Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9edf91-3736-4bf9-a38b-25bb9fb19720/1/sq2nsewdALkJdDIIVzu1NLYPtAg.roa
File: sq2nsewdALkJdDIIVzu1NLYPtAg.roa (raw, json)
Hash identifier: WH6TDCe7yT7f/AfuZqgpEN1CVdtWeGxmtishC513pWk=
Subject key identifier: B2:AD:A7:B1:EC:1D:00:B9:09:74:32:08:57:3B:B5:34:B6:0F:B4:08
Certificate issuer: /CN=d5f4345a2af6b544cd1b8e78d73ec02b8895546d
Certificate serial: 01935341EE0298BC72CB814AA45A3CA0CB9B
Authority key identifier: D5:F4:34:5A:2A:F6:B5:44:CD:1B:8E:78:D7:3E:C0:2B:88:95:54:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fQ0Wir2tUTNG4541z7AK4iVVG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9edf91-3736-4bf9-a38b-25bb9fb19720/1/sq2nsewdALkJdDIIVzu1NLYPtAg.roa
Signing time: Fri 22 Nov 2024 09:44:09 +0000
ROA not before: Fri 22 Nov 2024 09:44:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31382
IP address blocks: 148.198.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:53:41:ee:02:98:bc:72:cb:81:4a:a4:5a:3c:a0:cb:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f4345a2af6b544cd1b8e78d73ec02b8895546d
Validity
Not Before: Nov 22 09:44:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2ada7b1ec1d00b909743208573bb534b60fb408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:47:ca:48:07:fe:2f:8a:59:65:bf:66:bf:56:
03:4a:01:1a:a4:8f:07:82:17:ea:fa:d6:46:28:14:
89:0f:f3:9a:4a:87:be:00:01:91:9a:fb:0f:e2:95:
94:c9:c3:e7:56:8e:65:f8:80:1b:25:29:b2:6f:10:
c3:8f:b4:04:77:e3:c5:34:6f:b9:66:7f:05:d7:cf:
cb:50:96:26:80:20:df:e5:bd:31:b1:af:e4:4f:90:
9d:f7:ef:53:1a:02:f5:b9:9b:65:5b:05:f2:3a:5c:
b2:6f:40:c3:f6:00:b2:1e:2f:f5:e6:e8:4f:cd:b3:
7b:58:ae:fd:06:69:cb:c8:8b:2e:34:bf:77:a8:4b:
5e:5c:c0:46:7e:8e:8d:22:f8:dd:b4:66:c6:03:1e:
ec:c5:53:18:be:d4:64:90:ca:d2:1b:15:d6:1b:24:
6e:dc:70:36:47:25:1a:5e:70:5c:bc:bf:8a:2d:8b:
fe:5e:0f:1e:7f:5b:85:0a:d8:e2:14:89:3b:9a:6d:
12:23:b8:bc:de:7d:4c:7f:d6:e8:e3:92:ea:38:11:
82:f1:cd:3d:b9:b7:a7:67:22:14:3f:34:04:6d:c7:
42:b2:71:9d:25:de:36:e1:a4:c6:2c:68:e8:5b:bc:
a8:9e:4e:87:0e:df:ec:a0:0c:07:d1:b8:b4:b2:87:
87:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AD:A7:B1:EC:1D:00:B9:09:74:32:08:57:3B:B5:34:B6:0F:B4:08
X509v3 Authority Key Identifier:
keyid:D5:F4:34:5A:2A:F6:B5:44:CD:1B:8E:78:D7:3E:C0:2B:88:95:54:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fQ0Wir2tUTNG4541z7AK4iVVG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9edf91-3736-4bf9-a38b-25bb9fb19720/1/sq2nsewdALkJdDIIVzu1NLYPtAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9edf91-3736-4bf9-a38b-25bb9fb19720/1/1fQ0Wir2tUTNG4541z7AK4iVVG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.198.0.0/16
Signature Algorithm: sha256WithRSAEncryption
00:7a:7b:de:92:6a:b0:f9:95:82:ee:66:78:42:18:99:33:96:
f2:27:1d:06:3d:88:fa:92:3a:d7:c8:c9:13:2a:21:c7:51:9c:
4b:6e:7e:d2:09:ee:1e:6c:18:a3:f0:96:d9:d9:07:1d:73:1d:
d5:ca:79:70:a6:71:46:4d:44:22:d2:bc:cf:03:ff:9c:33:21:
e6:06:fd:c0:b6:c2:b4:99:9a:c8:21:a4:26:d5:fe:22:7b:9c:
07:0f:ce:c6:71:95:51:d8:52:45:1d:ae:1c:93:35:3d:0e:ae:
40:b9:98:9b:27:f9:a8:f2:5f:10:a7:f1:ac:f8:c2:7a:0a:4c:
7d:be:7b:39:ce:17:5c:92:97:9a:9e:29:b9:2a:de:ff:10:23:
0b:3a:e1:9f:7d:9a:87:3e:7a:f4:29:c1:81:c5:a0:bd:6c:9c:
b8:13:6f:16:cb:99:b3:7a:10:a8:8c:00:0d:10:b1:5c:5e:e7:
ad:87:a6:4a:8c:d6:1b:98:66:ec:e8:a4:ba:e0:3f:f8:ad:28:
a2:e4:57:29:b2:22:23:5b:ec:f7:a9:23:43:5e:36:da:44:aa:
53:55:48:9f:28:54:c0:5c:24:34:38:d9:6f:2c:a7:37:89:9f:
ee:9a:d4:8b:38:5e:cf:16:6b:c0:29:36:aa:1a:e9:84:38:78:
b8:43:b4:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:18 2024 by rpki-client on console.sobornost.net