Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/4UasjN7N-YZboQl7gHw7KOJPpW8.roa
File: 4UasjN7N-YZboQl7gHw7KOJPpW8.roa (raw, json)
Hash identifier: e6WD7JVyKbJZlMJdvL169F7Lo2VlNbo/ZtfP8+jwico=
Subject key identifier: E1:46:AC:8C:DE:CD:F9:86:5B:A1:09:7B:80:7C:3B:28:E2:4F:A5:6F
Certificate issuer: /CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Certificate serial: 0184EC2554159654AC7C907FBB27480E4F03
Authority key identifier: 8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/4UasjN7N-YZboQl7gHw7KOJPpW8.roa
Signing time: Wed 07 Dec 2022 10:33:00 +0000
ROA not before: Wed 07 Dec 2022 10:33:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33185
IP address blocks: 37.221.110.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:25:54:15:96:54:ac:7c:90:7f:bb:27:48:0e:4f:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e747481f2c98fbb70dca8d65c23de4fca37583d
Validity
Not Before: Dec 7 10:33:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e146ac8cdecdf9865ba1097b807c3b28e24fa56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:df:4a:71:32:2c:8d:ae:8d:98:02:40:22:4e:
c4:f0:56:e5:28:25:0e:c2:c1:88:0f:e6:dc:9f:33:
08:a7:6c:52:7c:d9:86:ce:88:ea:e6:60:0f:2a:01:
d6:bf:bf:7b:e0:de:51:ce:02:11:99:ff:da:0e:a0:
44:79:0d:9f:cd:18:7a:7e:30:b5:b5:24:bc:b3:33:
1f:03:d8:82:c5:0d:f1:19:73:ca:ce:a3:d4:19:d3:
3e:81:8c:45:f8:59:a0:28:ef:51:5e:dc:76:99:ef:
cd:e8:09:08:9c:2f:ff:a2:ec:c3:07:a9:90:a4:b0:
99:28:e1:5a:03:3c:b5:6f:a9:33:74:75:55:70:e8:
41:49:64:9d:b3:1c:24:59:e7:aa:54:27:94:98:27:
b3:2a:ba:8a:b3:03:fa:ce:86:17:8c:93:01:e3:1a:
a7:1a:79:4f:f6:49:3e:8a:f5:27:df:07:db:a1:02:
9c:b0:28:99:5c:86:99:cb:01:ae:4f:16:a3:56:1e:
a7:2b:fe:71:44:cb:f5:0f:75:d3:1f:15:7d:7f:f2:
41:49:bf:c3:f4:1f:e0:15:6d:64:60:ef:fd:c3:4d:
c8:b6:e7:49:a6:97:51:37:dd:55:bd:50:dc:04:f7:
36:22:0e:45:14:cf:28:a6:66:ab:7c:8b:17:de:77:
0d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:46:AC:8C:DE:CD:F9:86:5B:A1:09:7B:80:7C:3B:28:E2:4F:A5:6F
X509v3 Authority Key Identifier:
keyid:8E:74:74:81:F2:C9:8F:BB:70:DC:A8:D6:5C:23:DE:4F:CA:37:58:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnR0gfLJj7tw3KjWXCPeT8o3WD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/4UasjN7N-YZboQl7gHw7KOJPpW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/40db6b-da85-4c9d-a948-6521d395f132/1/jnR0gfLJj7tw3KjWXCPeT8o3WD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.110.0/24
Signature Algorithm: sha256WithRSAEncryption
49:6e:8b:27:8e:13:67:a0:19:0a:bc:09:5d:50:4b:96:35:44:
3c:52:bc:d0:bd:99:7c:ae:0d:fe:65:1e:f8:8c:f9:4e:5b:6e:
4f:7c:e3:a4:4c:f4:63:25:e6:58:aa:26:b1:73:e5:9d:aa:e6:
d0:1e:30:50:16:7d:5d:93:2e:f8:69:33:d6:7a:6c:12:7c:e0:
46:19:3b:a2:bc:0f:77:ec:dc:5e:c3:25:ea:bc:58:78:15:f2:
32:d7:9c:d0:42:61:b1:a9:0d:70:ed:38:13:bc:d0:3d:69:24:
95:a9:ed:cf:a4:fd:50:7e:c1:f3:75:57:1e:d7:a7:a7:52:4c:
e6:bc:b7:af:1b:7c:42:b0:a9:0a:62:b9:90:10:c9:8c:d8:d4:
eb:f6:e6:ee:93:89:ff:24:ea:d1:05:dc:e5:26:d3:a4:ac:38:
69:f2:1f:6c:a5:00:89:fe:0b:0f:3d:d8:4c:f0:8e:94:3d:00:
67:9b:e2:9e:83:6c:5a:94:39:4f:fa:18:7d:3b:b0:cf:38:84:
c9:d2:27:e4:5f:47:a0:03:0b:d2:12:9e:2b:e5:20:02:12:d8:
a8:0f:02:03:ca:42:f1:c2:b3:90:85:6b:2f:c4:2e:d6:1e:51:
75:8f:f2:30:31:dd:37:f0:86:6c:dc:89:e3:ec:01:6e:f1:81:
f9:ea:cd:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:32:46 2025 by rpki-client