Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/55229c-e282-4a85-b7a4-8acbfea2ecfa/1/uEHKHGYpS2KvUkesU8pcDof-YA8.roa
File: uEHKHGYpS2KvUkesU8pcDof-YA8.roa (raw, json)
Hash identifier: 0K5xoA85UHkcMnN3W22ATj/hyZFWzrQ7V/CmhuM4D7Y=
Subject key identifier: B8:41:CA:1C:66:29:4B:62:AF:52:47:AC:53:CA:5C:0E:87:FE:60:0F
Certificate issuer: /CN=8d4f3f8ba7dcf5894f2f611d7dfab53d4a63c0a9
Certificate serial: 019426D96FEB2B6A90423EE4CCD8DB15DD5C
Authority key identifier: 8D:4F:3F:8B:A7:DC:F5:89:4F:2F:61:1D:7D:FA:B5:3D:4A:63:C0:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jU8_i6fc9YlPL2Edffq1PUpjwKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/55229c-e282-4a85-b7a4-8acbfea2ecfa/1/uEHKHGYpS2KvUkesU8pcDof-YA8.roa
Signing time: Thu 02 Jan 2025 11:49:31 +0000
ROA not before: Thu 02 Jan 2025 11:49:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12324
IP address blocks: 5.201.0.0/17 maxlen: 17
87.246.192.0/19 maxlen: 19
87.246.240.0/20 maxlen: 20
212.182.0.0/18 maxlen: 18
212.182.64.0/20 maxlen: 20
2a04:440::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:6f:eb:2b:6a:90:42:3e:e4:cc:d8:db:15:dd:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d4f3f8ba7dcf5894f2f611d7dfab53d4a63c0a9
Validity
Not Before: Jan 2 11:49:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b841ca1c66294b62af5247ac53ca5c0e87fe600f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3a:63:66:a8:4b:62:04:8a:6b:46:fa:c7:2e:
35:ee:82:0f:bb:10:3f:75:f8:b4:ff:b3:da:54:26:
51:6b:2c:92:0c:b9:a4:70:4a:9f:b0:51:64:78:a9:
cc:3d:09:39:78:d3:84:84:4a:89:11:3c:40:64:5d:
14:41:d9:28:b1:86:ad:65:44:f4:df:c3:d0:f7:ce:
42:18:09:74:94:69:33:ea:9d:6d:e4:f1:3b:bb:b8:
4d:c6:c5:07:3f:19:b0:b1:39:2a:a5:48:45:0b:cb:
b1:ce:4d:22:ea:b0:f5:f7:e1:ff:f0:8e:48:7b:b1:
39:2a:5f:86:bc:e2:39:bc:02:18:17:50:67:d3:f3:
d4:03:48:4d:ff:2e:86:d9:4c:17:76:d8:b5:56:6d:
fb:91:3f:52:4e:cc:5b:c2:e9:4d:9e:23:e9:41:d9:
bb:31:53:62:8d:c1:30:96:7b:0b:16:ee:10:86:b1:
03:56:8b:6b:08:a8:5d:aa:21:4a:c6:24:2a:d8:20:
b9:9d:83:cb:f7:49:6b:bb:ec:3d:97:aa:3a:b0:85:
48:10:cd:52:f1:c8:17:10:67:5b:e3:a9:5f:cc:c5:
26:f7:73:65:f6:d6:bc:c9:bb:2a:2c:1c:7d:95:99:
33:6f:b3:15:54:4a:e2:e4:0a:ae:24:dc:30:e2:9b:
94:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:41:CA:1C:66:29:4B:62:AF:52:47:AC:53:CA:5C:0E:87:FE:60:0F
X509v3 Authority Key Identifier:
keyid:8D:4F:3F:8B:A7:DC:F5:89:4F:2F:61:1D:7D:FA:B5:3D:4A:63:C0:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jU8_i6fc9YlPL2Edffq1PUpjwKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/55229c-e282-4a85-b7a4-8acbfea2ecfa/1/uEHKHGYpS2KvUkesU8pcDof-YA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/55229c-e282-4a85-b7a4-8acbfea2ecfa/1/jU8_i6fc9YlPL2Edffq1PUpjwKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.201.0.0/17
87.246.192.0/19
87.246.240.0/20
212.182.0.0-212.182.79.255
IPv6:
2a04:440::/32
Signature Algorithm: sha256WithRSAEncryption
a8:2b:1e:47:a5:cf:9d:f4:4b:32:e1:2b:8c:41:d7:f3:97:7f:
0f:aa:a9:57:dc:5f:7a:74:9d:8b:67:8d:cd:b5:92:d7:02:21:
2e:1a:2b:f0:07:95:df:1e:8d:5c:b6:c2:ac:79:ff:86:eb:84:
1c:bb:49:ee:12:eb:bc:bf:df:8b:e8:64:b5:af:03:92:11:f5:
d2:57:e7:30:73:a0:e1:b5:a1:8f:40:78:9e:02:33:77:7b:ca:
99:a4:0e:dd:3b:64:1e:1d:cd:ba:b4:ab:64:1e:47:7e:47:dd:
a4:95:3e:9f:ae:6c:5f:3f:79:3f:6c:29:6e:79:6d:b6:76:c9:
20:76:66:01:01:66:a0:c2:10:05:b2:24:5d:36:52:5c:cc:2d:
f0:b0:39:28:c4:75:7e:97:d8:7b:a8:ca:33:ac:ae:26:e1:c5:
66:3a:e7:2f:c4:3b:be:44:63:c0:5a:7d:a6:90:96:f9:00:79:
97:06:c3:a3:71:67:3a:9b:2b:09:e7:b5:5d:7a:aa:33:a3:49:
3d:81:f2:9e:28:bc:e3:ee:65:fd:8d:ca:03:8b:db:22:3f:bc:
1c:d3:73:66:05:24:66:3e:1d:12:b7:b3:c7:77:11:e1:39:6a:
90:dc:fb:5a:c6:c0:2c:0e:7e:2d:15:bc:2b:29:50:52:1c:2f:
b5:7e:ba:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:16 2025 by rpki-client on console.sobornost.net