Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/QhB4yyO0RWLBpZw1YfcRn1UE1n0.roa
File: QhB4yyO0RWLBpZw1YfcRn1UE1n0.roa (raw, json)
Hash identifier: KvSCLnK8xzhh++y1a/0Jltc5mXytLGkj0Y22EFZalh4=
Subject key identifier: 42:10:78:CB:23:B4:45:62:C1:A5:9C:35:61:F7:11:9F:55:04:D6:7D
Certificate issuer: /CN=a1208242656123c0c90b6168d09b2d8a67617bec
Certificate serial: 018CC8DF5ACB459F5FCAFC766B0BCCFC1632
Authority key identifier: A1:20:82:42:65:61:23:C0:C9:0B:61:68:D0:9B:2D:8A:67:61:7B:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSCCQmVhI8DJC2Fo0Jstimdhe-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/QhB4yyO0RWLBpZw1YfcRn1UE1n0.roa
Signing time: Tue 02 Jan 2024 06:32:10 +0000
ROA not before: Tue 02 Jan 2024 06:32:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39825
IP address blocks: 185.223.208.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:5a:cb:45:9f:5f:ca:fc:76:6b:0b:cc:fc:16:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1208242656123c0c90b6168d09b2d8a67617bec
Validity
Not Before: Jan 2 06:32:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=421078cb23b44562c1a59c3561f7119f5504d67d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e3:53:dd:e7:14:be:6c:d8:ec:c9:11:8e:4f:
c9:e1:64:72:83:e5:58:bb:93:ea:9e:8c:32:61:76:
91:23:3e:6c:65:ab:61:68:01:f3:0c:29:be:13:c6:
39:b6:2d:49:71:dd:fb:26:9c:44:ed:c8:d5:80:9b:
92:91:18:91:43:b2:1a:11:16:67:fa:49:da:35:b8:
ff:b4:21:67:81:d1:8b:2b:35:ed:42:d9:c6:09:fb:
08:e4:56:f0:3c:e8:d3:98:05:15:51:75:bb:f7:59:
f4:9d:11:e9:c9:fb:a3:d1:39:73:d9:5e:91:63:e8:
08:cc:9e:dd:58:28:04:0d:b4:89:e2:dc:e6:34:ca:
67:84:c6:c5:45:57:47:c9:1f:2a:f6:fe:a1:ee:31:
3b:f2:a4:e8:7d:5c:93:26:48:71:ff:ef:0d:03:66:
34:3e:04:6d:89:1e:37:27:b5:e3:ac:34:38:6d:3f:
5c:2b:de:54:f8:9d:f0:70:c1:c5:1e:d1:9f:96:4d:
77:1c:da:c0:92:04:6b:7e:98:7b:3e:56:99:8b:42:
ba:13:2e:f2:a7:84:c7:ac:14:62:ae:e3:44:0d:ee:
28:d3:29:4c:63:c9:00:97:b1:5a:bc:65:25:40:74:
8f:2f:18:eb:be:34:1f:63:10:39:31:15:c0:f0:21:
ba:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:10:78:CB:23:B4:45:62:C1:A5:9C:35:61:F7:11:9F:55:04:D6:7D
X509v3 Authority Key Identifier:
keyid:A1:20:82:42:65:61:23:C0:C9:0B:61:68:D0:9B:2D:8A:67:61:7B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSCCQmVhI8DJC2Fo0Jstimdhe-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/QhB4yyO0RWLBpZw1YfcRn1UE1n0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/oSCCQmVhI8DJC2Fo0Jstimdhe-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.208.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:3e:47:0b:f0:3e:5a:bc:d5:92:f9:ac:92:ca:1c:52:ae:3f:
5e:6b:82:e4:db:c8:f3:08:36:7b:03:37:48:81:27:7d:12:e7:
05:51:7d:a3:ab:bd:d0:0c:82:de:89:fc:89:1d:c4:77:54:00:
2d:9c:f9:89:ff:46:0f:fa:28:5f:4f:3b:dd:27:82:81:22:d6:
70:5d:8b:01:e7:24:86:c7:fc:53:07:3b:5e:24:fd:58:81:36:
ae:60:a2:86:5b:c1:17:bb:d2:c3:0d:49:ea:24:5b:c8:b4:f2:
cc:a0:39:43:9a:24:80:fa:50:ed:00:eb:6b:d2:77:02:a1:e2:
2b:42:8e:21:64:3b:f4:34:bb:16:87:29:53:00:8a:9a:d7:97:
87:60:03:7a:72:5a:db:dc:26:ee:8d:0e:15:ac:7a:ef:42:71:
1a:33:2e:db:84:01:64:40:92:ce:ff:a0:57:d8:6e:f9:1f:ac:
fc:bc:df:12:2d:e0:bf:bd:81:92:4a:1d:dd:30:2f:33:a9:21:
27:13:6e:e7:33:1d:bc:76:8c:6f:76:be:b7:ca:6c:38:b6:ea:
95:6d:1d:4e:f6:6b:34:aa:54:64:96:06:f6:38:f9:a6:27:a6:
31:8e:ca:64:8d:84:44:78:fc:5f:77:ea:6c:61:25:2c:b5:9b:
5d:26:c8:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:11 2024 by rpki-client on console.sobornost.net