Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/3d71e9-1889-4263-8d8d-a3df89843958/1/su950pYfzvb8CgevUv4fbAvpqTs.roa
File: su950pYfzvb8CgevUv4fbAvpqTs.roa (raw, json)
Hash identifier: 1O6tdlgMwLJTycy+dgFObkE8/rWn/sREo2ptKpg2L0c=
Subject key identifier: B2:EF:79:D2:96:1F:CE:F6:FC:0A:07:AF:52:FE:1F:6C:0B:E9:A9:3B
Certificate issuer: /CN=d370d67d0d2d584e6c46a309a37a545ab175dd0c
Certificate serial: 0961
Authority key identifier: D3:70:D6:7D:0D:2D:58:4E:6C:46:A3:09:A3:7A:54:5A:B1:75:DD:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/03DWfQ0tWE5sRqMJo3pUWrF13Qw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/3d71e9-1889-4263-8d8d-a3df89843958/1/su950pYfzvb8CgevUv4fbAvpqTs.roa
Signing time: Tue 25 Jan 2022 18:22:59 +0000
ROA not before: Tue 25 Jan 2022 18:22:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 185.187.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2401 (0x961)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d370d67d0d2d584e6c46a309a37a545ab175dd0c
Validity
Not Before: Jan 25 18:22:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2ef79d2961fcef6fc0a07af52fe1f6c0be9a93b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:63:4d:d9:9c:5c:0a:91:93:1e:01:91:2e:b3:
98:3c:c6:17:c1:71:e4:a6:13:13:b1:92:91:7f:0b:
da:eb:28:35:f5:aa:64:ae:27:cd:cf:47:29:03:7a:
18:3c:d3:14:ed:e3:b0:4d:bf:54:9b:79:56:46:0d:
1e:ec:56:65:24:cf:f8:6a:89:49:00:08:b3:ce:89:
96:8c:71:cc:e4:f2:d3:c1:b3:44:32:7a:43:8a:b0:
5c:0a:89:ee:26:cd:45:da:ea:c1:e4:20:fb:36:d9:
78:5a:46:b9:58:94:ab:13:8b:91:16:73:6f:17:e5:
1f:c0:91:60:54:88:30:c2:c2:a6:b3:bc:48:5d:e6:
f4:7b:d5:e4:5d:47:88:3c:5c:94:b8:14:43:5e:48:
15:77:67:1e:1d:18:72:ec:09:3f:b5:61:43:63:34:
62:e0:35:69:09:c7:03:4e:f2:9a:d7:70:81:a2:cd:
66:b4:4f:9d:cc:5e:e6:1f:b9:e4:76:db:fb:89:3a:
35:6e:07:0a:34:9c:d3:1f:30:3f:f5:1b:48:32:81:
35:9f:b1:dd:2e:69:8d:d0:c8:d3:17:13:b2:1b:75:
59:3f:01:a9:a0:7d:2c:4a:b2:77:47:c4:0a:6b:08:
60:9e:9c:80:10:a4:eb:47:54:c0:f8:a0:cd:56:62:
cc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:EF:79:D2:96:1F:CE:F6:FC:0A:07:AF:52:FE:1F:6C:0B:E9:A9:3B
X509v3 Authority Key Identifier:
keyid:D3:70:D6:7D:0D:2D:58:4E:6C:46:A3:09:A3:7A:54:5A:B1:75:DD:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/03DWfQ0tWE5sRqMJo3pUWrF13Qw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/3d71e9-1889-4263-8d8d-a3df89843958/1/su950pYfzvb8CgevUv4fbAvpqTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/3d71e9-1889-4263-8d8d-a3df89843958/1/03DWfQ0tWE5sRqMJo3pUWrF13Qw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.16.0/24
Signature Algorithm: sha256WithRSAEncryption
54:e7:bd:f4:fa:4c:20:9f:50:c9:81:80:cb:64:53:d5:b6:fb:
d3:a3:f1:e6:df:0a:1a:f7:85:ee:5a:29:dd:ea:75:8c:6a:97:
15:b0:f5:b9:51:4a:ea:a2:5e:20:6e:31:5d:bf:49:ed:13:f3:
fa:d4:4e:ad:16:c6:b2:b4:70:ce:36:d5:2f:d9:91:75:3f:41:
8f:c5:7c:f9:1a:86:ee:f9:b6:54:1e:2d:d3:9d:b3:80:1d:2c:
00:08:c7:bf:ae:7c:1d:75:43:5a:a2:c5:1a:db:00:c5:54:d8:
6b:dc:2c:eb:89:01:e1:aa:e7:ac:70:cf:d7:a9:81:19:57:e8:
df:44:8d:8f:11:0a:d4:b0:1a:64:42:db:61:ff:15:e0:4e:c2:
79:9b:a7:09:c9:8a:3c:b2:50:8d:3c:ca:76:3f:ec:74:57:84:
85:aa:c4:41:29:0e:c1:17:df:43:34:99:e4:eb:5e:8f:85:6e:
d6:ce:41:76:4c:0e:ea:84:48:1d:3c:d5:06:4f:6f:0a:64:48:
35:2d:3f:ae:c0:a2:23:f1:f1:de:20:8f:d8:a4:2c:42:99:30:
01:7e:88:3e:ab:e2:dc:88:d0:40:fc:6f:d0:8d:37:e0:c3:80:
1b:a4:7a:58:ce:ac:d9:5a:54:56:2f:5c:c1:a2:f8:66:36:c4:
41:66:4e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:52 2024 by rpki-client on console-fra.rpki-client.org