Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/3b6fb4-52e8-44e2-abe8-2c2fbad2f011/1/mH9o9P9zDVO3Yj7SxqvgCXqVGrU.roa
File: mH9o9P9zDVO3Yj7SxqvgCXqVGrU.roa (raw, json)
Hash identifier: /Ighc/EriDePQoFW+Z7elJ7n0g4jAZwdRgGL0hgNR0w=
Subject key identifier: 98:7F:68:F4:FF:73:0D:53:B7:62:3E:D2:C6:AB:E0:09:7A:95:1A:B5
Certificate issuer: /CN=43aeb8ff55bd46500b27db9cf1dec256276b2b6a
Certificate serial: 0193BAD689FF02AF8587206B6A810B322036
Authority key identifier: 43:AE:B8:FF:55:BD:46:50:0B:27:DB:9C:F1:DE:C2:56:27:6B:2B:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q664_1W9RlALJ9uc8d7CVidrK2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/3b6fb4-52e8-44e2-abe8-2c2fbad2f011/1/mH9o9P9zDVO3Yj7SxqvgCXqVGrU.roa
Signing time: Thu 12 Dec 2024 12:27:22 +0000
ROA not before: Thu 12 Dec 2024 12:27:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204589
IP address blocks: 185.246.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ba:d6:89:ff:02:af:85:87:20:6b:6a:81:0b:32:20:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43aeb8ff55bd46500b27db9cf1dec256276b2b6a
Validity
Not Before: Dec 12 12:27:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=987f68f4ff730d53b7623ed2c6abe0097a951ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:73:3b:4f:b3:60:2c:f2:9b:fd:0b:c9:5f:23:
61:4a:ce:b7:13:71:da:70:af:4c:f6:6c:92:1e:67:
b7:78:11:bb:34:e6:db:5d:19:0b:4e:b5:06:1b:e2:
16:a0:f3:6c:88:bf:87:51:22:cb:da:3e:34:1d:6b:
f3:d2:aa:c1:26:04:7a:3e:ff:8a:52:97:b6:fe:07:
5a:af:31:a1:45:17:25:72:56:de:77:cc:d3:0c:c6:
4a:74:1a:ba:ac:3a:e2:ff:36:20:2a:52:ca:eb:23:
3e:6a:d5:ed:80:fb:7f:31:0e:88:2f:73:e8:0e:70:
37:38:13:b0:e3:90:58:21:d3:af:dd:74:09:2e:cc:
c2:10:e8:69:cb:8b:22:cb:6e:22:b3:d2:f5:fb:e9:
98:7f:ed:3a:e2:13:ae:9e:d7:60:e8:4b:6d:14:44:
31:53:60:af:5c:77:14:dc:41:a7:56:34:e1:3c:de:
27:f6:29:2a:42:7a:4c:d1:f6:42:f7:d8:da:7e:39:
f3:6f:65:da:17:f8:a0:32:be:dd:ab:b8:e1:17:11:
fe:a9:83:17:a9:a9:4c:96:b1:f6:38:50:c3:6c:ea:
c8:44:72:b3:31:a4:f6:03:63:90:f9:c9:86:3c:29:
c4:06:a1:bc:8b:69:9c:f3:1b:87:29:57:7a:de:0e:
b7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:7F:68:F4:FF:73:0D:53:B7:62:3E:D2:C6:AB:E0:09:7A:95:1A:B5
X509v3 Authority Key Identifier:
keyid:43:AE:B8:FF:55:BD:46:50:0B:27:DB:9C:F1:DE:C2:56:27:6B:2B:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q664_1W9RlALJ9uc8d7CVidrK2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/3b6fb4-52e8-44e2-abe8-2c2fbad2f011/1/mH9o9P9zDVO3Yj7SxqvgCXqVGrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/3b6fb4-52e8-44e2-abe8-2c2fbad2f011/1/Q664_1W9RlALJ9uc8d7CVidrK2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.31.0/24
Signature Algorithm: sha256WithRSAEncryption
66:b5:f7:78:28:c6:34:d9:f5:c9:d6:1b:f3:f7:8c:10:af:8d:
c5:96:0c:2b:09:2c:18:23:4e:24:bc:9c:71:58:26:b8:2f:14:
61:9a:b4:0f:0a:d6:20:7f:89:1f:17:45:a8:13:f7:2b:54:a9:
35:14:f2:72:35:ae:71:fe:d2:f3:d1:c6:68:e3:91:63:45:e1:
95:12:af:91:17:b4:7a:b2:2b:0f:30:78:89:23:ce:18:af:4e:
26:9d:bc:7f:bf:5a:a6:97:cb:ae:ec:7e:69:2a:b2:ad:37:46:
18:54:a1:b3:f0:78:ee:e6:a6:bd:0b:f3:a5:ff:fb:43:87:c0:
64:c3:bf:75:5c:6a:9b:0c:f5:bd:84:1e:44:3f:a9:bd:41:9c:
7a:5c:81:a8:08:35:72:c4:40:7d:08:11:b0:a9:36:03:ce:5c:
a6:a4:73:c1:08:b0:6c:93:8d:ec:c2:de:bc:06:1f:b5:20:70:
8b:42:d2:25:d1:b4:a2:8c:c8:9c:30:33:be:a8:80:30:c3:21:
94:77:4a:ef:ef:60:ca:5a:05:dd:08:82:3d:97:b8:71:0a:fb:
dc:88:19:97:32:24:0e:ba:82:fe:47:94:6f:39:69:db:8e:c2:
ae:5c:a0:bb:ba:4c:00:13:3a:cc:a7:b6:0d:39:48:85:21:4a:
db:91:d7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:14 2024 by rpki-client on console.sobornost.net