Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/e3170e-715c-4c40-ac3d-9ae0feaf9939/1/_fXiXHlBOI603AZdiiJBr8j1_aA.roa
File: _fXiXHlBOI603AZdiiJBr8j1_aA.roa (raw, json)
Hash identifier: HhbVuDiz0moINcP6t9ZoYLcAQczE3nVxhAUCDGnhvCA=
Subject key identifier: FD:F5:E2:5C:79:41:38:8E:B4:DC:06:5D:8A:22:41:AF:C8:F5:FD:A0
Certificate issuer: /CN=3d0665b6676875acf60e01522b9343c040a5ffe1
Certificate serial: 01856D6F8C631251EFA6AD24C33365BED4EB
Authority key identifier: 3D:06:65:B6:67:68:75:AC:F6:0E:01:52:2B:93:43:C0:40:A5:FF:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PQZltmdodaz2DgFSK5NDwECl_-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/e3170e-715c-4c40-ac3d-9ae0feaf9939/1/_fXiXHlBOI603AZdiiJBr8j1_aA.roa
Signing time: Sun 01 Jan 2023 13:05:05 +0000
ROA not before: Sun 01 Jan 2023 13:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43309
IP address blocks: 185.234.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:8c:63:12:51:ef:a6:ad:24:c3:33:65:be:d4:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d0665b6676875acf60e01522b9343c040a5ffe1
Validity
Not Before: Jan 1 13:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdf5e25c7941388eb4dc065d8a2241afc8f5fda0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2e:0f:9c:61:25:69:24:63:46:35:1a:a3:ff:
fd:47:e6:5d:36:44:3f:6a:b8:e9:ae:de:b4:60:ac:
40:2d:cc:12:f5:5e:45:0c:d9:bc:3d:12:77:24:93:
45:5f:77:dd:dd:2a:90:5f:60:a6:7b:78:ea:fc:4b:
5f:ce:71:b5:49:89:d3:46:76:b8:78:ee:32:49:9d:
0a:39:68:98:72:f6:aa:67:4b:65:43:31:10:be:c6:
7e:2b:1e:4b:9f:bc:fb:fe:45:92:5f:f9:5b:ff:e5:
65:7a:54:a0:67:b6:0f:96:59:59:6f:0a:7f:8a:bc:
6e:91:59:92:f3:32:a0:f3:ad:24:c4:80:8e:a6:19:
43:f5:ef:89:27:07:9c:f8:93:20:99:ba:6c:e4:ff:
52:50:cd:15:f2:5a:bc:0c:9a:51:cb:38:72:40:89:
81:d5:a4:ac:26:17:32:af:a6:81:c6:d0:e9:29:21:
ea:d3:78:81:80:cf:57:a9:ec:a5:f6:e9:c4:ad:97:
30:6a:3e:1c:bf:e0:dd:25:73:4c:11:ac:c1:46:12:
2c:1c:75:56:09:b3:59:e6:16:81:9d:79:d1:da:5e:
a8:71:60:cf:15:b9:2a:df:bb:60:31:ff:01:8c:a3:
1c:a5:6e:58:f0:4c:8b:7c:21:83:2a:ad:48:51:be:
22:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F5:E2:5C:79:41:38:8E:B4:DC:06:5D:8A:22:41:AF:C8:F5:FD:A0
X509v3 Authority Key Identifier:
keyid:3D:06:65:B6:67:68:75:AC:F6:0E:01:52:2B:93:43:C0:40:A5:FF:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PQZltmdodaz2DgFSK5NDwECl_-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/e3170e-715c-4c40-ac3d-9ae0feaf9939/1/_fXiXHlBOI603AZdiiJBr8j1_aA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/e3170e-715c-4c40-ac3d-9ae0feaf9939/1/PQZltmdodaz2DgFSK5NDwECl_-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.252.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:15:97:5f:13:a0:fb:b3:7e:3d:4d:8f:58:ab:91:d0:62:af:
92:82:3a:4b:20:e7:85:83:1b:fc:b2:71:c2:3a:d6:0e:1e:e8:
94:bf:24:2c:3a:86:04:1d:34:17:6b:f5:9b:33:48:92:64:c2:
a0:32:4e:6b:9c:51:9f:7c:d1:02:3d:18:c2:bf:49:6a:46:50:
6e:16:f1:e3:61:79:0d:ce:1e:3d:62:47:81:2b:3e:0a:20:02:
4e:01:96:38:7e:de:b9:34:f7:1c:3d:f2:8d:38:92:9c:e0:47:
09:78:d1:2e:ab:6a:d3:9d:a8:03:48:b4:0d:17:76:40:01:d6:
5c:a0:c5:e0:42:0d:27:6a:b9:79:e8:65:06:f6:9c:72:65:ec:
4a:af:f0:82:f7:fe:44:ee:f6:f0:f6:51:69:8b:4d:08:dc:4b:
1e:fa:cd:d8:08:64:39:78:ef:98:cf:3e:7f:f1:92:1c:b1:2b:
36:d5:1d:c6:d0:f8:ff:d0:e7:d6:58:ab:d1:c1:52:48:be:c4:
47:4d:e2:11:63:03:b1:d2:ee:3d:2b:8b:51:59:0a:33:0b:29:
e4:e1:3c:e0:e2:fa:6b:58:dc:dc:d0:7b:b6:03:f7:54:86:22:
d9:c0:dd:34:12:c6:bd:fe:cc:5f:c5:2f:e1:d9:3f:84:11:33:
31:75:b3:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:28 2025 by rpki-client