Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/53a03e-5571-456f-88a6-831817955d33/1/tIL4bq9Bujo71S4WK4FFO6OIDTA.roa
File: tIL4bq9Bujo71S4WK4FFO6OIDTA.roa (raw, json)
Hash identifier: sX0bTWvgLtX5OBjicU+V0GfVGsO4dfPAy/PYOi+s2QI=
Subject key identifier: B4:82:F8:6E:AF:41:BA:3A:3B:D5:2E:16:2B:81:45:3B:A3:88:0D:30
Certificate issuer: /CN=77c51066d4f53dae10e69674dced3f032dd72efd
Certificate serial: 01867CEFD2AC9DED1A80C316C8A3BCE8EEFF
Authority key identifier: 77:C5:10:66:D4:F5:3D:AE:10:E6:96:74:DC:ED:3F:03:2D:D7:2E:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8UQZtT1Pa4Q5pZ03O0_Ay3XLv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/53a03e-5571-456f-88a6-831817955d33/1/tIL4bq9Bujo71S4WK4FFO6OIDTA.roa
Signing time: Thu 23 Feb 2023 06:22:17 +0000
ROA not before: Thu 23 Feb 2023 06:22:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 185.138.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7c:ef:d2:ac:9d:ed:1a:80:c3:16:c8:a3:bc:e8:ee:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c51066d4f53dae10e69674dced3f032dd72efd
Validity
Not Before: Feb 23 06:22:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b482f86eaf41ba3a3bd52e162b81453ba3880d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:48:97:f8:ba:2f:8b:91:19:35:0a:e1:4f:aa:
80:82:f5:8b:c0:c8:64:69:90:83:34:d8:08:71:56:
00:8c:56:8a:f8:1e:d9:83:24:2c:a3:a5:0b:b6:78:
e6:39:77:27:45:09:97:4d:01:95:8a:96:59:b4:cd:
a2:85:66:bc:32:d7:e8:c4:55:3a:62:05:49:07:0e:
86:c3:85:f7:b7:c5:24:3e:0f:ea:75:a7:da:43:42:
b2:96:0d:5d:32:de:84:80:9d:61:cf:66:d9:67:4f:
dd:73:69:f0:96:3d:be:d6:1d:a8:e2:9a:ce:a9:c4:
f9:fb:c2:79:9d:8e:8e:70:a0:ea:1b:d6:c3:97:ee:
80:d4:cd:18:63:2a:66:14:c2:05:6b:65:be:a2:99:
f0:f0:5d:16:9e:26:d2:82:b9:ff:05:35:98:e0:bd:
79:f1:b4:fb:7a:3f:9a:9b:30:78:85:1d:d7:8c:0f:
66:e0:cd:ce:54:25:cb:1d:a6:2d:b6:91:00:0b:d6:
4e:dd:fe:90:7f:f6:18:ae:c5:48:25:29:7c:16:2d:
22:71:84:57:7d:93:10:ab:46:90:12:2a:dc:fd:03:
05:e0:84:3a:92:08:b9:5e:82:35:f3:31:99:5a:da:
e2:f9:3e:7b:7c:34:ae:84:49:4f:f8:4f:f4:24:cb:
b6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:82:F8:6E:AF:41:BA:3A:3B:D5:2E:16:2B:81:45:3B:A3:88:0D:30
X509v3 Authority Key Identifier:
keyid:77:C5:10:66:D4:F5:3D:AE:10:E6:96:74:DC:ED:3F:03:2D:D7:2E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8UQZtT1Pa4Q5pZ03O0_Ay3XLv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/53a03e-5571-456f-88a6-831817955d33/1/tIL4bq9Bujo71S4WK4FFO6OIDTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/53a03e-5571-456f-88a6-831817955d33/1/d8UQZtT1Pa4Q5pZ03O0_Ay3XLv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.166.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:f4:44:42:37:9d:8c:63:a8:5e:22:36:75:3c:92:98:c9:ff:
38:97:b0:4f:20:c6:05:c9:ca:9f:ef:8c:18:8e:d6:0e:08:f7:
89:c7:8b:73:25:fc:4d:84:ef:99:3e:05:35:a3:97:c8:af:b5:
58:01:56:d3:7f:ad:1f:9c:8c:60:cf:45:a1:6f:24:79:25:04:
69:06:67:5c:06:ce:dd:ef:f8:b5:7b:b0:99:8f:4d:57:79:9b:
0f:16:22:8d:d6:92:d9:76:d0:8a:15:2c:f0:fc:87:89:08:ef:
25:a6:cb:4a:67:59:b1:6d:42:9f:0a:71:b2:d7:1c:bf:4a:f7:
88:34:6c:80:cd:8a:84:d6:24:78:f8:5e:04:de:9d:00:49:1a:
c7:aa:13:e6:44:67:2a:dd:93:e8:20:54:b5:b2:48:4f:1d:6c:
7e:de:49:88:67:93:24:66:38:37:13:87:d4:57:88:56:de:2d:
fd:3d:70:76:bf:20:ad:38:71:f8:d5:95:68:25:ae:92:52:44:
01:11:db:08:33:ab:cf:b6:cc:05:e1:7e:cf:87:fc:e2:7b:9e:
42:b7:6b:9e:90:a1:d3:7b:80:7b:ce:6a:7c:6d:75:9e:85:0b:
3d:df:11:8c:18:d8:52:5c:c1:e1:b1:00:dc:1b:84:7a:c0:dd:
6e:38:67:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:29 2023 by rpki-client on console.sobornost.net