Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/7f3cc9-6be9-40b2-8a14-130698a5959c/1/uvqeUY-TOB_W2CypFZMfYqZYeHA.roa
File: uvqeUY-TOB_W2CypFZMfYqZYeHA.roa (raw, json)
Hash identifier: ZrpDX3qmO+cBFxxd0gdAh+exTxDufI8hnWjmZK0zOq0=
Subject key identifier: BA:FA:9E:51:8F:93:38:1F:D6:D8:2C:A9:15:93:1F:62:A6:58:78:70
Certificate issuer: /CN=01ec50cb33ae1860d4cc5fb67e43d39304224b4f
Certificate serial: 018CC8022D2B0AA36E844C91FC018857A782
Authority key identifier: 01:EC:50:CB:33:AE:18:60:D4:CC:5F:B6:7E:43:D3:93:04:22:4B:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AexQyzOuGGDUzF-2fkPTkwQiS08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/7f3cc9-6be9-40b2-8a14-130698a5959c/1/uvqeUY-TOB_W2CypFZMfYqZYeHA.roa
Signing time: Tue 02 Jan 2024 02:30:35 +0000
ROA not before: Tue 02 Jan 2024 02:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49436
IP address blocks: 185.248.190.0/24 maxlen: 24
185.248.191.0/24 maxlen: 24
185.248.188.0/23 maxlen: 23
2a0e:1b01::/32 maxlen: 32
2a0e:1b07::/32 maxlen: 32
2a0e:1b00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:2d:2b:0a:a3:6e:84:4c:91:fc:01:88:57:a7:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01ec50cb33ae1860d4cc5fb67e43d39304224b4f
Validity
Not Before: Jan 2 02:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bafa9e518f93381fd6d82ca915931f62a6587870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:2c:83:52:d9:87:d2:1a:c5:b0:fd:26:c0:f6:
e5:de:06:b9:06:fe:22:86:e4:92:65:8a:7f:c5:c7:
00:60:d7:f5:3e:4a:e1:99:30:ed:1c:4a:ce:e4:ae:
c0:a0:58:9c:ca:2b:fb:04:7a:85:24:37:e2:ed:e4:
28:2f:ef:31:fa:64:96:13:b3:a3:e4:59:73:d2:f8:
74:4f:a0:0f:6b:f0:61:02:77:74:d1:fd:66:50:a0:
a5:5f:5c:8a:db:93:c2:16:d5:d2:2d:5f:18:c0:bd:
05:45:e6:db:73:a4:8b:27:44:7e:a1:08:26:d8:e0:
c5:0e:20:c1:18:7a:9e:7f:67:66:32:0d:05:42:ed:
6b:ff:71:a4:da:4e:ed:4c:74:4a:08:9b:24:a9:8a:
16:35:41:88:f5:1c:26:b2:d8:b1:7f:e2:cc:eb:cb:
c0:4c:5d:a0:01:00:bc:c3:35:8f:4a:4e:7c:54:c6:
59:e5:c0:6d:ba:34:2a:6d:ab:0b:21:0e:5a:f1:32:
0f:47:68:3f:1b:79:a3:aa:cf:b3:82:d2:fb:70:e7:
0d:80:96:f4:0b:40:7d:c5:79:ee:e6:d5:d8:8b:42:
6c:c9:b9:c4:8e:b5:b6:4c:db:7b:76:01:7a:22:34:
e9:1f:fb:bd:d6:fc:4f:1b:6c:17:0c:57:10:b1:47:
2d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:FA:9E:51:8F:93:38:1F:D6:D8:2C:A9:15:93:1F:62:A6:58:78:70
X509v3 Authority Key Identifier:
keyid:01:EC:50:CB:33:AE:18:60:D4:CC:5F:B6:7E:43:D3:93:04:22:4B:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AexQyzOuGGDUzF-2fkPTkwQiS08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/7f3cc9-6be9-40b2-8a14-130698a5959c/1/uvqeUY-TOB_W2CypFZMfYqZYeHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/7f3cc9-6be9-40b2-8a14-130698a5959c/1/AexQyzOuGGDUzF-2fkPTkwQiS08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.188.0/22
IPv6:
2a0e:1b00::/31
2a0e:1b07::/32
Signature Algorithm: sha256WithRSAEncryption
46:fd:f5:69:90:25:8f:49:fb:8f:f2:1d:33:8d:38:e2:74:37:
81:e5:26:80:de:e3:74:bd:cc:fa:e9:93:f0:77:6e:d2:54:d7:
3b:5a:87:02:b8:1c:12:e4:6d:f6:e3:36:c5:bf:07:11:be:ad:
0b:6a:e3:0b:7a:f8:c0:f5:c6:8f:c0:eb:23:10:6c:52:bf:17:
78:52:28:3e:e1:a9:8c:f1:36:41:73:5a:1d:81:62:60:57:3c:
23:69:74:d4:48:d1:43:e2:37:a7:53:e0:c4:cd:45:09:82:94:
b5:d0:c2:66:95:77:96:0e:d6:71:06:09:01:e9:bf:fb:b4:d3:
d2:4e:95:d3:95:52:79:33:af:fd:ec:ca:e5:e6:1c:69:34:2b:
ca:60:57:c1:4d:87:8f:36:70:2e:09:ec:dd:ac:f9:51:33:45:
99:2e:eb:be:61:ba:10:c3:d2:c9:c3:49:c1:0b:9e:e9:a6:95:
dc:6a:aa:7d:8f:32:94:17:ad:67:f9:77:7c:88:79:58:ed:96:
be:e5:8c:05:80:55:a2:4d:e0:f9:be:26:64:9d:5b:19:4e:77:
03:fb:b7:02:18:4f:16:26:19:d6:e6:88:0a:6e:b2:ea:4b:bc:
44:d2:1d:45:81:90:37:cf:a4:6d:f3:92:43:18:1a:8b:7f:3e:
d3:10:3d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 02:15:18 2024 by rpki-client on console.sobornost.net