Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/e962bb-6e43-43d8-9040-3e8f108163f0/1/Uxk3bMMXmh56F6TmhmG4ivZ7IFU.roa
File: Uxk3bMMXmh56F6TmhmG4ivZ7IFU.roa (raw, json)
Hash identifier: xTZmi3uaXuG0iWva7FAD0hOINKABABr0nO7jSKHqZd0=
Subject key identifier: 53:19:37:6C:C3:17:9A:1E:7A:17:A4:E6:86:61:B8:8A:F6:7B:20:55
Certificate issuer: /CN=6ec946cb4f9f8fb43a6d8feecfc27c1c213b1905
Certificate serial: 01856FF02F8889387B404805A5D3E736923C
Authority key identifier: 6E:C9:46:CB:4F:9F:8F:B4:3A:6D:8F:EE:CF:C2:7C:1C:21:3B:19:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bslGy0-fj7Q6bY_uz8J8HCE7GQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/e962bb-6e43-43d8-9040-3e8f108163f0/1/Uxk3bMMXmh56F6TmhmG4ivZ7IFU.roa
Signing time: Mon 02 Jan 2023 00:44:49 +0000
ROA not before: Mon 02 Jan 2023 00:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197412
IP address blocks: 185.230.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:2f:88:89:38:7b:40:48:05:a5:d3:e7:36:92:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec946cb4f9f8fb43a6d8feecfc27c1c213b1905
Validity
Not Before: Jan 2 00:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5319376cc3179a1e7a17a4e68661b88af67b2055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:aa:12:3f:0c:90:e3:2c:5a:1d:eb:4e:9f:f4:
cd:68:8e:82:c0:d7:38:da:a8:4b:5a:48:de:07:9b:
4b:11:e1:47:5f:9b:84:b8:7d:51:78:0c:d9:9b:b3:
48:ff:3b:68:c7:6e:cc:ff:c4:73:ae:65:a9:f5:13:
ac:e5:9a:0f:2d:6c:e8:b5:dc:2d:7c:af:a2:fe:f6:
51:5d:33:2d:ec:84:e2:1f:99:0d:53:c2:2c:76:cc:
03:58:2b:5e:f6:4e:b0:3f:61:b0:d6:47:04:d7:3b:
32:d8:5d:be:e5:1f:5a:d6:e3:24:f6:12:87:52:05:
fe:d3:fe:b3:37:18:5a:b3:ee:d6:28:48:e5:92:b0:
2e:ca:25:e6:83:d1:92:62:41:24:67:e0:e9:22:42:
0e:33:36:97:3e:c9:8e:fc:22:04:94:12:e5:5e:b5:
46:de:15:d5:d6:85:64:99:3f:37:96:2c:df:e6:24:
df:58:2e:65:42:40:ff:2f:fb:c4:3d:c3:3c:28:91:
4e:25:bf:b1:35:9a:b5:b1:5a:98:35:24:54:a0:c5:
db:38:6c:cd:18:7b:ef:cf:d0:2e:75:be:7c:73:b1:
4b:9e:6f:ea:18:fa:94:8c:4d:e4:dd:d8:7b:c6:da:
4e:9c:1c:89:90:ab:87:5e:e3:17:3a:6c:e2:67:87:
98:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:19:37:6C:C3:17:9A:1E:7A:17:A4:E6:86:61:B8:8A:F6:7B:20:55
X509v3 Authority Key Identifier:
keyid:6E:C9:46:CB:4F:9F:8F:B4:3A:6D:8F:EE:CF:C2:7C:1C:21:3B:19:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bslGy0-fj7Q6bY_uz8J8HCE7GQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e962bb-6e43-43d8-9040-3e8f108163f0/1/Uxk3bMMXmh56F6TmhmG4ivZ7IFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/e962bb-6e43-43d8-9040-3e8f108163f0/1/bslGy0-fj7Q6bY_uz8J8HCE7GQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.172.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:ea:81:2f:6d:97:56:09:1f:4f:83:10:ec:29:1f:8c:0e:8b:
42:c0:11:0f:70:79:58:25:d8:fd:fd:89:28:de:ac:d5:b9:06:
f5:3f:cc:28:2c:74:10:1a:da:b1:50:29:50:e3:84:6b:35:30:
1b:d9:dd:aa:21:9e:7c:36:f9:b3:31:28:cf:7b:50:11:4e:05:
f5:65:d4:a6:6e:98:2b:87:0c:b3:75:c6:79:1f:ba:5f:6b:f7:
4c:07:ab:9a:97:a7:72:9c:ad:6e:71:06:e3:0b:5d:4a:07:9d:
3a:04:b6:39:2c:ba:ab:f5:a0:19:bd:aa:45:d9:ce:ea:42:cd:
19:4f:26:c0:b2:62:52:d8:68:fa:6c:0f:18:78:4b:40:a3:03:
dd:ae:27:f1:f0:47:25:87:49:21:06:40:7b:28:ac:62:5d:05:
34:a5:a6:52:df:a4:8f:08:43:2f:98:a0:b5:1c:bb:2b:87:3e:
36:11:db:93:18:3c:60:7e:6a:c3:aa:dd:5f:78:7a:21:ea:f2:
d1:03:e5:1e:ca:34:bb:ea:87:36:7e:6c:83:e5:12:5b:0b:05:
e8:91:b6:c8:f9:67:7e:a6:6d:80:e7:b0:c0:bb:ea:6c:3e:78:
26:6d:b6:fb:db:00:5e:fe:dc:c2:c3:73:4e:5b:9b:8a:32:eb:
fb:ed:cb:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:38 2023 by rpki-client on console.sobornost.net