Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/Uk29PUfGt3caGMQSiry4WBm4IRU.roa
File: Uk29PUfGt3caGMQSiry4WBm4IRU.roa (raw, json)
Hash identifier: LCdJ0RnrTDpEc8DNsuU73nBoqgKUEjr94HLIlQzEYQs=
Subject key identifier: 52:4D:BD:3D:47:C6:B7:77:1A:18:C4:12:8A:BC:B8:58:19:B8:21:15
Certificate issuer: /CN=70f8b2dbb03cecc4f214564709149614c48d7085
Certificate serial: 018CC94E5FA648BCE3DCF46F5A5488366B9C
Authority key identifier: 70:F8:B2:DB:B0:3C:EC:C4:F2:14:56:47:09:14:96:14:C4:8D:70:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPiy27A87MTyFFZHCRSWFMSNcIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/Uk29PUfGt3caGMQSiry4WBm4IRU.roa
Signing time: Tue 02 Jan 2024 08:33:25 +0000
ROA not before: Tue 02 Jan 2024 08:33:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 80.68.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:5f:a6:48:bc:e3:dc:f4:6f:5a:54:88:36:6b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f8b2dbb03cecc4f214564709149614c48d7085
Validity
Not Before: Jan 2 08:33:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=524dbd3d47c6b7771a18c4128abcb85819b82115
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8a:d3:72:c1:eb:8a:ba:47:2a:b6:e6:bb:d0:
e6:0f:80:c4:df:21:ba:d1:68:27:0f:4a:02:85:ce:
e8:8f:a3:3a:91:62:2b:9b:a4:24:f5:69:4a:f9:cc:
54:80:5d:24:43:09:c2:2f:25:2d:86:1c:37:cc:04:
db:c0:eb:bf:68:6e:a7:67:93:c8:cc:62:43:ed:72:
68:05:9d:9d:07:40:19:4c:ec:d1:e7:5c:2c:b5:d2:
7a:58:9c:5c:a3:3c:60:f5:00:9c:08:d2:9d:9f:ed:
79:e1:ee:17:21:9a:65:a6:4e:b0:ca:2b:56:3b:45:
42:18:18:ca:22:8f:24:c2:89:a7:0a:a9:a4:a7:02:
f4:95:c2:c0:fd:9d:4c:79:c2:f0:39:1f:dc:63:a7:
6f:eb:f6:00:4f:a4:83:17:24:a8:75:59:bc:c4:b9:
4a:8e:80:15:28:18:41:d3:4c:35:8a:ce:f3:f6:0e:
7f:18:12:14:74:c1:0a:52:82:9c:f1:be:a0:7e:a7:
ea:26:66:b9:3d:9e:85:17:3c:4f:20:5e:e3:47:2d:
ad:df:a3:e5:a1:8b:4c:e0:6f:bf:0f:7f:d5:d8:fb:
98:fd:a4:3e:34:dc:50:3e:5c:bc:48:88:d8:c4:03:
51:39:44:68:9d:15:6c:cc:ae:17:29:ce:18:1f:ea:
2e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4D:BD:3D:47:C6:B7:77:1A:18:C4:12:8A:BC:B8:58:19:B8:21:15
X509v3 Authority Key Identifier:
keyid:70:F8:B2:DB:B0:3C:EC:C4:F2:14:56:47:09:14:96:14:C4:8D:70:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPiy27A87MTyFFZHCRSWFMSNcIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/Uk29PUfGt3caGMQSiry4WBm4IRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/2f45cf-1eb2-4339-ad33-c0566af62e98/1/cPiy27A87MTyFFZHCRSWFMSNcIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.68.145.0/24
Signature Algorithm: sha256WithRSAEncryption
26:1b:06:e2:1a:bd:80:01:f3:4d:60:9c:ca:83:c9:37:f0:bf:
66:78:87:62:14:56:ee:1f:38:4b:a0:f1:17:28:98:be:68:f5:
74:e2:81:63:34:b0:4e:3f:16:c8:bf:a8:71:48:1c:87:61:0d:
2b:a4:06:e2:3f:75:66:9d:eb:62:97:5d:78:50:f2:09:6f:44:
e9:bc:10:6f:b3:a6:df:af:6f:09:37:1f:34:ee:d1:89:9e:d1:
93:8e:e4:da:16:1b:31:e8:29:50:35:b7:8b:94:d2:b9:60:d6:
99:29:f2:73:06:6e:1f:7a:af:17:47:a7:1f:4e:12:ed:90:8f:
a7:8e:34:55:f4:19:45:16:57:e1:c1:74:7f:72:15:a8:75:03:
11:40:a1:b0:00:04:7d:de:c2:0b:e4:97:b4:61:ab:66:05:87:
14:23:60:25:45:f2:33:50:61:2c:e3:6d:dd:9c:1b:fa:ce:0d:
81:2f:a3:8f:f5:1f:0b:61:0e:a0:13:c9:83:5e:e0:7b:d1:3d:
32:e0:13:af:f8:70:ce:7b:35:c4:49:ac:a7:ee:2f:63:06:c6:
7f:60:c5:3f:00:63:7f:4e:84:e3:69:58:36:13:13:fe:87:48:
8c:bf:31:f3:da:bc:62:bf:fe:2c:e6:01:8c:b7:77:46:b7:cc:
8c:f2:67:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 00:59:46 2024 by rpki-client on console.sobornost.net