Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/34g0IvGnJTURMvnZU37LhCQGuSA.roa
File: 34g0IvGnJTURMvnZU37LhCQGuSA.roa (raw, json)
Hash identifier: CIVuBdM/xu7iZxeCDVaAuYorDM3qw2i4G1fSp71wPJQ=
Subject key identifier: DF:88:34:22:F1:A7:25:35:11:32:F9:D9:53:7E:CB:84:24:06:B9:20
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 0186CD194ED640A26ED639AC022E875EB97C
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/34g0IvGnJTURMvnZU37LhCQGuSA.roa
Signing time: Fri 10 Mar 2023 19:57:13 +0000
ROA not before: Fri 10 Mar 2023 19:57:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38337
IP address blocks: 185.232.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cd:19:4e:d6:40:a2:6e:d6:39:ac:02:2e:87:5e:b9:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Mar 10 19:57:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df883422f1a725351132f9d9537ecb842406b920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:b7:d9:de:55:fb:cf:d8:99:43:32:fb:94:
69:fe:e7:e6:4c:99:fe:fa:ec:a4:38:85:b2:5b:32:
09:3b:ec:0f:f5:2b:13:e7:2c:a8:e1:03:43:ef:83:
b9:3f:a9:06:b4:e5:d3:30:9d:0a:d2:c3:e8:06:a3:
20:4c:b3:ae:3d:bb:d4:3d:59:4d:bb:b2:fb:df:07:
18:1d:39:b9:83:04:64:3d:e4:b0:8d:8b:57:82:27:
ec:5c:4b:1f:ab:c4:a9:84:db:89:b9:a0:ab:92:10:
59:35:61:3c:89:21:87:08:6c:2c:30:72:c6:a9:f9:
e1:4c:eb:3d:78:8e:54:1c:7b:a9:8e:0b:38:9e:75:
d1:f3:5a:1a:62:c7:84:3d:7d:87:e5:76:6e:14:34:
93:fe:05:24:90:19:5f:c5:bc:47:0c:55:d3:f3:1a:
de:9e:8c:22:df:f8:8e:81:6c:b8:9a:4e:a4:97:18:
d5:6b:1d:a3:fd:c9:d2:cf:3b:81:94:15:81:8f:a2:
bb:a0:99:68:fb:0a:96:11:49:79:0b:93:e2:a7:c4:
ea:f7:46:3a:a5:21:6f:ea:e5:46:97:41:65:71:36:
e1:44:ab:21:20:fb:9b:ee:7c:75:9c:e4:b7:76:56:
fa:82:32:d0:53:9d:8f:33:88:b2:c0:80:a2:09:3d:
c6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:88:34:22:F1:A7:25:35:11:32:F9:D9:53:7E:CB:84:24:06:B9:20
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/34g0IvGnJTURMvnZU37LhCQGuSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.18.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:af:19:e0:49:67:59:e5:1d:53:8f:0c:8a:13:dd:85:5d:46:
c0:64:19:8c:52:96:d0:a0:9e:ed:da:0b:a5:b1:9a:4b:76:80:
c0:ae:35:26:45:7c:f2:b4:12:0c:f2:06:1b:94:71:ce:33:d8:
5b:ab:1f:64:5f:fe:2a:cd:3f:70:6a:21:68:41:17:0c:f3:b4:
b1:0c:ad:d2:d9:b0:83:11:21:6e:ce:30:0a:75:70:0d:ef:f4:
04:5d:51:eb:8a:25:b8:ea:ea:a4:e6:8d:33:a9:48:9e:a1:68:
9b:2f:dc:ad:79:d7:f6:5c:4e:67:07:c0:ee:e9:4c:6e:bb:53:
7d:1b:f6:cf:71:91:f3:7a:25:05:fd:40:15:a2:ab:83:2b:d1:
1d:b1:e9:5f:fd:23:cc:c6:a0:d2:62:a6:9f:fb:23:77:36:5e:
83:a2:6a:25:bd:3a:fe:c9:c9:20:82:09:d0:50:51:17:a0:56:
59:fb:72:b3:f2:27:54:9d:f1:be:4d:e1:a3:0f:53:11:b9:08:
b3:c7:fa:77:2f:4b:aa:95:d5:ea:7b:bf:63:77:95:30:64:d4:
8f:61:6b:e6:aa:9a:43:79:ef:b0:67:eb:4a:a8:25:04:84:ba:
09:ad:39:eb:a8:65:83:30:aa:72:f3:ef:6a:da:24:12:74:0b:
e8:7e:32:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:36 2025 by rpki-client