Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/UI2k-4P1zCF9N1lyY6jycd95XPc.roa
File: UI2k-4P1zCF9N1lyY6jycd95XPc.roa (raw, json)
Hash identifier: j8PdgIEIRyBzeNltR2T+k5KEW5McF02v/pjyoZolYkM=
Subject key identifier: 50:8D:A4:FB:83:F5:CC:21:7D:37:59:72:63:A8:F2:71:DF:79:5C:F7
Certificate issuer: /CN=4c9554c840b2fad265ecd793304a36e563268e2a
Certificate serial: 018570CC0CC9AD1A4C70D891DED086269B25
Authority key identifier: 4C:95:54:C8:40:B2:FA:D2:65:EC:D7:93:30:4A:36:E5:63:26:8E:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJVUyECy-tJl7NeTMEo25WMmjio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/UI2k-4P1zCF9N1lyY6jycd95XPc.roa
Signing time: Mon 02 Jan 2023 04:44:58 +0000
ROA not before: Mon 02 Jan 2023 04:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 45.86.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cc:0c:c9:ad:1a:4c:70:d8:91:de:d0:86:26:9b:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c9554c840b2fad265ecd793304a36e563268e2a
Validity
Not Before: Jan 2 04:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=508da4fb83f5cc217d37597263a8f271df795cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:48:8d:bd:52:91:9a:1b:87:b8:c0:3c:89:e8:
16:95:78:11:aa:11:f4:39:31:ac:9c:26:09:b8:b4:
b7:a1:a0:c6:07:53:ad:41:72:e0:12:57:bc:56:82:
bc:5c:06:46:65:a5:55:19:d5:62:43:c5:a3:7f:74:
82:1d:39:1b:cd:32:02:0a:2c:6b:5a:8f:ee:78:66:
81:04:a3:6d:64:55:70:ae:f9:27:11:53:a9:74:0e:
11:0a:56:d5:bc:42:48:8c:ac:d2:b7:2c:e2:28:57:
8f:a9:79:cd:0f:ac:90:61:18:49:ef:37:07:33:19:
56:72:e9:05:ad:c9:3c:a2:35:5e:32:d5:ba:0f:1a:
ba:6f:1c:08:fc:5b:bf:4e:b3:77:cf:ff:e3:44:82:
70:f3:a2:a1:ae:47:22:73:79:94:19:e6:68:a6:30:
c3:30:81:24:a5:35:72:ac:4e:1e:e0:54:25:56:d3:
5f:4d:92:5c:e2:fd:83:ee:3f:aa:37:6a:91:a1:cb:
ba:1a:98:6c:55:b1:dc:ba:ac:b4:2e:99:ab:ff:b8:
c0:43:cf:0e:7b:3d:2e:57:7a:d1:99:d1:e5:02:29:
73:cd:25:28:34:71:30:b5:1b:60:e6:3f:2a:41:1e:
f5:f3:7d:bc:46:2c:86:f4:95:e9:d4:df:fd:6b:e5:
9d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8D:A4:FB:83:F5:CC:21:7D:37:59:72:63:A8:F2:71:DF:79:5C:F7
X509v3 Authority Key Identifier:
keyid:4C:95:54:C8:40:B2:FA:D2:65:EC:D7:93:30:4A:36:E5:63:26:8E:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJVUyECy-tJl7NeTMEo25WMmjio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/UI2k-4P1zCF9N1lyY6jycd95XPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/TJVUyECy-tJl7NeTMEo25WMmjio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.37.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:c0:dc:bd:0b:4d:97:c4:9a:90:94:ce:fb:84:c7:f3:6a:7b:
69:30:71:e9:b6:bf:18:df:68:38:e4:14:a4:9e:e7:15:52:f7:
8b:af:c9:28:e8:64:85:51:75:cc:3b:be:62:1b:96:3c:a5:23:
f1:f4:6b:f9:ad:e8:24:a8:5d:92:a4:44:ba:91:ed:c5:bb:61:
87:60:fd:08:d8:ec:a9:09:65:59:50:68:d9:e7:c0:28:31:c7:
f5:12:c0:44:8b:14:09:14:65:e4:61:27:cf:5e:2c:89:56:25:
f9:e6:5b:73:b9:ee:85:59:fd:dd:db:05:5a:0d:d0:b9:13:6c:
87:0b:2f:fa:f2:43:4c:ee:a1:8a:7a:31:c4:e8:2f:2c:4b:2b:
e4:d5:6a:c6:f3:9d:47:a3:85:ad:ee:1f:a3:d9:9e:e7:5f:62:
9a:e8:ee:62:5e:2e:f9:ac:a3:82:a6:72:5a:2a:96:f0:3d:2a:
c3:61:7e:66:a3:32:e0:88:52:f7:6e:28:57:18:e2:25:46:2a:
27:95:8d:e7:34:9d:f5:6e:d2:31:19:bd:56:60:9c:20:ef:a5:
31:68:88:bb:f3:a8:53:03:10:b7:a2:28:d6:38:fe:2a:a3:eb:
4d:91:f6:2f:e7:c2:1c:a4:7d:17:b1:57:9f:c6:84:36:7d:07:
92:b3:bf:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:08 2023 by rpki-client on console.sobornost.net