Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/UcxMUXASuR4D_Me1yja4HKZHNSY.roa
File: UcxMUXASuR4D_Me1yja4HKZHNSY.roa (raw, json)
Hash identifier: fe/HQnWkliTJV6jzgR76NlUbuceNdO262ocmHbFrPQk=
Subject key identifier: 51:CC:4C:51:70:12:B9:1E:03:FC:C7:B5:CA:36:B8:1C:A6:47:35:26
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 018CB2174385FB5EF5FF967A25ACBBE75304
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/UcxMUXASuR4D_Me1yja4HKZHNSY.roa
Signing time: Thu 28 Dec 2023 20:21:58 +0000
ROA not before: Thu 28 Dec 2023 20:21:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 91.217.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b2:17:43:85:fb:5e:f5:ff:96:7a:25:ac:bb:e7:53:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Dec 28 20:21:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51cc4c517012b91e03fcc7b5ca36b81ca6473526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f8:9d:9a:2f:83:4b:11:bd:da:e0:47:9b:87:
7e:0f:b2:61:3b:f0:eb:d1:59:0c:f8:42:9b:42:83:
4e:a9:55:02:a1:14:82:e4:ca:c6:1c:29:43:71:84:
65:b4:11:79:13:52:5e:83:c9:87:78:cb:64:52:4c:
22:17:5d:29:bb:48:ec:06:46:68:65:62:a5:d7:eb:
90:e8:54:39:2a:7c:04:29:47:60:fc:e5:1b:82:e4:
cb:90:4d:a0:02:b8:7b:9e:67:69:6a:83:1a:80:79:
76:c6:15:df:f6:23:e4:dc:0a:2c:a3:72:3a:ac:74:
ab:29:ce:ca:31:04:d1:d6:9a:45:88:0b:2c:3f:47:
d4:13:94:d2:90:04:3c:bb:e5:cc:12:29:8d:96:c7:
bf:23:97:d1:a6:f1:34:59:9a:21:65:10:50:af:6f:
d4:3d:22:02:3f:d0:48:7f:f3:31:7c:44:48:76:70:
ac:05:ca:01:a0:80:2f:22:3d:fb:d0:24:d3:60:8e:
60:5a:d3:89:21:77:46:bf:13:0a:53:79:ce:8a:9d:
1c:5b:92:37:8b:67:d7:ec:39:61:aa:46:fc:cd:59:
37:70:df:b6:1b:7e:3b:f7:98:ce:d0:b2:9d:dc:1b:
a3:a4:5e:98:fb:ff:af:09:0e:c9:7c:be:37:1e:57:
08:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:CC:4C:51:70:12:B9:1E:03:FC:C7:B5:CA:36:B8:1C:A6:47:35:26
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/UcxMUXASuR4D_Me1yja4HKZHNSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
Signature Algorithm: sha256WithRSAEncryption
41:c4:ab:3a:0b:8e:af:3f:87:62:c9:36:02:26:5f:27:33:17:
58:47:42:52:85:c2:70:b0:f0:cc:5c:08:1b:2f:56:ca:81:50:
47:48:40:42:dd:3b:74:8c:2a:94:c4:96:3c:f7:cd:02:d0:1d:
4f:a7:61:9c:82:46:ed:76:0c:3a:09:ba:e5:3e:d1:c8:c8:3c:
5b:fa:2b:f8:8b:46:e1:f2:71:d5:dd:87:2d:dd:7e:b9:3b:05:
b6:f8:09:0e:f6:31:65:d9:46:90:91:42:c2:a6:c1:21:24:c5:
b3:40:33:68:d4:a8:d2:d0:2d:bd:23:38:13:80:a8:f7:e3:08:
ff:71:ec:3c:5e:c5:b7:60:bc:22:48:6d:45:ea:3e:b2:2f:00:
cf:92:12:2d:07:a3:0a:27:bd:70:e3:53:95:c4:43:eb:19:d6:
3b:4f:6e:79:52:d2:5b:8e:31:8b:34:a7:7a:56:01:b9:2a:f4:
3c:f4:49:bf:71:9c:29:75:5b:a7:96:84:48:94:31:02:6e:f0:
fa:76:e3:f7:3a:71:15:4c:53:ef:b8:e5:51:b5:ff:de:e2:9c:
09:0d:b8:bf:54:f4:f0:2b:a4:ab:74:9f:e7:0a:9d:6c:02:eb:
ca:57:ab:35:51:da:4b:09:19:c2:c3:2f:4a:61:fd:0d:94:c1:
6b:67:95:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:03 2025 by rpki-client