Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/UIaZc8wBjG2Ukb7QQK2edPVr1w0.roa
File: UIaZc8wBjG2Ukb7QQK2edPVr1w0.roa (raw, json)
Hash identifier: 1V3O3cIFEBrBBDoRBShKiq7sDNHkELB/+/Ra8ljr26o=
Subject key identifier: 50:86:99:73:CC:01:8C:6D:94:91:BE:D0:40:AD:9E:74:F5:6B:D7:0D
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 019368877D46EBFED16EBAA92739BFD49615
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/UIaZc8wBjG2Ukb7QQK2edPVr1w0.roa
Signing time: Tue 26 Nov 2024 12:52:10 +0000
ROA not before: Tue 26 Nov 2024 12:52:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35372
IP address blocks: 85.133.218.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:87:7d:46:eb:fe:d1:6e:ba:a9:27:39:bf:d4:96:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Nov 26 12:52:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50869973cc018c6d9491bed040ad9e74f56bd70d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:60:cd:0b:25:92:f1:cf:4d:67:b3:3c:5e:c7:
5e:65:cc:39:2e:8f:07:ee:61:84:1d:3b:18:ff:f4:
8d:ab:a5:7a:6e:81:b0:1b:dc:bd:11:a3:93:5e:e1:
8a:88:a6:ce:90:e8:14:3c:ed:9d:ca:4b:1f:35:84:
dd:b4:7b:4b:5e:8d:41:de:a0:07:20:db:82:7a:3c:
0e:5e:b8:eb:5a:15:57:60:2a:ae:71:e7:d2:65:20:
43:a8:ef:a5:49:b7:32:b2:f3:dd:23:f9:37:c3:54:
d1:88:31:06:7e:90:08:0c:f3:1d:a1:bd:61:92:de:
1e:44:20:5c:c6:cf:d1:a6:0b:1f:99:a5:29:25:23:
ef:5e:42:8b:4a:cb:4f:fc:d5:d1:9b:71:f0:4e:00:
2c:89:44:39:7b:ef:bb:a7:a7:02:20:2f:40:07:b7:
8b:13:75:08:31:90:5d:09:b2:07:e0:a5:84:e3:fe:
e6:06:ef:89:71:13:38:90:30:21:cb:e7:93:42:b2:
c2:e1:e2:e3:54:43:4f:e3:cc:4e:7e:76:c9:e8:75:
ff:a7:7f:34:68:a2:48:e3:11:42:2d:92:1a:c3:56:
16:fd:c6:15:4e:cc:c3:9c:c9:fb:86:95:b3:dd:0f:
05:0f:ae:2b:68:a9:34:b4:d4:bb:44:6c:8a:84:0d:
eb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:86:99:73:CC:01:8C:6D:94:91:BE:D0:40:AD:9E:74:F5:6B:D7:0D
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/UIaZc8wBjG2Ukb7QQK2edPVr1w0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.218.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:9b:91:35:60:c9:ed:bd:21:08:7c:5d:e7:ef:41:eb:f6:08:
07:17:bf:bc:b7:b0:19:73:e8:06:73:8a:ba:52:d0:54:11:b2:
68:bb:74:c1:ac:75:64:ab:30:14:cf:5b:b1:0a:9c:72:f7:18:
4a:74:78:2d:f2:3d:10:e8:11:c9:46:12:8f:44:33:ed:5b:ed:
93:3e:80:89:90:ec:8e:15:cf:06:83:6c:45:46:61:96:7a:51:
e4:d2:44:dc:31:a6:f8:3d:ac:a2:91:49:13:b2:55:a0:8f:85:
12:59:d6:34:e0:5f:b0:08:bb:2e:a2:9b:fa:ce:5b:f9:6c:fd:
1e:1e:cb:a0:b9:96:90:2d:46:1e:e5:d5:8e:07:27:35:a4:87:
32:ee:4e:28:87:15:5a:55:b3:a7:5b:89:6f:ac:3c:4a:5b:68:
28:03:27:9d:f4:02:34:9b:be:b2:fd:42:1b:83:2c:3b:8e:4f:
be:7d:4e:83:10:84:00:7c:c1:3e:ec:8c:37:98:64:be:d8:b0:
ba:7f:ea:95:f1:23:61:e1:19:bf:aa:02:00:68:32:8b:ab:62:
7c:97:a4:69:99:61:f3:c9:08:fb:fa:21:9e:0f:a7:ac:4a:f6:
a2:15:09:e5:d0:e3:b2:5b:7f:f3:43:f3:41:82:8b:f4:38:fb:
35:55:ee:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:24 2024 by rpki-client on console.sobornost.net