Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/b41ab6-b9f3-4b4a-9b7b-1ed10954bd96/1/UYmWVLGRErvvcCoHfdxSU66nIxo.roa
File: UYmWVLGRErvvcCoHfdxSU66nIxo.roa (raw, json)
Hash identifier: V8FOEFiOEIfQk+veJ/jvCVXk8d+AhGzF9HKVguQizQM=
Subject key identifier: 51:89:96:54:B1:91:12:BB:EF:70:2A:07:7D:DC:52:53:AE:A7:23:1A
Certificate issuer: /CN=5753c06290a371994d7577318685f5bc4a538d47
Certificate serial: 0193F95F6716D4CD995D73EA8AAD33532207
Authority key identifier: 57:53:C0:62:90:A3:71:99:4D:75:77:31:86:85:F5:BC:4A:53:8D:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V1PAYpCjcZlNdXcxhoX1vEpTjUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/b41ab6-b9f3-4b4a-9b7b-1ed10954bd96/1/UYmWVLGRErvvcCoHfdxSU66nIxo.roa
Signing time: Tue 24 Dec 2024 15:53:19 +0000
ROA not before: Tue 24 Dec 2024 15:53:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3549
IP address blocks: 158.172.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f9:5f:67:16:d4:cd:99:5d:73:ea:8a:ad:33:53:22:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5753c06290a371994d7577318685f5bc4a538d47
Validity
Not Before: Dec 24 15:53:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51899654b19112bbef702a077ddc5253aea7231a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c8:6a:07:88:f0:e8:76:ba:20:28:ef:47:f7:
e1:7c:ac:d3:94:32:1e:a0:b1:93:a9:59:a9:aa:26:
1c:a2:08:8e:d0:bf:d3:aa:43:0b:0b:73:c4:21:60:
a9:69:7d:14:e5:71:56:0a:22:7e:de:73:85:e1:ca:
18:ae:53:d7:88:f5:5f:f4:48:b0:0b:cd:66:e5:ed:
fc:aa:81:6c:82:1d:53:34:dc:8b:79:62:6e:2e:ec:
e0:4b:e1:01:16:7d:1c:56:a8:d8:eb:a2:45:72:42:
f6:19:04:ca:0a:6d:60:d9:c1:c8:80:cc:84:7f:19:
b6:8a:ed:d8:d0:82:ee:2d:0a:84:5d:0e:21:19:ec:
a5:86:10:bd:12:f9:9e:06:9f:d5:e8:70:1e:ed:6c:
f0:6b:7c:75:58:4b:a6:03:4e:9a:c8:e8:3e:a4:49:
d0:6b:6a:46:c2:e2:d7:4e:38:0f:8d:29:34:b1:b2:
dd:f7:7d:85:ff:b4:1f:91:22:3f:2e:4f:fb:c4:45:
9c:c7:e6:b8:0d:54:62:e4:a3:f8:a8:48:49:30:e4:
c8:a4:df:b2:c4:c0:8b:72:e9:26:f3:40:b0:8a:fd:
7b:5f:00:59:82:5a:af:e3:5b:24:ee:5a:da:6a:a4:
96:ee:7f:f7:b3:1c:89:b0:10:9d:b2:33:47:1d:14:
d8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:89:96:54:B1:91:12:BB:EF:70:2A:07:7D:DC:52:53:AE:A7:23:1A
X509v3 Authority Key Identifier:
keyid:57:53:C0:62:90:A3:71:99:4D:75:77:31:86:85:F5:BC:4A:53:8D:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V1PAYpCjcZlNdXcxhoX1vEpTjUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/b41ab6-b9f3-4b4a-9b7b-1ed10954bd96/1/UYmWVLGRErvvcCoHfdxSU66nIxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/b41ab6-b9f3-4b4a-9b7b-1ed10954bd96/1/V1PAYpCjcZlNdXcxhoX1vEpTjUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.172.222.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:1a:0c:eb:85:b6:53:bc:ae:47:62:ba:48:20:35:ff:76:0a:
99:e8:08:69:80:a6:ac:fe:32:51:40:15:52:44:83:a0:b7:9f:
92:83:fb:8a:99:4e:04:75:14:0e:af:fc:32:f7:73:e9:d4:26:
a4:1d:9c:83:07:7c:3d:55:45:0d:d2:d2:ff:12:8f:bd:20:00:
dc:cb:6c:b4:9e:d4:1d:a1:d3:87:7b:d6:75:9d:85:96:42:b0:
37:b8:30:1c:e1:c3:03:6f:52:27:4a:23:1d:0b:e9:71:e4:f1:
60:1b:e1:98:a1:98:8c:05:a9:6e:85:03:da:cb:a8:d6:22:53:
a5:80:c2:28:58:2e:f4:84:15:f9:63:48:10:07:27:4d:e5:60:
8d:49:37:fd:c4:3e:b8:df:3a:13:cb:e6:2c:ed:0c:a9:c7:60:
0e:b5:b9:8f:e0:fd:ff:2d:12:ba:08:ed:e0:24:ec:c1:96:4e:
d5:fd:95:f8:64:3e:05:ac:31:f3:d1:d3:37:ec:0d:c5:ea:f7:
6b:8e:52:42:66:ef:93:f4:76:34:e7:ac:02:12:67:6a:6f:1a:
f0:1c:8f:72:67:ce:5f:0e:ea:e5:48:5c:a6:e4:6d:08:f2:b0:
15:da:8c:58:7e:c8:19:5e:ea:b8:c2:59:c7:a3:86:96:58:e0:
c8:5a:ed:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:18 2024 by rpki-client on console.sobornost.net