Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/uMZV7TjBg2rUNlO8OvMZqXQ8ZvE.roa
File: uMZV7TjBg2rUNlO8OvMZqXQ8ZvE.roa (raw, json)
Hash identifier: J0TDOxR619AjKUE1qqbmN5Rsy6xplJsQ/S/cDpoeP40=
Subject key identifier: B8:C6:55:ED:38:C1:83:6A:D4:36:53:BC:3A:F3:19:A9:74:3C:66:F1
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 0182651667E57EE62C1BE59C4F1703A20D08
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/uMZV7TjBg2rUNlO8OvMZqXQ8ZvE.roa
Signing time: Wed 03 Aug 2022 19:02:23 +0000
ROA not before: Wed 03 Aug 2022 19:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16262
IP address blocks: 45.8.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:65:16:67:e5:7e:e6:2c:1b:e5:9c:4f:17:03:a2:0d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Aug 3 19:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8c655ed38c1836ad43653bc3af319a9743c66f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:14:c9:3b:3e:d3:b3:00:7c:43:84:6d:24:42:
a0:61:23:6b:d0:a4:6d:55:9c:b9:e0:a1:8b:51:77:
89:3a:f8:d5:a4:32:aa:e4:7e:da:83:33:df:bf:20:
3d:c2:84:93:aa:f4:52:17:db:aa:1e:53:52:37:8f:
82:19:ce:36:b4:e9:bc:c7:72:98:09:66:3f:bf:61:
b8:e4:e8:1e:ae:7d:cd:80:b3:45:c0:53:ec:5a:21:
a1:77:d2:7e:53:a5:14:e5:5f:95:dd:80:20:1a:b5:
f9:8c:0e:f8:4e:7d:d5:94:63:17:b9:fd:00:a0:75:
12:03:c4:24:a5:93:bb:bc:00:e2:09:bf:a6:af:f8:
9b:5f:50:1e:3b:da:f1:84:c5:19:21:16:dd:62:40:
b2:26:5a:6b:98:35:fb:e9:68:88:bb:62:b2:a3:c3:
32:00:68:f0:9a:54:7d:7b:55:fa:28:3f:9c:74:8f:
8c:5f:97:de:a4:97:82:e2:f6:0d:19:cf:42:f2:5a:
84:b0:39:b1:d9:62:15:3a:b0:2f:b0:84:da:85:03:
4b:c3:b1:d2:c3:e3:1f:66:0d:b4:b5:75:45:2a:b6:
b0:1c:9e:c1:bb:ba:96:47:2a:0d:5c:de:15:82:35:
73:2d:40:3d:49:95:1d:98:f2:8a:20:76:08:45:9b:
ed:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C6:55:ED:38:C1:83:6A:D4:36:53:BC:3A:F3:19:A9:74:3C:66:F1
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/uMZV7TjBg2rUNlO8OvMZqXQ8ZvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.217.0/24
Signature Algorithm: sha256WithRSAEncryption
29:05:71:5e:c3:78:64:0e:35:43:0b:f4:9e:f9:51:2c:9a:87:
11:0a:d8:b1:9c:e4:db:9c:2f:3f:9d:75:73:0a:a2:bc:f5:49:
d8:29:55:a1:61:fa:1d:bd:a5:08:1b:ef:93:d5:3b:d5:68:3b:
99:6c:e7:f0:cb:b1:23:1b:0c:6b:7e:ab:27:54:97:03:3f:31:
6c:fa:2d:0b:fe:af:d6:55:6e:a5:7c:00:32:02:7d:23:8b:24:
2a:63:4d:30:7e:65:80:f7:a8:07:70:f6:3f:83:a7:d5:2e:d4:
a6:0f:20:0a:51:e8:b9:15:97:16:9f:16:71:c4:c1:bf:73:81:
2f:73:e7:f0:95:50:5d:72:ce:52:cb:dd:8f:c8:ca:86:0a:5e:
04:e6:55:38:09:9e:d5:15:b3:1d:a7:2d:60:9b:ee:b0:37:dc:
24:f0:8b:88:fc:dc:7d:e3:23:2f:f5:7a:c1:f0:c2:a1:87:11:
54:71:0e:f2:78:45:fb:d7:c3:79:18:d5:c2:a4:26:4a:3c:b7:
00:9a:c8:8e:bb:d6:c0:29:b8:c6:44:f5:64:35:8e:79:ff:f6:
68:90:14:c9:7e:39:02:fd:14:b9:fe:29:42:ea:5d:a7:d4:33:
2a:71:2f:8b:e0:47:9d:bd:7e:e7:b2:09:fa:08:c1:22:4c:11:
4c:9c:af:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:39 2023 by rpki-client on console.sobornost.net