Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b77e6a-ace3-4ff2-b22a-582f9d2e38b2/1/aFIcCQxo_rNpxZxaDcwbUsHh_yE.roa
File: aFIcCQxo_rNpxZxaDcwbUsHh_yE.roa (raw, json)
Hash identifier: swN8q41HN+A8OT1VMDib2zBdS32vEUq7l45A/jhlRc4=
Subject key identifier: 68:52:1C:09:0C:68:FE:B3:69:C5:9C:5A:0D:CC:1B:52:C1:E1:FF:21
Certificate issuer: /CN=252a182d91f456d850210dbf72da7e475fbf3c08
Certificate serial: 018CC34949CD6C0D0A02FF4418D0E98F960D
Authority key identifier: 25:2A:18:2D:91:F4:56:D8:50:21:0D:BF:72:DA:7E:47:5F:BF:3C:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JSoYLZH0VthQIQ2_ctp-R1-_PAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b77e6a-ace3-4ff2-b22a-582f9d2e38b2/1/aFIcCQxo_rNpxZxaDcwbUsHh_yE.roa
Signing time: Mon 01 Jan 2024 04:30:09 +0000
ROA not before: Mon 01 Jan 2024 04:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203150
IP address blocks: 185.73.251.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:49:cd:6c:0d:0a:02:ff:44:18:d0:e9:8f:96:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=252a182d91f456d850210dbf72da7e475fbf3c08
Validity
Not Before: Jan 1 04:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68521c090c68feb369c59c5a0dcc1b52c1e1ff21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:85:5b:e5:1c:88:a3:62:ea:81:67:80:be:62:
fa:b2:04:ed:34:cb:63:24:8c:49:ed:5a:a5:d3:6d:
93:39:37:3c:20:1c:3b:1c:17:4a:a1:27:d0:83:6f:
76:b0:3c:ee:80:b5:32:c4:f3:9e:04:34:05:58:e2:
17:44:b9:09:72:56:88:57:01:a4:22:1b:90:04:62:
88:03:8c:81:1a:18:21:d3:ab:7c:b8:7a:9e:9a:34:
cc:02:62:32:52:ef:41:1c:c9:0e:f5:d8:0e:db:74:
92:22:a6:12:e3:82:ac:aa:66:1c:8e:7e:ce:8a:a4:
5b:20:98:aa:3f:d7:b3:40:8b:ec:27:12:73:4c:b2:
c3:46:b4:7e:15:a9:58:04:18:f5:75:dc:47:b3:d5:
93:01:1e:c3:b9:69:b5:6b:32:5e:37:e6:8c:69:e3:
d5:99:bb:0b:20:94:05:57:93:1e:c0:5c:44:e3:1a:
e5:b7:93:0c:a8:7a:d0:49:2a:82:44:ad:9e:88:8f:
e2:a9:0b:cf:e4:89:34:43:20:9f:6d:65:06:cd:30:
4b:21:15:13:d7:3c:2b:48:ae:25:04:1a:79:48:e2:
d1:35:17:f5:8f:99:52:43:27:40:25:2c:9f:4e:04:
f1:e7:70:99:6c:3f:a3:f4:55:1b:c9:1c:89:27:78:
96:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:52:1C:09:0C:68:FE:B3:69:C5:9C:5A:0D:CC:1B:52:C1:E1:FF:21
X509v3 Authority Key Identifier:
keyid:25:2A:18:2D:91:F4:56:D8:50:21:0D:BF:72:DA:7E:47:5F:BF:3C:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JSoYLZH0VthQIQ2_ctp-R1-_PAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b77e6a-ace3-4ff2-b22a-582f9d2e38b2/1/aFIcCQxo_rNpxZxaDcwbUsHh_yE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b77e6a-ace3-4ff2-b22a-582f9d2e38b2/1/JSoYLZH0VthQIQ2_ctp-R1-_PAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.251.0/24
Signature Algorithm: sha256WithRSAEncryption
47:e2:cc:2f:63:1e:90:b2:b7:5e:1e:5c:42:81:e6:79:f3:ee:
10:ee:3b:d5:f6:8c:15:13:4a:9a:82:81:1a:21:76:ed:71:da:
76:bf:31:3a:76:e9:9c:78:65:2c:aa:22:9b:21:a6:cd:a3:40:
0a:63:8f:8d:4b:9d:91:f9:4d:03:f5:f0:9d:42:9c:07:b7:4f:
59:01:e3:3d:87:ce:e3:a5:17:09:d9:ac:39:d6:3d:9a:7d:e6:
b3:7d:2d:fa:84:15:46:78:be:30:03:c5:bd:d8:9f:66:ef:66:
72:1b:88:6c:bc:ec:86:54:98:df:62:d3:26:1f:bc:9e:13:6d:
f6:04:57:7f:01:dd:ed:da:7c:fd:70:2e:a5:09:3c:e3:85:b3:
18:ed:8d:71:0c:f2:8c:37:aa:95:df:e5:a2:c8:f8:34:b8:6e:
d1:a6:99:77:9d:ba:26:4a:fc:25:ac:ed:91:9d:73:b0:db:b0:
5e:8d:2a:e2:e3:65:e4:cf:a1:1e:74:d1:24:97:32:ac:23:30:
ec:a3:12:16:06:f7:15:73:3d:f2:b9:06:21:e9:55:4b:58:04:
11:99:6e:a7:c5:95:1b:b4:9c:f6:14:12:59:69:27:e4:cd:da:
fa:d9:99:f5:62:3b:38:0f:65:d2:50:87:bf:83:e3:a5:ca:46:
a8:b0:67:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:17 2024 by rpki-client on console.sobornost.net