Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/CRdMefau0Nzu03sXlCDAB5bHx2Q.roa
File: CRdMefau0Nzu03sXlCDAB5bHx2Q.roa (raw, json)
Hash identifier: yFhrAFAjriusSaX/EOrL/UB0PH+f//igLfyCzFCObsQ=
Subject key identifier: 09:17:4C:79:F6:AE:D0:DC:EE:D3:7B:17:94:20:C0:07:96:C7:C7:64
Certificate issuer: /CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Certificate serial: 018D603B5092915C5D9ABA942499C28E385F
Authority key identifier: B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/CRdMefau0Nzu03sXlCDAB5bHx2Q.roa
Signing time: Wed 31 Jan 2024 15:55:16 +0000
ROA not before: Wed 31 Jan 2024 15:55:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33923
IP address blocks: 94.246.128.0/18 maxlen: 32
185.183.236.0/22 maxlen: 32
194.6.246.0/24 maxlen: 32
194.145.184.0/22 maxlen: 32
2a00:1a40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:60:3b:50:92:91:5c:5d:9a:ba:94:24:99:c2:8e:38:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Validity
Not Before: Jan 31 15:55:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09174c79f6aed0dceed37b179420c00796c7c764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:31:63:67:84:e9:30:52:70:e3:bb:50:2f:d8:
42:2c:f3:ae:12:97:29:b1:71:7d:26:cd:b3:ab:4f:
3f:0b:4f:a3:bd:3f:ce:aa:e9:08:d6:55:bb:48:10:
87:68:9e:d9:2d:65:24:01:fd:51:c1:c0:a7:38:ed:
fd:95:9c:b2:d4:88:b5:4a:70:8e:1b:f2:53:2b:fe:
57:04:31:7f:49:dc:8b:e7:46:a4:4f:65:5f:57:cd:
d0:3e:3a:f7:b7:ab:be:86:8c:0b:74:a5:76:20:80:
e4:3c:7a:04:ce:26:41:56:2d:cd:4c:46:36:92:b0:
83:be:da:44:69:00:6a:f8:8f:b8:63:e0:2c:13:87:
4b:bc:26:81:b1:bd:44:3a:5c:67:97:b8:87:28:2a:
c7:b3:fb:b8:d6:fb:f8:50:63:39:45:eb:7a:85:f6:
87:a6:d8:30:6b:da:67:b8:81:13:af:5a:82:35:32:
a8:cd:df:e4:b1:43:75:37:d7:1f:45:63:6b:23:a2:
47:6a:80:d5:90:14:02:44:ea:d6:4f:45:c7:c3:fc:
16:24:41:f4:ab:ad:62:da:ea:e4:59:9b:28:21:25:
b4:52:92:5f:c1:6c:4b:4d:2b:d0:33:9f:c7:33:53:
16:7b:0e:29:0b:80:fa:c2:eb:3a:fd:c2:61:2b:fb:
ce:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:17:4C:79:F6:AE:D0:DC:EE:D3:7B:17:94:20:C0:07:96:C7:C7:64
X509v3 Authority Key Identifier:
keyid:B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/CRdMefau0Nzu03sXlCDAB5bHx2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.246.128.0/18
185.183.236.0/22
194.6.246.0/24
194.145.184.0/22
IPv6:
2a00:1a40::/32
Signature Algorithm: sha256WithRSAEncryption
ac:eb:be:37:c3:50:b5:0d:42:a1:cc:a9:16:c5:f8:6e:7b:95:
d4:04:1a:21:2c:21:cf:7c:16:4d:57:81:96:90:5a:a4:97:ab:
c2:00:00:89:65:b5:4f:0a:3b:84:5d:c8:9d:82:26:35:1b:51:
21:ab:68:86:d0:2c:c8:ff:6b:d3:1c:e7:1f:26:0b:09:8c:d0:
4a:c1:c4:24:aa:54:6a:58:0a:43:61:61:ef:15:c3:70:96:4b:
72:06:91:7a:3d:40:d0:61:e3:4b:a7:82:4d:0e:2c:d6:bd:a6:
aa:c2:57:d4:d0:b9:f5:be:ce:7d:e6:b5:9e:e5:a9:13:4d:a7:
d9:f5:84:2c:44:1e:ad:c8:fc:3e:f9:f7:98:6d:ca:09:be:07:
26:13:ae:39:3b:05:5e:18:ab:70:8c:45:f3:d6:60:0d:44:a3:
c1:55:98:26:77:6a:e9:96:25:0b:27:ed:d2:f4:8c:80:dd:31:
3a:b5:d0:1b:e0:7d:ef:e2:de:77:ab:f4:46:cb:cb:dd:fa:0b:
8d:3c:8e:bd:a6:f3:42:d8:60:67:22:b8:5c:a6:db:e0:a6:59:
3b:fa:44:87:9e:96:8f:27:c2:ab:bc:68:e2:86:47:93:78:78:
e5:f6:6e:3c:bf:76:78:f3:f1:e6:dc:77:94:46:2f:8c:61:65:
0e:6e:a1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:34 2024 by rpki-client on console.sobornost.net