Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b94242-cfd8-47b2-b00d-aac0befff4b6/1/UEbySIL2Q5CGqPKB1WfQXjzjWZs.roa
File: UEbySIL2Q5CGqPKB1WfQXjzjWZs.roa (raw, json)
Hash identifier: L2l2Y0cRFYHChRPQbEq9EVZxR80qO+/Shw2uAzoQyHQ=
Subject key identifier: 50:46:F2:48:82:F6:43:90:86:A8:F2:81:D5:67:D0:5E:3C:E3:59:9B
Certificate issuer: /CN=b98b79836afe75370a680bb136c1b99bc88d4519
Certificate serial: 01856F4B6A164C4A4991FD26AAA61C02DEF0
Authority key identifier: B9:8B:79:83:6A:FE:75:37:0A:68:0B:B1:36:C1:B9:9B:C8:8D:45:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uYt5g2r-dTcKaAuxNsG5m8iNRRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b94242-cfd8-47b2-b00d-aac0befff4b6/1/UEbySIL2Q5CGqPKB1WfQXjzjWZs.roa
Signing time: Sun 01 Jan 2023 21:44:51 +0000
ROA not before: Sun 01 Jan 2023 21:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 195.191.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:6a:16:4c:4a:49:91:fd:26:aa:a6:1c:02:de:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b98b79836afe75370a680bb136c1b99bc88d4519
Validity
Not Before: Jan 1 21:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5046f24882f6439086a8f281d567d05e3ce3599b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0c:67:0d:2e:c4:5a:79:0f:b2:87:2f:52:07:
d0:be:f6:26:ac:16:80:07:1d:3d:b6:10:00:68:84:
92:d0:df:48:a0:f1:8f:d0:4e:60:14:c2:c6:56:9d:
7a:5d:a3:d6:b7:2a:1d:aa:ea:73:1b:fd:fc:20:75:
0b:90:23:78:50:6c:a3:92:b2:7b:2b:99:b1:62:7f:
7d:49:c9:18:91:e4:2d:19:94:c0:c6:a9:ce:dd:93:
4f:dc:4f:c0:60:3c:fa:9a:6d:f0:f9:d3:17:11:6f:
8c:b4:07:5b:4f:6a:74:5e:0c:4a:7f:76:d7:28:ae:
26:b1:74:b0:3b:82:24:0c:1f:05:b8:9c:a8:b6:88:
2a:de:4a:a3:7a:86:41:00:35:c4:71:7d:b9:9b:e1:
d6:56:16:e6:f4:d4:0d:0a:06:9e:69:13:14:52:00:
64:be:09:0a:9d:12:79:e3:06:eb:7f:d1:bb:dd:1d:
e2:38:1d:69:e2:e0:17:bd:80:41:0d:fa:e6:7a:67:
4e:75:07:ae:7b:a9:48:0d:be:59:63:de:e0:d5:d5:
04:f8:64:3f:b4:34:17:ba:fc:df:c4:a9:7b:87:a9:
e5:dc:16:87:2f:b5:dc:1e:d3:52:fb:fb:e9:ec:c1:
1b:f3:ae:13:6e:62:83:5c:cd:5e:6c:0c:9f:86:52:
ae:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:46:F2:48:82:F6:43:90:86:A8:F2:81:D5:67:D0:5E:3C:E3:59:9B
X509v3 Authority Key Identifier:
keyid:B9:8B:79:83:6A:FE:75:37:0A:68:0B:B1:36:C1:B9:9B:C8:8D:45:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uYt5g2r-dTcKaAuxNsG5m8iNRRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b94242-cfd8-47b2-b00d-aac0befff4b6/1/UEbySIL2Q5CGqPKB1WfQXjzjWZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b94242-cfd8-47b2-b00d-aac0befff4b6/1/uYt5g2r-dTcKaAuxNsG5m8iNRRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.231.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:3d:fe:6c:5a:6f:22:58:48:b9:5a:e0:1c:58:90:a7:fc:74:
08:19:4f:33:52:26:36:cd:6a:96:8b:0a:a5:0b:25:23:f5:63:
c9:60:9c:5a:fd:45:01:e8:02:e8:d1:cd:af:f2:8b:98:99:f6:
28:63:4e:85:f7:ca:51:c2:05:06:fe:97:13:9d:7c:2f:d6:e7:
47:4b:e9:0d:89:fa:d5:5c:6d:33:5a:94:c3:85:c6:24:dd:69:
30:37:9a:33:de:d0:71:c1:fd:bc:bf:dd:60:ae:7e:ed:18:f6:
8f:ec:1c:32:8d:2a:ce:c0:92:1d:25:83:ff:f5:a2:95:e9:5e:
56:71:72:2d:be:63:a9:69:7d:0e:13:7c:bb:fc:ff:cd:e8:fe:
6f:47:5f:3d:16:aa:6f:05:20:4c:dc:77:ed:a0:f8:39:14:be:
49:79:df:50:c7:10:d3:18:ea:73:de:7a:ce:f6:fe:01:02:b8:
0c:8f:0c:c5:59:9e:20:2a:72:f5:20:4a:0f:76:e7:db:fd:52:
8c:0c:3b:7b:c2:75:af:5a:a9:91:37:82:7e:30:a5:dd:25:a3:
97:09:f7:63:14:80:ea:72:d4:1c:14:36:ef:53:3a:32:16:a2:
a7:4f:8c:0b:b3:d2:97:80:91:cf:34:60:7c:07:b2:a4:b4:b9:
fd:52:67:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:35 2025 by rpki-client