Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/12e679-856c-48ea-a062-959ebb905b3a/1/rUMFzM_6Km-2DqJ2YTtdSrWtUek.roa
File: rUMFzM_6Km-2DqJ2YTtdSrWtUek.roa (raw, json)
Hash identifier: abXfjUUyhIhLutP9c/7/Y4Znd/9ps5Twdqn7uTEich0=
Subject key identifier: AD:43:05:CC:CF:FA:2A:6F:B6:0E:A2:76:61:3B:5D:4A:B5:AD:51:E9
Certificate issuer: /CN=6c12ab7063c85dfe22fa7a99d9c6fce5e6161031
Certificate serial: 01942143C5B6ECAE7EB801036EEEECEB6142
Authority key identifier: 6C:12:AB:70:63:C8:5D:FE:22:FA:7A:99:D9:C6:FC:E5:E6:16:10:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBKrcGPIXf4i-nqZ2cb85eYWEDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/12e679-856c-48ea-a062-959ebb905b3a/1/rUMFzM_6Km-2DqJ2YTtdSrWtUek.roa
Signing time: Wed 01 Jan 2025 09:47:57 +0000
ROA not before: Wed 01 Jan 2025 09:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48522
IP address blocks: 217.150.190.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:c5:b6:ec:ae:7e:b8:01:03:6e:ee:ec:eb:61:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c12ab7063c85dfe22fa7a99d9c6fce5e6161031
Validity
Not Before: Jan 1 09:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad4305cccffa2a6fb60ea276613b5d4ab5ad51e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:de:6d:21:68:7b:9c:fd:61:d5:25:d2:4b:fb:
f3:b3:6b:48:b0:37:90:75:51:4a:96:8a:73:e9:09:
eb:a8:41:d2:0d:22:6b:10:24:6c:5b:b0:44:fb:d2:
7a:98:83:f0:f0:60:55:5f:ed:9d:95:45:78:10:4a:
38:9a:2f:46:aa:be:ab:8d:b5:ca:27:27:3f:6f:e7:
bd:44:af:7e:fe:6b:54:e1:00:db:79:18:be:0a:1e:
bf:c7:ba:b7:8d:9c:fc:25:2f:7c:ca:67:ed:dc:96:
15:e9:c1:60:e5:0b:4d:4a:a1:fd:02:7d:1c:d3:80:
01:80:ff:fe:1b:08:71:ba:19:28:73:04:dc:3a:d0:
eb:cf:4f:05:e2:5d:13:da:c2:8d:54:7c:a8:d9:d0:
79:29:6a:3b:55:ac:d8:68:e9:55:c2:3e:78:80:32:
c1:6b:8c:60:0b:2c:f8:3d:7b:95:f0:40:51:a6:38:
49:24:d8:e8:4e:c4:91:da:1d:21:be:9b:32:10:1f:
5e:1e:37:47:1d:23:bc:64:f6:87:c1:e4:43:65:97:
aa:85:aa:f8:16:c8:2b:bd:2c:53:1a:54:cd:b8:a2:
31:10:b1:02:fb:a9:0f:4d:10:6a:4f:e9:e5:55:17:
aa:8c:f2:3c:0e:ec:92:dd:ed:87:ec:14:ab:a6:bf:
7d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:43:05:CC:CF:FA:2A:6F:B6:0E:A2:76:61:3B:5D:4A:B5:AD:51:E9
X509v3 Authority Key Identifier:
keyid:6C:12:AB:70:63:C8:5D:FE:22:FA:7A:99:D9:C6:FC:E5:E6:16:10:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBKrcGPIXf4i-nqZ2cb85eYWEDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/12e679-856c-48ea-a062-959ebb905b3a/1/rUMFzM_6Km-2DqJ2YTtdSrWtUek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/12e679-856c-48ea-a062-959ebb905b3a/1/bBKrcGPIXf4i-nqZ2cb85eYWEDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.150.190.0/23
Signature Algorithm: sha256WithRSAEncryption
85:d1:09:e1:1f:7e:4d:f5:7c:bc:3c:02:01:3b:93:e1:15:e8:
a5:46:eb:21:d6:8b:c7:b6:32:15:a3:7b:73:13:7e:c0:81:73:
78:e1:77:a1:56:67:59:96:5f:d4:90:23:a7:36:7f:1e:4a:0d:
8e:78:8a:ec:f9:e9:08:91:3f:b7:87:a0:8d:99:ac:66:01:5a:
67:7e:ab:48:ac:c4:5a:17:1a:72:6f:4d:1f:c2:4d:6b:fe:51:
0d:8e:40:11:6e:dc:df:37:3a:80:8b:16:0d:5e:7a:a9:7f:70:
21:ab:25:63:8c:2f:ac:18:03:0d:42:86:1f:36:b1:6e:2c:b0:
93:f9:d4:05:ef:a4:43:2e:14:67:28:44:cb:7d:ba:8f:1c:75:
25:a6:e5:ca:3b:f1:85:46:82:97:8e:2c:98:59:c9:d3:7a:61:
a0:b5:07:13:e5:a7:d3:aa:44:48:34:15:8b:a1:2c:36:ca:3f:
2f:55:c5:c2:49:c9:43:45:a6:81:23:76:8b:27:99:71:ef:a5:
64:f4:df:7e:2d:8f:7c:da:4b:cb:48:b1:3f:0f:9b:47:2a:c3:
5b:59:58:a4:ee:06:dd:59:e8:d9:33:f2:0b:4f:12:e7:4f:72:
b9:b6:2c:44:f2:40:28:f5:a1:12:69:af:e6:dc:ce:28:ed:04:
e2:65:db:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:55 2025 by rpki-client on console.sobornost.net