Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/ukrrsTXRSDyMTbDjUD3CrSLCwAk.roa
File: ukrrsTXRSDyMTbDjUD3CrSLCwAk.roa (raw, json)
Hash identifier: oXThLmSmYg5QULxunfT4v1e7m51nSZMb3URa30t576o=
Subject key identifier: BA:4A:EB:B1:35:D1:48:3C:8C:4D:B0:E3:50:3D:C2:AD:22:C2:C0:09
Certificate issuer: /CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Certificate serial: 0183CCC309AA72BB1B713ABA9448E77642F3
Authority key identifier: 2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/ukrrsTXRSDyMTbDjUD3CrSLCwAk.roa
Signing time: Wed 12 Oct 2022 15:14:37 +0000
ROA not before: Wed 12 Oct 2022 15:14:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 80.64.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cc:c3:09:aa:72:bb:1b:71:3a:ba:94:48:e7:76:42:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Validity
Not Before: Oct 12 15:14:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba4aebb135d1483c8c4db0e3503dc2ad22c2c009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fc:a7:9d:05:67:6c:b9:5a:60:0d:d7:13:25:
63:cf:b1:9e:58:0d:55:e3:8d:11:bd:f8:d6:47:72:
b1:4b:db:03:8a:4c:0b:92:26:3c:b2:21:7d:38:53:
c2:f5:ef:11:05:fa:ab:d6:06:25:87:24:cc:e1:4f:
5e:fd:f9:df:da:58:db:c7:a5:df:fb:84:9b:ea:51:
8a:d3:6d:c5:17:e9:4e:34:51:70:0c:4c:97:7e:76:
a4:76:df:31:d4:16:b2:ac:12:a5:2e:10:7d:f7:38:
b9:c7:63:ca:6a:6b:ac:e5:b5:eb:7b:36:bd:2a:81:
9b:45:21:34:00:10:ac:ca:be:73:87:1a:a1:15:75:
85:6f:13:3e:2b:c5:6f:13:14:72:5b:a6:54:27:5a:
36:8b:6c:34:89:6d:3b:48:4e:77:a0:4e:a0:41:6a:
fc:f2:93:dd:1a:73:f2:8a:1e:52:56:dd:36:20:ee:
04:ba:53:33:39:6d:32:e0:2c:17:4b:04:04:2b:22:
f0:60:03:1d:c1:ae:6f:50:8f:38:e1:9a:2a:ed:be:
a1:89:22:2c:1f:de:6c:84:45:80:b8:2b:38:ce:50:
bb:3b:4c:a8:17:05:23:fc:40:c7:62:d0:11:9d:8a:
f1:98:b7:62:86:81:2e:8c:01:b6:4e:a3:ec:fb:a7:
5f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:4A:EB:B1:35:D1:48:3C:8C:4D:B0:E3:50:3D:C2:AD:22:C2:C0:09
X509v3 Authority Key Identifier:
keyid:2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/ukrrsTXRSDyMTbDjUD3CrSLCwAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.27.0/24
Signature Algorithm: sha256WithRSAEncryption
15:55:a0:9d:73:d5:c7:dd:93:fa:0e:e2:71:3a:86:34:2c:80:
33:e2:f3:10:04:bc:b1:8f:99:99:4b:a2:a0:b8:b9:a7:93:63:
d2:d8:85:e9:06:0c:08:1e:6d:41:00:a6:ad:2c:53:51:63:30:
13:a1:b4:e0:72:24:9a:2a:7e:03:2e:7e:85:89:a6:60:0f:9e:
df:8b:e3:f4:1c:78:fa:7f:95:03:47:67:ad:bc:c8:f1:2d:03:
49:9d:92:27:79:74:b5:10:b5:a5:76:b6:b4:50:d7:5d:0c:7f:
30:a6:91:49:34:80:05:e3:dc:93:24:a5:a8:c2:b9:9e:3a:68:
a3:1b:73:62:32:f0:21:92:93:ec:f9:b6:e4:7a:4e:aa:bb:1b:
1e:34:3c:47:24:0e:37:46:5e:4b:db:45:71:b7:ad:b6:9e:d8:
e3:7c:f9:e7:80:9a:d0:1d:3f:41:66:4d:8b:53:bc:c5:f5:5e:
5b:d7:26:f9:0c:90:b8:e8:d5:d0:58:13:63:34:1d:b4:80:e8:
3f:6a:61:2a:bb:d8:6b:4e:dd:94:47:35:91:32:1e:d9:64:c4:
72:21:17:37:56:a9:e3:d2:00:32:fd:dc:9a:72:59:47:14:58:
e8:b9:3c:64:0b:12:80:45:46:59:2f:62:e3:ef:99:b7:d9:6b:
a0:f1:63:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:04 2025 by rpki-client