:ab:da:b2:54:00:1c:0c:cc:df:23:f2:40:
b6:fd:eb:b9:4e:8a:d1:37:16:6b:bd:93:54:b9:7c:
d8:ae:c4:dc:11:3e:e4:18:35:19:00:26:c3:5f:a2:
e0:0c:4f:59:d0:21:33:0e:00:b5:65:5a:b7:db:db:
1e:6a:5e:a8:b2:54:6c:fe:a3:dd:50:ea:d2:e7:fa:
79:7d:c6:79:df:36:e3:77:9c:f9:75:09:93:6e:7f:
91:8b:84:b2:a8:c7:ce:7d:26:08:2b:50:3f:d2:96:
7e:e5:53:1e:97:99:c8:56:a9:e3:86:fa:c4:cc:a7:
20:7e:62:91:44:52:2d:d8:20:94:8f:1b:65:34:1d:
6d:e0:a4:27:e6:27:bf:b4:70:5b:96:90:bf:58:08:
4f:9c:e9:b8:29:46:b8:22:ed:f3:e0:80:cc:65:5c:
7c:56:d3:9f:a0:54:3b:38:3c:f5:3e:92:8a:e1:fd:
5f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C1:C2:C8:DD:4F:86:99:EF:A1:85:1B:B3:50:93:FF:8F:18:2C:69
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/UMHCyN1PhpnvoYUbs1CT_48YLGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.201.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:89:72:e8:fd:56:e0:bb:ac:00:d7:1d:17:f1:6d:9f:af:4d:
e6:01:3b:17:f3:5b:eb:b0:62:89:b9:d0:00:6b:47:06:d1:e0:
3c:af:5a:69:71:1a:f6:c6:11:d9:eb:c7:74:ca:94:0f:52:8f:
30:af:6d:94:c3:92:cc:84:d0:88:29:f9:7c:b4:70:68:9c:a0:
c2:9d:24:60:e1:4d:40:a8:36:48:d9:4f:be:83:b7:30:f8:1a:
81:33:99:23:2b:ff:8b:07:ae:58:9e:25:c5:37:80:c0:49:d7:
81:1b:a6:93:d9:33:09:ca:96:16:11:a7:06:17:73:3f:7d:91:
65:b9:58:38:0b:eb:fa:fc:bc:54:5e:28:9c:44:33:d4:96:78:
44:cb:e9:ea:ff:04:c3:7b:19:57:e6:8f:cb:16:f9:67:b0:16:
f1:95:f3:34:33:2a:54:0c:89:fb:3d:48:a3:c1:49:e3:31:65:
62:77:02:a1:07:71:f4:d4:9e:ea:4e:af:a3:74:b0:e3:3d:93:
ae:9b:39:c3:08:58:c1:76:4e:d2:e4:7b:2a:80:dd:fa:f6:ea:
31:96:b8:88:49:44:82:5c:28:14:91:7a:b9:23:9c:7a:a8:f0:
4d:82:eb:53:54:77:eb:ab:05:18:29:4a:d2:76:36:d6:39:56:
0f:ec:67:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:35 2025 by rpki-client on console.sobornost.net