Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/Uu0CRandUCSL8W8uPDLmaWSbRUY.roa
File: Uu0CRandUCSL8W8uPDLmaWSbRUY.roa (raw, json)
Hash identifier: nE+1Qjq0YrZ8QpP89BccBvsvrvrqXs6EPkZZqlrp1Ww=
Subject key identifier: 52:ED:02:45:A9:DD:50:24:8B:F1:6F:2E:3C:32:E6:69:64:9B:45:46
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 0185BF79F626B10596B8C4BB16D4DD79AAF7
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/Uu0CRandUCSL8W8uPDLmaWSbRUY.roa
Signing time: Tue 17 Jan 2023 11:25:19 +0000
ROA not before: Tue 17 Jan 2023 11:25:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28964
IP address blocks: 178.254.164.0/24 maxlen: 24
178.254.166.0/24 maxlen: 24
178.254.160.0/23 maxlen: 24
178.254.162.0/24 maxlen: 24
5.172.32.0/24 maxlen: 24
178.254.167.0/24 maxlen: 24
178.254.178.0/24 maxlen: 24
178.254.174.0/24 maxlen: 24
178.254.173.0/24 maxlen: 24
178.254.182.0/24 maxlen: 24
109.111.255.0/24 maxlen: 24
89.23.94.0/23 maxlen: 23
193.104.68.0/24 maxlen: 24
109.111.242.0/24 maxlen: 24
109.111.241.0/24 maxlen: 24
109.111.249.0/24 maxlen: 24
109.111.251.0/24 maxlen: 24
109.111.247.0/24 maxlen: 24
89.23.64.0/24 maxlen: 24
89.23.66.0/23 maxlen: 23
185.157.45.0/24 maxlen: 24
185.157.46.0/24 maxlen: 24
185.157.47.0/24 maxlen: 24
89.23.72.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:79:f6:26:b1:05:96:b8:c4:bb:16:d4:dd:79:aa:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jan 17 11:25:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52ed0245a9dd50248bf16f2e3c32e669649b4546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:07:1d:51:f3:c3:05:b7:c1:9c:49:46:0d:ae:
e7:fd:b2:11:6e:47:60:60:a5:c6:09:94:72:3c:fa:
8d:b7:48:2c:24:2b:8a:d8:ac:32:c4:46:84:18:91:
9a:b7:2e:2d:ba:66:74:96:dd:6c:46:1b:64:28:0a:
bf:63:1b:f1:cf:47:c3:3e:83:cb:57:d6:9c:24:e0:
0f:5b:0c:c0:1f:31:b8:7c:16:e9:5a:fb:57:86:9d:
1f:fc:de:3d:62:68:ee:43:ee:6e:bc:be:35:bc:39:
56:08:80:29:54:58:cc:44:a1:39:45:86:56:88:fd:
0d:f3:c6:0a:d1:37:d0:71:fe:36:db:91:a1:44:43:
42:d8:83:68:56:c3:77:3e:08:b9:ea:1b:29:d1:e0:
54:0e:d9:f0:98:c6:72:b1:2a:48:e6:01:93:1c:63:
9d:f2:e1:5e:e7:89:6d:5a:c3:6d:78:e5:12:19:34:
0b:ef:2b:5a:3f:bd:70:85:a9:40:8f:c1:72:9c:f9:
f2:f7:a7:0e:40:2d:7e:73:0b:3f:7a:03:ef:4d:73:
93:7d:34:88:c5:54:27:78:62:9e:03:f4:bf:8c:24:
59:e8:7a:c5:5b:1f:ce:3e:df:ed:58:8d:4f:f7:64:
53:b3:ea:c5:fb:0d:cb:8c:4b:34:66:6b:a0:a2:86:
aa:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:ED:02:45:A9:DD:50:24:8B:F1:6F:2E:3C:32:E6:69:64:9B:45:46
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/Uu0CRandUCSL8W8uPDLmaWSbRUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.32.0/24
89.23.64.0/24
89.23.66.0/23
89.23.72.0/23
89.23.94.0/23
109.111.241.0-109.111.242.255
109.111.247.0/24
109.111.249.0/24
109.111.251.0/24
109.111.255.0/24
178.254.160.0-178.254.162.255
178.254.164.0/24
178.254.166.0/23
178.254.173.0-178.254.174.255
178.254.178.0/24
178.254.182.0/24
185.157.45.0-185.157.47.255
193.104.68.0/24
Signature Algorithm: sha256WithRSAEncryption
01:07:67:20:a8:5f:20:cf:83:ec:f0:b3:33:4e:3a:d8:16:8d:
ce:f2:41:ba:39:c1:ff:15:d9:79:3a:d5:a5:33:b9:45:66:46:
22:69:4f:d5:03:d8:51:be:d6:47:07:db:97:37:5a:f1:5d:7e:
3d:3e:27:45:ca:8e:e5:77:47:27:67:e8:a9:36:b7:28:d6:2e:
58:d8:84:17:b5:7c:92:0f:7b:0e:07:15:2e:63:c4:1e:cd:9c:
f1:09:89:17:bd:2a:6f:41:64:99:fa:f4:d6:a7:11:19:ea:8f:
07:34:d4:a2:5c:38:b0:74:72:c5:20:80:f4:2b:bd:c5:b6:d7:
b6:3d:5c:ba:24:49:c4:ff:0c:ec:88:f1:f4:d8:3d:62:05:1b:
1d:87:a0:3a:c6:b9:66:82:73:d0:51:6a:64:7f:0d:83:64:a0:
87:11:00:4a:2f:14:d2:74:ba:fc:91:0f:02:7b:49:12:8a:f0:
49:c2:5a:89:41:23:4a:df:ad:68:f0:ad:28:e1:e0:89:e1:89:
c3:f8:df:ef:29:c4:62:c5:9c:a7:cd:b5:10:c7:58:48:a2:3d:
5a:d3:98:5e:2c:f7:69:c2:02:d6:db:f7:06:35:7f:b9:76:2b:
1b:e2:5d:18:5d:c9:eb:f8:e9:05:f5:22:60:7e:d8:0b:7e:f3:
e1:2e:ec:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net