Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b2582f-586b-436a-a6e3-e069ee107add/1/r5hAqta_QUPzT6k6So5icsNwSQA.roa
File: r5hAqta_QUPzT6k6So5icsNwSQA.roa (raw, json)
Hash identifier: kKS+IeDdl9QJgvLC5p2p225NYlkZFDZzvqfh9JwheF0=
Subject key identifier: AF:98:40:AA:D6:BF:41:43:F3:4F:A9:3A:4A:8E:62:72:C3:70:49:00
Certificate issuer: /CN=d25a9e2c4ac8bc02bc3ff8925ac13174d2d478c4
Certificate serial: 0193BA8E35FD3BAB11927467046BFBDB648F
Authority key identifier: D2:5A:9E:2C:4A:C8:BC:02:BC:3F:F8:92:5A:C1:31:74:D2:D4:78:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0lqeLErIvAK8P_iSWsExdNLUeMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b2582f-586b-436a-a6e3-e069ee107add/1/r5hAqta_QUPzT6k6So5icsNwSQA.roa
Signing time: Thu 12 Dec 2024 11:08:22 +0000
ROA not before: Thu 12 Dec 2024 11:08:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201736
IP address blocks: 185.67.228.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ba:8e:35:fd:3b:ab:11:92:74:67:04:6b:fb:db:64:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d25a9e2c4ac8bc02bc3ff8925ac13174d2d478c4
Validity
Not Before: Dec 12 11:08:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af9840aad6bf4143f34fa93a4a8e6272c3704900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ed:15:72:de:3d:d2:dc:ed:6c:d7:aa:91:7a:
21:f9:8e:2e:5b:23:57:d7:c1:da:7b:2b:d9:f7:93:
b1:31:82:e0:06:8d:cb:65:98:32:6b:61:44:38:07:
f5:86:99:0e:e8:92:d5:5d:94:dd:b8:0f:8a:f3:36:
79:1d:46:6b:a3:0f:2c:06:b6:68:3c:67:15:0a:6a:
2d:bb:cb:a4:ce:70:cd:d7:b7:c8:9d:63:e5:c6:f8:
a5:4f:2e:44:5e:63:0e:ac:80:a5:30:e8:14:dc:85:
20:0c:75:6c:cf:8b:68:2f:59:88:99:41:d5:81:c2:
0a:88:28:e1:9c:89:96:9b:2b:9f:5e:02:96:66:36:
28:11:3d:12:cb:df:5e:21:3f:d1:a9:bb:a2:33:4c:
cb:5f:e8:ee:a6:7b:ab:e1:a8:f3:ee:e9:a2:6d:a6:
99:27:2d:97:4b:da:21:45:ff:30:80:f8:0a:a1:71:
f0:92:4d:36:4a:30:3f:ac:e9:e9:34:5c:c5:2c:da:
00:90:a0:5c:ec:a7:6d:0d:cf:72:27:ed:77:b4:c3:
b8:b7:f7:d8:3f:1a:1a:eb:cc:46:de:ca:b5:2d:2f:
0e:34:5d:d3:b6:a3:51:44:fd:7d:89:65:b7:39:96:
bb:e4:50:34:f5:b0:a5:ef:f6:03:7c:83:a6:51:e8:
95:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:98:40:AA:D6:BF:41:43:F3:4F:A9:3A:4A:8E:62:72:C3:70:49:00
X509v3 Authority Key Identifier:
keyid:D2:5A:9E:2C:4A:C8:BC:02:BC:3F:F8:92:5A:C1:31:74:D2:D4:78:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0lqeLErIvAK8P_iSWsExdNLUeMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b2582f-586b-436a-a6e3-e069ee107add/1/r5hAqta_QUPzT6k6So5icsNwSQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b2582f-586b-436a-a6e3-e069ee107add/1/0lqeLErIvAK8P_iSWsExdNLUeMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.228.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:0e:d8:cc:ec:f3:ff:e1:ff:57:49:8a:9f:16:4f:6e:13:d0:
b8:8b:5e:0f:f8:90:c7:80:5d:18:61:df:a4:16:15:63:c1:7c:
3b:4b:5c:78:4e:2f:b2:63:b0:ea:45:81:fa:7b:d0:63:45:38:
42:d6:ec:0c:28:d4:fd:a8:c3:c0:36:f0:9b:7f:b2:ec:6e:0d:
aa:f6:6d:7c:86:6b:20:2a:c2:42:f2:b3:dd:9d:0e:99:f3:50:
ae:0a:9e:d1:c8:62:a7:65:05:5a:d8:23:91:1e:d3:82:1c:34:
d3:67:3f:b7:9e:82:2f:d6:0e:43:9b:0b:ba:24:a6:fa:e5:76:
f5:cf:50:5a:6d:96:3d:1d:7f:89:2a:05:2e:22:c7:b2:36:12:
04:ce:80:3f:25:15:dd:5c:d8:45:20:e4:d5:07:26:2a:ba:5c:
41:92:7c:c0:01:3b:a1:4c:62:6d:96:a7:2a:f9:36:6d:0d:34:
6f:86:26:41:03:f7:ef:23:60:a6:82:3a:45:f6:12:c7:1e:29:
a9:ea:b1:8d:35:af:1e:dc:a2:89:58:40:dd:67:31:6e:dd:2b:
bc:07:58:24:a4:20:2c:44:ea:08:e2:42:15:20:84:63:1e:c3:
75:e4:57:f0:d4:45:92:fa:fd:5c:49:83:14:51:25:aa:f2:15:
31:7c:46:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:43 2024 by rpki-client on console.sobornost.net