Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2f7a6e-e8c1-4f62-95f9-64bfb79900d6/1/Ci_XmwBHbYzjLdCManUpjNn-u9U.roa
File: Ci_XmwBHbYzjLdCManUpjNn-u9U.roa (raw, json)
Hash identifier: D0p89km8nCHO0S2LjSnx4yNOodvwtA6XaQOg+6BSeVg=
Subject key identifier: 0A:2F:D7:9B:00:47:6D:8C:E3:2D:D0:8C:6A:75:29:8C:D9:FE:BB:D5
Certificate issuer: /CN=4020f4d4c7528d8a827ec724918fe2df534bd905
Certificate serial: 018EA077F5EEEC6896676EE2F0B337249123
Authority key identifier: 40:20:F4:D4:C7:52:8D:8A:82:7E:C7:24:91:8F:E2:DF:53:4B:D9:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCD01MdSjYqCfsckkY_i31NL2QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2f7a6e-e8c1-4f62-95f9-64bfb79900d6/1/Ci_XmwBHbYzjLdCManUpjNn-u9U.roa
Signing time: Tue 02 Apr 2024 20:20:00 +0000
ROA not before: Tue 02 Apr 2024 20:20:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199760
IP address blocks: 185.115.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a0:77:f5:ee:ec:68:96:67:6e:e2:f0:b3:37:24:91:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4020f4d4c7528d8a827ec724918fe2df534bd905
Validity
Not Before: Apr 2 20:20:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a2fd79b00476d8ce32dd08c6a75298cd9febbd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8e:36:3c:f8:92:5d:6c:0a:06:9a:92:51:b0:
e7:8e:41:b7:f3:90:99:0b:a2:eb:3b:61:dc:09:b8:
36:71:31:0a:44:02:55:c8:bd:fa:14:63:f2:fc:a2:
42:f8:4d:b5:d5:ad:49:66:2f:af:ae:df:10:60:1f:
e9:92:54:1a:6f:a8:91:b2:17:0f:96:7e:a3:77:9c:
8f:79:77:9b:5a:e8:f5:c7:77:b2:39:7a:d6:39:60:
a3:e2:83:02:14:b1:e6:74:5d:06:3a:01:6b:8d:a2:
33:07:6a:89:32:96:85:f8:f6:36:b7:68:df:0a:2c:
3c:43:f0:84:2b:87:35:19:e2:84:3f:70:53:87:b6:
5e:4f:94:31:ee:93:fa:7c:cc:80:86:09:ce:50:3b:
7c:9f:27:10:d5:5e:03:c4:9a:61:b8:cd:80:89:75:
07:e9:f6:2e:3b:0b:75:9f:40:4d:7e:7c:73:e3:c2:
88:5d:61:b7:ef:f8:ea:d1:81:2d:6a:7e:fb:50:b9:
a1:54:e4:51:c3:3d:24:d7:cf:57:9b:7c:11:ef:11:
21:96:81:04:df:da:92:b6:a2:ea:70:29:15:77:b8:
25:7d:fb:7b:2a:5d:c5:30:27:ef:8f:7b:7d:cb:83:
eb:36:07:64:c5:0a:cc:9b:f1:fc:0c:f1:cd:68:72:
60:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:2F:D7:9B:00:47:6D:8C:E3:2D:D0:8C:6A:75:29:8C:D9:FE:BB:D5
X509v3 Authority Key Identifier:
keyid:40:20:F4:D4:C7:52:8D:8A:82:7E:C7:24:91:8F:E2:DF:53:4B:D9:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCD01MdSjYqCfsckkY_i31NL2QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2f7a6e-e8c1-4f62-95f9-64bfb79900d6/1/Ci_XmwBHbYzjLdCManUpjNn-u9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2f7a6e-e8c1-4f62-95f9-64bfb79900d6/1/QCD01MdSjYqCfsckkY_i31NL2QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.160.0/24
Signature Algorithm: sha256WithRSAEncryption
af:c4:c0:ee:85:ac:cd:de:bd:a5:fd:5b:2f:7c:ae:69:07:35:
c0:ce:07:05:57:0a:df:ed:d9:4c:37:2c:bc:c7:88:0c:d8:6c:
40:55:ae:db:cc:d4:37:02:f5:23:aa:30:10:a9:9d:2d:2c:47:
b0:05:74:e5:e0:d9:ad:66:14:c0:f6:2b:17:b5:7d:19:e1:35:
27:d8:27:0a:9e:b5:66:fa:d4:fd:e1:a0:f1:3b:fa:55:12:50:
b3:b1:96:35:a7:41:e1:79:38:01:7d:25:26:6a:2b:4a:04:be:
bd:a3:74:a0:0d:a3:3a:a6:e7:06:38:8c:cc:9f:ae:cc:b9:22:
f9:97:0e:ef:cd:28:82:37:eb:9c:f2:c1:92:4d:21:6b:06:f0:
9e:03:41:a9:cc:d9:7a:bb:ba:00:c6:4a:42:cd:77:ee:6d:01:
68:60:bc:ff:25:4f:2c:6f:4a:8e:8e:02:8a:f5:3e:6a:9c:9c:
77:a1:52:1a:fb:d7:13:3d:83:1b:66:8f:a2:ee:6c:3d:38:d2:
c7:f9:71:05:1e:83:19:30:31:34:4c:7d:27:93:35:73:1a:6d:
f3:ab:68:6d:ca:05:c3:f3:4a:d1:ff:d2:cb:52:3c:b4:78:2d:
9b:d6:1b:3a:bc:84:5d:71:ef:ca:96:c4:c5:23:72:b8:9e:e1:
09:df:d6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:54:28 2024 by rpki-client on console.sobornost.net