Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/uKO3HquanWKUmJ90M8YK1DIe1PA.roa
File: uKO3HquanWKUmJ90M8YK1DIe1PA.roa (raw, json)
Hash identifier: XUrZ548wn+DveWLDDAs++NbjxnozKfTkNs4dRtLEX4w=
Subject key identifier: B8:A3:B7:1E:AB:9A:9D:62:94:98:9F:74:33:C6:0A:D4:32:1E:D4:F0
Certificate issuer: /CN=ded8582b0243863c572ce25786ccb36ff795b22e
Certificate serial: 01941F8C29FEB7ECB2519706C18E0A11A6A5
Authority key identifier: DE:D8:58:2B:02:43:86:3C:57:2C:E2:57:86:CC:B3:6F:F7:95:B2:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3thYKwJDhjxXLOJXhsyzb_eVsi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/uKO3HquanWKUmJ90M8YK1DIe1PA.roa
Signing time: Wed 01 Jan 2025 01:47:46 +0000
ROA not before: Wed 01 Jan 2025 01:47:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207123
IP address blocks: 45.142.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:29:fe:b7:ec:b2:51:97:06:c1:8e:0a:11:a6:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ded8582b0243863c572ce25786ccb36ff795b22e
Validity
Not Before: Jan 1 01:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b8a3b71eab9a9d6294989f7433c60ad4321ed4f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:89:b7:e2:4d:78:4f:ef:2e:64:de:f8:e2:9e:
7b:b0:5b:fa:20:f0:db:27:08:b7:8d:01:74:1d:ec:
be:31:75:7d:e8:94:63:4f:54:e1:63:fe:ea:69:69:
ac:84:dc:c8:85:ce:1a:d0:18:13:6f:8f:b5:bc:a3:
14:dd:42:90:09:71:ea:92:f0:18:a6:e4:2e:23:7c:
62:64:1d:70:6e:23:96:11:ed:77:d3:c7:82:97:46:
5a:33:65:3b:09:be:26:9c:fe:29:ad:f8:0b:63:ba:
0e:b3:1d:c3:e3:16:0a:49:73:34:05:fd:dc:f1:58:
25:10:33:93:c6:af:27:45:cc:fb:a2:54:74:c2:33:
4b:72:bb:7f:17:c9:01:b9:43:40:d6:ba:2e:ba:bc:
9f:9d:f0:d1:49:a0:51:8b:a8:6f:cc:e0:5a:3b:b7:
df:52:82:39:cf:c7:9a:fc:24:06:d9:b8:21:d6:03:
7e:5c:57:29:26:da:ba:a4:ad:02:1f:a2:7d:ed:d8:
35:e8:29:4c:99:e7:16:ae:dc:8b:73:05:1b:a1:61:
50:ac:77:23:5a:61:f1:43:af:c4:1a:ad:ef:a3:36:
e3:c4:9d:41:18:32:bb:5b:28:c4:d8:13:95:d7:2c:
1d:ab:87:73:58:a4:3b:10:7e:09:de:22:68:be:fd:
b3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A3:B7:1E:AB:9A:9D:62:94:98:9F:74:33:C6:0A:D4:32:1E:D4:F0
X509v3 Authority Key Identifier:
keyid:DE:D8:58:2B:02:43:86:3C:57:2C:E2:57:86:CC:B3:6F:F7:95:B2:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3thYKwJDhjxXLOJXhsyzb_eVsi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/uKO3HquanWKUmJ90M8YK1DIe1PA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ca510c-b6d1-4eb3-8dd1-498f4c10b655/1/3thYKwJDhjxXLOJXhsyzb_eVsi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.89.0/24
Signature Algorithm: sha256WithRSAEncryption
f0:4c:46:d8:ce:ea:c6:95:a3:b4:25:34:4a:40:15:7e:bd:11:
5c:e7:ad:dc:3c:df:02:7a:7e:3c:d2:75:fe:0e:b2:50:22:dd:
94:df:eb:cf:6b:7c:af:63:0d:82:55:13:14:66:27:8a:3e:c3:
2e:9e:f4:1c:67:94:64:1f:ed:84:a7:90:dc:18:a2:2f:3b:db:
4a:80:29:1e:77:37:4c:2a:a8:19:39:be:52:da:bf:3d:b5:41:
c0:15:81:8d:75:79:21:e8:de:ba:28:7b:55:c7:f2:8c:ab:6c:
49:65:22:28:20:8a:85:30:44:5d:8e:7d:31:c9:58:ab:d6:98:
23:09:f6:03:32:04:11:6a:8f:f1:8c:54:09:60:4b:45:e6:bb:
05:a1:d4:b7:24:fd:3d:05:84:c3:42:bb:a8:e0:b2:bf:9b:76:
4d:7c:f2:6c:79:ec:b1:09:c6:4d:4f:bf:e7:f9:17:b4:14:22:
db:23:34:38:98:f6:b9:a1:62:2c:15:8e:6f:a7:5c:2e:7a:82:
f3:64:45:4e:36:85:a8:04:a6:2a:cd:e2:27:5c:cc:0d:6b:5d:
4b:42:ad:6a:b9:6f:fa:3d:39:1a:b2:ad:d1:be:50:4a:36:a6:
dd:ac:64:25:d4:2b:56:b6:6e:e8:85:38:59:75:41:39:2d:36:
dc:07:36:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:08 2025 by rpki-client on console.sobornost.net