Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/gMTF0oKWsUEYJzwqQ84lHlF8ujc.roa
File: gMTF0oKWsUEYJzwqQ84lHlF8ujc.roa (raw, json)
Hash identifier: UCDIpBNOyEgePC52HawTqGWuBglBiMVLbda32E1O7iA=
Subject key identifier: 80:C4:C5:D2:82:96:B1:41:18:27:3C:2A:43:CE:25:1E:51:7C:BA:37
Certificate issuer: /CN=4268a4cfb6b1b6447da93833321dd315061193d4
Certificate serial: 0193BBC2BF1EC7143B4CC9464CA9D34CD2BD
Authority key identifier: 42:68:A4:CF:B6:B1:B6:44:7D:A9:38:33:32:1D:D3:15:06:11:93:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/gMTF0oKWsUEYJzwqQ84lHlF8ujc.roa
Signing time: Thu 12 Dec 2024 16:45:22 +0000
ROA not before: Thu 12 Dec 2024 16:45:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8648
IP address blocks: 185.105.252.0/24 maxlen: 24
185.105.253.0/24 maxlen: 24
2a06:3a80:200::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bb:c2:bf:1e:c7:14:3b:4c:c9:46:4c:a9:d3:4c:d2:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4268a4cfb6b1b6447da93833321dd315061193d4
Validity
Not Before: Dec 12 16:45:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80c4c5d28296b14118273c2a43ce251e517cba37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:13:1f:90:85:3b:aa:fd:8e:58:ff:dc:94:68:
de:e7:33:30:6f:65:08:84:2e:b8:de:14:e9:6c:88:
ba:40:37:ca:ff:82:80:d5:c0:fa:ad:8a:ef:33:87:
0e:3b:e1:6a:a8:98:5e:a8:49:b9:96:78:a8:b6:50:
28:1e:eb:42:67:26:1f:b6:3e:ba:98:e8:21:63:46:
05:c0:e5:b7:04:4e:3f:61:44:4f:c2:ff:11:51:cb:
42:7a:2e:4a:1a:f5:08:36:85:5d:25:89:a9:4c:dc:
3d:d8:be:00:6a:9d:bc:3b:01:ff:ee:35:a8:c8:3b:
0c:4f:0f:82:fa:92:06:e5:e7:13:bb:57:53:2e:4d:
20:cd:2e:51:f0:0a:9c:b9:98:93:1b:eb:23:5f:bc:
70:24:79:b5:ab:98:e6:08:2d:41:29:4b:37:90:16:
50:53:9b:24:d8:a8:c4:59:85:89:ca:14:cb:3a:e3:
d8:c9:fd:f7:f1:5e:99:b5:4b:0b:f0:4a:43:29:b9:
51:64:ad:ae:3d:3d:6e:78:37:b3:5a:e2:37:28:fa:
6e:96:0a:28:98:43:f0:c1:23:a3:10:76:4d:99:ad:
0a:a8:bb:05:e0:ec:8d:6a:65:4e:b3:dd:b8:49:9a:
f3:3c:c8:65:fb:47:7e:1e:ed:e0:31:a9:b7:0b:5d:
57:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C4:C5:D2:82:96:B1:41:18:27:3C:2A:43:CE:25:1E:51:7C:BA:37
X509v3 Authority Key Identifier:
keyid:42:68:A4:CF:B6:B1:B6:44:7D:A9:38:33:32:1D:D3:15:06:11:93:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/gMTF0oKWsUEYJzwqQ84lHlF8ujc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/Qmikz7axtkR9qTgzMh3TFQYRk9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.252.0/23
IPv6:
2a06:3a80:200::/40
Signature Algorithm: sha256WithRSAEncryption
34:c6:54:56:74:16:da:f1:37:de:71:64:00:a9:35:e2:96:11:
1f:da:19:0d:4a:6c:7a:ef:0a:a5:73:c5:48:f6:0f:cf:34:a8:
a1:02:73:71:62:7d:cc:45:70:85:3f:40:38:f5:43:cb:fe:85:
4c:7f:0a:42:bf:48:76:3a:d4:b2:0a:37:fc:9d:17:d3:b4:9b:
94:3f:4c:60:3b:01:63:8c:04:a9:30:b9:7a:de:45:e5:a9:ff:
02:06:18:9a:17:8c:40:78:0f:cf:52:f1:d5:ea:6a:aa:e7:3d:
36:f7:92:1f:3a:50:f3:6d:e9:49:da:5b:a4:bb:69:92:38:55:
eb:8c:a9:cd:1e:9e:8d:cf:60:a2:13:48:e6:ca:06:67:9f:e2:
42:7a:60:9d:81:a0:4b:0d:00:29:e7:fc:ea:5a:b4:f0:41:b5:
09:df:e0:a7:9f:55:35:bd:86:fc:f0:1f:95:47:77:e9:b9:0e:
41:24:30:d6:21:df:12:35:ec:b7:40:a0:dc:ad:eb:fa:e9:d3:
0d:59:a1:91:ec:c0:14:0b:22:18:b1:29:a8:ff:ce:ee:57:c1:
83:7f:00:cb:43:5b:65:e6:a7:8e:b0:48:ce:db:26:01:e1:56:
86:22:b6:27:58:fd:76:84:a6:cc:31:04:b5:f0:ea:92:d9:c2:
44:69:7e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:29 2024 by rpki-client on console.sobornost.net