Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/1baff1-dda3-4304-b1b3-5182eede2a29/1/UMWovwfUscq8UXa7HcOk99jOyUw.roa
File: UMWovwfUscq8UXa7HcOk99jOyUw.roa (raw, json)
Hash identifier: qIZD+/8tTRjxnDRolqscZk7I94oyVCzhMP8LFn0HeeI=
Subject key identifier: 50:C5:A8:BF:07:D4:B1:CA:BC:51:76:BB:1D:C3:A4:F7:D8:CE:C9:4C
Certificate issuer: /CN=64366a73915f9090d4b1083897aa402577e163de
Certificate serial: 019422FBD0B28BCE4063860400AD145C6E66
Authority key identifier: 64:36:6A:73:91:5F:90:90:D4:B1:08:38:97:AA:40:25:77:E1:63:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDZqc5FfkJDUsQg4l6pAJXfhY94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/1baff1-dda3-4304-b1b3-5182eede2a29/1/UMWovwfUscq8UXa7HcOk99jOyUw.roa
Signing time: Wed 01 Jan 2025 17:48:35 +0000
ROA not before: Wed 01 Jan 2025 17:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210509
IP address blocks: 212.23.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:d0:b2:8b:ce:40:63:86:04:00:ad:14:5c:6e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64366a73915f9090d4b1083897aa402577e163de
Validity
Not Before: Jan 1 17:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50c5a8bf07d4b1cabc5176bb1dc3a4f7d8cec94c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9a:21:13:7e:91:22:d3:bf:5b:48:9f:93:62:
31:c9:c0:9b:94:f5:c6:1c:65:87:a0:7d:9d:73:93:
e3:28:04:e0:e8:c5:16:5d:fa:99:9e:c8:4c:c4:f1:
8a:fc:6e:d4:70:67:97:94:31:15:16:7f:70:30:6b:
a9:47:4f:3b:29:82:85:7b:32:62:25:b1:e8:91:0d:
25:83:42:08:ea:2e:9a:d8:f3:8b:40:ce:87:26:fc:
86:8d:72:75:18:74:ab:3c:49:90:73:54:6b:48:67:
ac:2c:1d:e3:53:44:28:62:c0:3c:2f:90:26:93:c5:
97:64:ab:97:3e:5b:ff:b0:4d:7b:eb:06:76:82:22:
29:7e:00:94:68:29:e0:13:44:d0:5d:e5:05:ef:27:
95:31:1b:e9:6c:84:7c:a3:16:5e:5e:42:4f:45:6d:
18:63:9a:ba:0d:6a:27:39:5a:15:de:61:69:db:b2:
26:b6:d4:26:3e:38:94:8c:bb:c9:6d:59:f1:3f:7b:
7b:94:cd:e1:27:c1:87:ab:4b:94:a5:a4:97:47:ec:
0d:df:98:45:4a:7b:3e:33:03:d5:a4:d0:57:95:e1:
4d:92:a4:46:08:d4:94:6e:74:8d:fb:7e:1e:dc:1d:
eb:69:6a:e2:b8:af:df:31:9f:17:76:88:dc:57:61:
ff:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C5:A8:BF:07:D4:B1:CA:BC:51:76:BB:1D:C3:A4:F7:D8:CE:C9:4C
X509v3 Authority Key Identifier:
keyid:64:36:6A:73:91:5F:90:90:D4:B1:08:38:97:AA:40:25:77:E1:63:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDZqc5FfkJDUsQg4l6pAJXfhY94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/1baff1-dda3-4304-b1b3-5182eede2a29/1/UMWovwfUscq8UXa7HcOk99jOyUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/1baff1-dda3-4304-b1b3-5182eede2a29/1/ZDZqc5FfkJDUsQg4l6pAJXfhY94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.217.0/24
Signature Algorithm: sha256WithRSAEncryption
73:9e:4a:f5:25:0d:12:c4:58:93:f0:bf:12:f2:53:1e:80:e7:
7b:b7:f3:c3:a7:15:7a:74:01:59:2c:59:fc:0e:f9:88:8f:44:
95:f8:e6:e9:d8:41:c8:fb:59:82:24:f4:63:52:14:85:2d:26:
36:4e:9f:20:9d:75:30:a0:e3:97:37:af:80:8e:08:f4:43:a5:
21:85:92:29:a1:73:15:ce:dd:49:3e:20:b3:5c:48:48:0c:da:
25:b2:fa:75:dd:68:37:7d:c4:44:78:bd:06:f9:f6:40:c6:48:
0f:29:ba:a2:e8:a9:7f:75:4a:82:dd:20:03:91:66:1f:00:a9:
f3:d8:5f:86:b7:62:33:f0:ac:c2:f6:2b:88:42:cd:6f:ba:c7:
fa:9b:20:bb:db:5c:e4:63:51:46:6f:af:35:56:2a:40:1b:03:
a1:fc:9e:af:9f:83:0d:f3:89:15:44:bb:68:c4:a9:7a:54:e2:
63:21:9e:84:28:71:57:40:0f:9d:96:ae:85:20:41:65:26:67:
f3:83:f2:69:e2:bc:63:44:c5:34:d8:06:9e:05:55:8b:21:f6:
e0:e0:ae:23:39:34:ba:20:f4:80:99:2f:35:f6:cd:f9:f8:96:
a2:b6:48:f8:06:e1:37:e9:2c:91:b9:a6:39:05:8a:bd:54:8b:
fc:a9:da:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:14 2025 by rpki-client on console.sobornost.net