Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/SoY0QVPZbJuL0Sk7li-LUWtg1as.roa
File: SoY0QVPZbJuL0Sk7li-LUWtg1as.roa (raw, json)
Hash identifier: cKTXHHEd42dEbdFfErxOFqf76hCA+VO2s6BDDudy51w=
Subject key identifier: 4A:86:34:41:53:D9:6C:9B:8B:D1:29:3B:96:2F:8B:51:6B:60:D5:AB
Certificate issuer: /CN=43b0105bccb9e6093120767354a8b8493cbe4cd6
Certificate serial: 018515F49ACBFF900FDAC69853355CCD6A30
Authority key identifier: 43:B0:10:5B:CC:B9:E6:09:31:20:76:73:54:A8:B8:49:3C:BE:4C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q7AQW8y55gkxIHZzVKi4STy-TNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/SoY0QVPZbJuL0Sk7li-LUWtg1as.roa
Signing time: Thu 15 Dec 2022 13:23:50 +0000
ROA not before: Thu 15 Dec 2022 13:23:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34688
IP address blocks: 194.116.252.0/23 maxlen: 23
194.187.72.0/22 maxlen: 22
46.250.160.0/19 maxlen: 19
185.2.60.0/22 maxlen: 22
46.250.168.0/24 maxlen: 24
2a01:5e00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:15:f4:9a:cb:ff:90:0f:da:c6:98:53:35:5c:cd:6a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43b0105bccb9e6093120767354a8b8493cbe4cd6
Validity
Not Before: Dec 15 13:23:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a86344153d96c9b8bd1293b962f8b516b60d5ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7f:7c:84:70:00:cc:fa:96:ba:fc:0b:60:81:
95:f3:15:ad:56:10:ce:03:77:48:ed:c6:70:aa:2d:
8d:62:ef:20:12:84:69:b9:b9:ae:30:6e:72:eb:84:
2f:fd:68:51:ec:30:a3:90:4e:60:d5:c5:16:63:a9:
99:36:a5:a9:a1:59:cc:2f:c2:3b:73:d3:d3:eb:17:
36:1f:46:ff:80:8e:c0:5b:35:b1:dc:97:a4:8e:d7:
4c:b2:15:bb:4b:03:93:77:b4:ba:4c:8d:be:a3:a2:
e9:33:f2:a5:b0:fe:42:98:41:39:96:0d:fd:60:9f:
64:98:32:5f:2a:24:9d:77:09:6f:85:b6:a0:64:ea:
44:f3:62:7f:7d:86:f2:ed:d4:af:5d:4d:63:67:d1:
79:f3:33:66:79:16:bd:6a:26:e6:bf:0a:9e:13:46:
3b:16:21:e8:5a:17:0a:0a:d7:50:e5:06:6d:21:4e:
21:7f:19:6c:51:75:2a:75:c4:cb:ba:22:3d:a8:ab:
04:04:91:fa:a4:ef:1a:a4:5a:eb:a4:02:6a:6b:82:
09:ef:84:43:f0:b4:76:4a:13:44:01:00:1c:51:c5:
23:3c:07:c7:cb:4d:d7:73:7d:78:58:90:1e:4b:c9:
6d:13:9f:b0:12:4c:8a:5f:f4:67:33:dd:e9:71:cf:
b4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:86:34:41:53:D9:6C:9B:8B:D1:29:3B:96:2F:8B:51:6B:60:D5:AB
X509v3 Authority Key Identifier:
keyid:43:B0:10:5B:CC:B9:E6:09:31:20:76:73:54:A8:B8:49:3C:BE:4C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q7AQW8y55gkxIHZzVKi4STy-TNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/SoY0QVPZbJuL0Sk7li-LUWtg1as.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f75c65-885e-417d-8076-bf7d8fca46e1/1/Q7AQW8y55gkxIHZzVKi4STy-TNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.250.160.0/19
185.2.60.0/22
194.116.252.0/23
194.187.72.0/22
IPv6:
2a01:5e00::/32
Signature Algorithm: sha256WithRSAEncryption
28:ce:37:f7:af:e7:a6:98:65:56:cd:d3:e4:37:8d:8f:78:ee:
3c:a8:3c:88:6c:1d:23:c4:4d:a0:23:95:da:7b:5a:72:be:05:
d5:bf:9c:f9:86:14:36:0b:cd:30:43:5e:3f:3e:09:08:e5:86:
3b:71:c6:99:57:61:66:ef:ac:aa:35:84:29:5b:e4:e1:bd:07:
4b:a2:e0:fa:32:3a:b4:38:e3:a3:c2:dc:72:61:c0:70:04:66:
21:43:b3:10:57:b9:4c:ad:47:6c:25:f7:6e:90:a9:b3:c6:8f:
52:29:14:24:3c:1c:3c:b8:7e:75:a6:78:ad:a4:ea:6a:8a:11:
db:87:a0:71:2a:6b:3d:58:0e:fa:f1:85:a4:ca:d2:1c:4c:48:
07:a6:24:db:89:3d:a0:59:2b:bf:1f:99:c6:24:09:0d:30:e9:
4d:7a:88:b8:fb:5c:4d:a8:8f:f7:e9:6a:10:f5:3e:6c:78:c8:
cb:17:b0:ad:d9:12:78:d0:c2:79:61:61:e4:ea:10:5f:b7:74:
1b:32:aa:b7:ec:61:a8:1a:4d:a8:de:fd:90:5c:db:a4:22:e8:
9f:e2:3e:ce:13:38:b5:76:7b:a7:d6:1e:62:06:87:ca:3b:44:
86:16:7a:b2:66:05:7b:6c:c4:9a:e4:8a:d5:60:02:b2:5e:7b:
26:22:20:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:17 2024 by rpki-client on console-fra.rpki-client.org