Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/u8qNW9VYzSINDikYEq1f-ez8tIk.roa
File: u8qNW9VYzSINDikYEq1f-ez8tIk.roa (raw, json)
Hash identifier: UkOyP/F1rcoOHsvtDCDkpCUaZq+hIT+JH6Q4KUXUY/8=
Subject key identifier: BB:CA:8D:5B:D5:58:CD:22:0D:0E:29:18:12:AD:5F:F9:EC:FC:B4:89
Certificate issuer: /CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Certificate serial: 0192AF0D1B36CAD48887739CC640A0F9BC94
Authority key identifier: B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/u8qNW9VYzSINDikYEq1f-ez8tIk.roa
Signing time: Mon 21 Oct 2024 12:28:44 +0000
ROA not before: Mon 21 Oct 2024 12:28:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12462
IP address blocks: 212.163.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:af:0d:1b:36:ca:d4:88:87:73:9c:c6:40:a0:f9:bc:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b
Validity
Not Before: Oct 21 12:28:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbca8d5bd558cd220d0e291812ad5ff9ecfcb489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e4:97:99:b6:eb:b9:c2:9f:29:96:31:f4:f5:
7f:19:44:bc:3e:17:5c:26:88:98:fa:ec:bb:f9:60:
e7:25:90:65:31:59:03:a1:37:ed:ed:a1:be:c6:fa:
df:9e:c2:b2:8d:66:b5:45:5e:41:4d:f4:c2:ba:2e:
11:d8:b3:68:31:f9:d3:09:ee:94:ca:61:b4:c1:bc:
e5:a0:99:8e:7d:cd:6d:89:e9:1f:ec:10:30:32:fd:
27:5c:10:54:02:65:7f:98:5a:3a:6a:f6:b8:14:8a:
7a:9e:a3:3b:0f:99:f3:22:5c:0d:d9:ea:2e:dd:07:
9c:77:5d:cf:d0:af:d3:4d:64:38:4b:e8:f2:1a:d7:
ac:cf:d4:f6:7d:75:2d:1a:3e:69:4d:73:55:68:38:
b4:44:e0:d7:6a:90:58:47:1a:00:c3:21:2f:1c:47:
a0:b7:c2:f2:89:25:5d:74:6b:9b:de:8a:7b:f0:c8:
9d:86:1d:3d:22:e1:91:7b:2c:c4:ba:f6:ca:cd:9d:
c3:57:c2:50:b1:07:6c:95:8e:b2:f5:2e:b7:1b:ee:
c0:86:2d:51:dc:08:e5:2d:56:a5:ee:4b:b4:7d:ca:
5e:bf:60:3b:ca:72:5f:aa:d3:0a:f6:9a:bb:24:56:
ac:9a:9d:49:1e:ad:04:be:71:d6:b9:5b:5e:67:1f:
24:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:CA:8D:5B:D5:58:CD:22:0D:0E:29:18:12:AD:5F:F9:EC:FC:B4:89
X509v3 Authority Key Identifier:
keyid:B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/u8qNW9VYzSINDikYEq1f-ez8tIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.163.31.0/24
Signature Algorithm: sha256WithRSAEncryption
73:1f:68:ee:50:36:a7:98:7a:f6:b2:64:1f:a1:24:fe:09:ce:
7c:51:15:31:40:a2:af:33:db:36:05:b5:3f:ed:2a:5b:85:e4:
5f:0e:35:0f:48:97:4e:f8:e5:55:4b:d6:6d:7b:5e:3a:d4:3a:
2e:8f:4e:8b:46:6b:e9:b3:59:5d:b9:4a:20:85:54:dc:f0:f7:
07:46:a1:4c:3e:8c:cd:f2:58:9d:43:7a:d7:f2:71:86:96:4f:
af:0d:5c:b9:7c:e3:c2:9c:02:9a:47:5a:32:9a:1a:06:c7:9a:
64:1a:d2:b3:e3:1e:e5:5b:ee:97:e6:bd:14:c4:8c:27:02:36:
30:7e:bf:f1:31:80:46:88:bc:06:6c:91:f8:51:f7:53:1e:c1:
89:49:0c:11:55:93:b0:0a:b9:f1:6b:6d:11:c4:e2:69:f6:ef:
d6:e5:75:b3:ad:d2:9a:53:5f:9a:6b:e4:f8:a3:12:a4:ff:51:
b0:3e:96:0d:06:74:2d:13:2b:9d:e8:4a:7c:d9:6d:90:c9:7d:
be:34:38:05:66:22:a7:94:5f:bb:2a:84:df:a7:13:50:b5:bf:
7c:76:be:a9:8f:7a:16:a8:b1:fd:85:f8:ef:41:57:6d:7f:4a:
b5:45:37:f2:bf:9e:33:f6:84:24:67:d4:77:56:c0:02:83:26:
a0:12:7a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:59 2024 by rpki-client on console.sobornost.net