Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/UKm_UMtvpGrkU1Nu7y__DDnEPuk.roa
File: UKm_UMtvpGrkU1Nu7y__DDnEPuk.roa (raw, json)
Hash identifier: s8C+wz9gxxRZtvljlAJGIx8hAPJhRLZF/TFKsZo9Kz8=
Subject key identifier: 50:A9:BF:50:CB:6F:A4:6A:E4:53:53:6E:EF:2F:FF:0C:39:C4:3E:E9
Certificate issuer: /CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Certificate serial: 0194221F97AC86ABB0EC09C28294B712569A
Authority key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/UKm_UMtvpGrkU1Nu7y__DDnEPuk.roa
Signing time: Wed 01 Jan 2025 13:48:03 +0000
ROA not before: Wed 01 Jan 2025 13:48:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58026
IP address blocks: 62.3.6.0/24 maxlen: 24
146.19.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:97:ac:86:ab:b0:ec:09:c2:82:94:b7:12:56:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Validity
Not Before: Jan 1 13:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=50a9bf50cb6fa46ae453536eef2fff0c39c43ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d0:3a:a0:3e:ac:77:7e:20:c7:40:e6:9f:09:
2b:4b:ba:31:b2:0b:54:1d:74:8e:af:30:1e:57:ad:
39:38:6a:34:22:07:10:43:df:f1:8f:81:70:15:59:
d4:8a:71:12:fc:07:d8:74:8a:90:22:fb:30:24:7c:
25:37:d3:86:7c:02:a9:d9:93:08:9e:53:d7:b0:64:
6d:2d:37:a8:dd:17:d5:c5:c3:f1:8c:16:1c:47:58:
95:4a:e1:e9:1e:09:f0:76:56:07:7c:73:fa:0b:e0:
b8:95:3d:0c:2c:00:11:b9:c7:7e:82:ca:62:a6:8f:
79:a1:a3:f4:87:40:6a:0c:b7:68:2c:ff:2f:10:2e:
d8:21:b6:4d:18:fb:c1:c3:d0:85:d9:78:8e:63:4f:
32:02:96:60:39:55:16:c2:d8:d7:e0:a6:66:b7:9b:
3b:f0:39:89:1d:7a:7d:e4:c8:2c:2c:37:6f:0b:79:
f3:46:a7:98:7c:75:5e:db:4c:86:e7:18:39:72:2f:
5c:71:a9:0e:19:0e:41:20:20:90:82:4e:18:3d:51:
52:e6:2e:b0:99:08:35:05:6d:34:b4:dc:da:92:4f:
82:c0:54:ae:be:b7:84:2d:a7:2a:94:01:4f:6e:67:
28:ee:85:63:bd:73:89:69:23:af:e5:6b:bd:87:d1:
80:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A9:BF:50:CB:6F:A4:6A:E4:53:53:6E:EF:2F:FF:0C:39:C4:3E:E9
X509v3 Authority Key Identifier:
keyid:B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/UKm_UMtvpGrkU1Nu7y__DDnEPuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.6.0/24
146.19.100.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:75:9c:0d:7f:73:cb:e2:3b:5b:f2:84:52:00:ca:bf:74:77:
48:74:be:e6:df:d9:d5:65:2c:e8:f3:20:30:53:37:91:6a:dd:
26:af:64:12:fc:bf:ba:09:13:80:73:55:35:00:49:ed:73:81:
d3:f5:05:46:b8:d0:5c:9a:18:96:11:3e:f5:d8:59:19:a9:4f:
11:e5:cf:44:f7:98:82:10:47:1b:ed:e2:a7:65:37:54:a1:6e:
91:15:dc:ef:87:97:f1:85:45:71:97:a6:94:64:84:9f:0a:be:
77:5a:79:b9:c3:14:0f:6c:08:d9:7f:57:23:7b:47:66:3b:0d:
7f:b5:89:44:90:48:12:a4:3f:9b:81:7c:cb:5f:60:aa:06:fa:
5c:19:39:cb:94:6b:55:8e:33:d8:ec:93:e1:ff:f3:bc:66:e0:
ab:c0:96:2d:44:5e:8a:2b:fb:97:d9:52:f3:7a:f3:91:fe:28:
76:9b:ce:de:fd:a4:81:12:51:48:91:e2:88:89:71:c9:ca:a7:
76:2b:a9:da:cd:65:74:30:95:b9:bb:e2:92:6c:65:8c:4d:33:
d1:49:e5:c6:ea:a8:72:43:fd:47:4b:32:2c:ed:e2:22:32:77:
0d:c0:0d:ba:71:da:c0:4b:b1:43:50:6f:73:b5:d9:43:15:75:
f1:01:a3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 16:22:20 2025 by rpki-client on console.sobornost.net