Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/UzJoyELSH_yaLhfEL5O6dFxLAiQ.roa
File: UzJoyELSH_yaLhfEL5O6dFxLAiQ.roa (raw, json)
Hash identifier: sMxzflKV/u8QNYU5Uq1YUADhqOp7BmkMxWcjybORG/o=
Subject key identifier: 53:32:68:C8:42:D2:1F:FC:9A:2E:17:C4:2F:93:BA:74:5C:4B:02:24
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 0183A74503D7A77238E0E102DA4EBE246F26
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/UzJoyELSH_yaLhfEL5O6dFxLAiQ.roa
Signing time: Wed 05 Oct 2022 08:31:01 +0000
ROA not before: Wed 05 Oct 2022 08:31:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 152.89.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a7:45:03:d7:a7:72:38:e0:e1:02:da:4e:be:24:6f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Oct 5 08:31:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=533268c842d21ffc9a2e17c42f93ba745c4b0224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:de:06:88:bc:2f:1b:00:f7:62:0d:46:f4:e3:
47:46:10:d5:a0:1d:33:0a:54:a1:88:30:a4:9e:fd:
9f:9b:70:99:18:e1:69:68:5b:38:fb:21:14:b9:72:
31:70:be:ce:c9:69:44:95:fc:fe:bd:05:8a:43:54:
3f:79:a2:48:af:96:c4:09:e2:64:dc:60:e6:5c:de:
ca:0a:34:58:2b:10:e0:6f:34:9e:97:8a:1c:27:b3:
cd:83:0f:24:c5:52:54:d1:6c:f7:a6:a4:59:7c:75:
bf:70:cb:e4:2c:bd:fc:49:62:ec:a5:a0:cf:80:2b:
52:ed:d7:c0:81:09:f7:4a:26:45:84:c8:10:ca:76:
76:2d:37:4a:fd:65:bc:1a:e3:db:88:ae:32:9c:51:
f8:53:e9:cc:91:e7:a6:0d:86:aa:d2:ad:6f:2f:d5:
8f:4c:e0:f3:f6:04:6e:0f:b9:cf:85:4e:4f:81:12:
9c:67:3c:4a:b5:fd:83:e0:8f:ed:ae:e6:f6:c6:69:
7c:df:c9:f6:d4:04:67:56:10:6e:d4:62:eb:92:cc:
c5:04:a8:3d:86:ae:6d:b5:22:52:b9:b5:39:67:06:
13:eb:6d:41:86:06:15:00:d2:66:bf:52:78:86:9d:
c8:ba:de:5e:a7:6e:e2:07:d2:e9:72:51:f7:f7:9f:
ce:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:32:68:C8:42:D2:1F:FC:9A:2E:17:C4:2F:93:BA:74:5C:4B:02:24
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/UzJoyELSH_yaLhfEL5O6dFxLAiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.192.0/24
Signature Algorithm: sha256WithRSAEncryption
61:0c:7d:35:2c:c9:5d:33:49:74:2c:9f:90:a1:a0:21:df:11:
87:59:2c:e5:ef:c6:01:c1:a5:6c:f2:75:e8:ec:ba:47:83:5a:
41:00:4b:1c:05:e5:92:ef:f2:f7:c0:59:96:4a:2c:61:2f:d9:
e5:c6:35:c3:d4:bf:f1:38:7f:82:2b:f8:e4:ee:07:5b:83:e7:
f9:02:80:63:50:04:b7:e4:90:ac:7b:44:c5:bc:6a:c9:9b:17:
5b:d2:9a:4b:63:26:cb:ba:3a:d0:cf:77:7d:7a:2a:10:a2:17:
7f:40:e7:7e:76:61:21:c8:db:62:06:20:d3:b1:33:b5:ac:02:
be:80:3d:e0:06:e0:79:98:05:37:ab:d9:c5:94:46:7c:62:c4:
0b:87:87:cb:f3:d9:57:72:68:db:c7:d4:ba:55:dc:dd:ec:6a:
86:35:a1:d9:1c:17:04:83:bc:34:74:3f:c4:96:2f:e4:59:8a:
b7:6b:68:f2:ee:51:4f:d7:05:13:ed:8e:ef:9e:c7:ba:70:fd:
4b:bc:9b:27:bb:8a:90:5e:46:93:28:9c:ef:98:55:e7:65:ef:
3d:5c:37:9b:a5:fe:12:19:ad:e4:4c:5e:38:69:eb:6b:ee:ae:
f3:82:74:89:6d:5e:7c:6c:f8:9c:4f:06:eb:3a:5d:66:dd:f9:
71:a1:f5:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:31 2023 by rpki-client on console.sobornost.net