Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a95b81-31a7-4211-8d62-4aed8a823777/1/XOlN48iJuddSflqeD4JHN7lTGUQ.roa
File: XOlN48iJuddSflqeD4JHN7lTGUQ.roa (raw, json)
Hash identifier: PBH7QxL2e4BB0sznZDQx7cvmk9TJ6vHMFHj/rEHkpNA=
Subject key identifier: 5C:E9:4D:E3:C8:89:B9:D7:52:7E:5A:9E:0F:82:47:37:B9:53:19:44
Certificate issuer: /CN=829f21c061f3b4f91909450a0e968f7caa634925
Certificate serial: 070D51EF
Authority key identifier: 82:9F:21:C0:61:F3:B4:F9:19:09:45:0A:0E:96:8F:7C:AA:63:49:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gp8hwGHztPkZCUUKDpaPfKpjSSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a95b81-31a7-4211-8d62-4aed8a823777/1/XOlN48iJuddSflqeD4JHN7lTGUQ.roa
Signing time: Sat 01 Jan 2022 15:59:38 +0000
ROA not before: Sat 01 Jan 2022 15:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209451
IP address blocks: 185.245.132.0/24 maxlen: 24
185.245.135.0/24 maxlen: 24
185.245.133.0/24 maxlen: 24
185.245.134.0/24 maxlen: 24
2a09:55c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118313455 (0x70d51ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=829f21c061f3b4f91909450a0e968f7caa634925
Validity
Not Before: Jan 1 15:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ce94de3c889b9d7527e5a9e0f824737b9531944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:77:2c:96:db:79:57:23:f3:22:a5:74:59:ea:
99:c0:bc:83:4f:c4:45:90:00:c3:88:c7:d8:d3:c3:
fb:95:19:cb:a8:c9:6a:1e:bb:1f:05:a0:48:63:0d:
8b:fe:b8:5d:6f:ce:0c:b1:81:66:96:d5:af:98:01:
30:f7:9e:9d:d6:6d:12:1e:c4:11:0d:ff:15:cd:59:
5e:24:42:69:87:17:8e:a3:5c:2f:38:b7:3c:4e:61:
d0:d3:b2:77:31:93:40:e4:e1:dd:f7:18:cc:6c:eb:
82:a8:2d:86:04:ac:c9:32:3b:c5:7f:f0:2f:d7:12:
d8:54:f6:b8:9a:fc:a9:c7:28:a0:28:8a:55:bb:0a:
5f:3f:08:e4:82:a9:be:27:8d:9c:c3:f3:52:a9:d9:
c2:fe:c0:72:6e:99:b6:ae:ee:c1:98:10:b0:98:c3:
37:0e:72:ff:0b:c3:5d:76:4f:b2:f8:c9:c7:05:23:
cb:1b:df:f4:84:31:4d:62:20:eb:16:58:9c:39:1f:
0f:ef:8e:3a:18:e1:e5:71:7c:8e:bc:83:9f:c2:ac:
56:b7:f9:d1:6c:fb:f2:33:30:27:5b:12:98:cd:91:
12:2e:31:29:5d:c9:90:7a:cc:53:2a:7f:0d:93:c9:
91:9f:3c:c7:63:c3:ac:c8:2d:aa:8a:f9:23:61:e6:
0e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E9:4D:E3:C8:89:B9:D7:52:7E:5A:9E:0F:82:47:37:B9:53:19:44
X509v3 Authority Key Identifier:
keyid:82:9F:21:C0:61:F3:B4:F9:19:09:45:0A:0E:96:8F:7C:AA:63:49:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gp8hwGHztPkZCUUKDpaPfKpjSSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a95b81-31a7-4211-8d62-4aed8a823777/1/XOlN48iJuddSflqeD4JHN7lTGUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a95b81-31a7-4211-8d62-4aed8a823777/1/gp8hwGHztPkZCUUKDpaPfKpjSSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.132.0/22
IPv6:
2a09:55c0::/32
Signature Algorithm: sha256WithRSAEncryption
84:98:83:f7:57:49:99:ac:e3:23:56:67:6d:76:8f:b9:39:0a:
bf:9a:e4:56:6a:03:0e:06:0e:16:13:99:ca:0e:58:3f:ae:ad:
b1:c9:6e:04:3c:51:7a:fa:83:99:7d:35:4f:37:33:84:69:c5:
9c:73:dd:2d:f2:e7:f0:1f:7a:23:e2:14:2e:0c:e8:51:17:07:
b3:e0:05:5d:f9:aa:64:fb:d9:d3:e2:21:ae:71:66:df:9a:71:
98:82:86:aa:a7:bb:ff:04:c6:88:6e:89:c7:ff:13:ef:ea:fe:
63:0b:e1:bc:30:15:b2:88:b2:90:89:d6:76:e5:5e:ce:70:2f:
26:2a:55:d0:9c:81:38:6e:e6:40:83:ba:de:b6:9f:ad:a7:2c:
9a:53:66:62:5f:73:f7:39:23:5f:2b:67:c4:8b:30:a3:0d:21:
53:5d:9d:3e:21:89:d1:b8:fd:8b:ff:b8:4c:69:a0:a6:58:a0:
a6:fa:7b:e8:b7:03:b4:0b:70:11:84:9f:a6:2a:dd:19:dd:6c:
ee:e0:17:90:2e:0d:af:87:0c:58:71:40:b2:4d:d1:0f:e9:72:
86:0a:50:7c:e8:0d:e1:3d:43:9a:28:44:09:22:8c:2c:f1:88:
37:b7:25:77:e0:a1:0a:f6:9c:f4:59:fb:c9:2a:bd:64:d5:7f:
31:d5:78:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:16 2023 by rpki-client on console.sobornost.net