Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/a_6EfM_eUhmEh3H7meW3ObA4-Go.roa
File: a_6EfM_eUhmEh3H7meW3ObA4-Go.roa (raw, json)
Hash identifier: NcCAQGLpBENo3heEl3G42fQyl7X50upMygvTrvmVy/A=
Subject key identifier: 6B:FE:84:7C:CF:DE:52:19:84:87:71:FB:99:E5:B7:39:B0:38:F8:6A
Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65
Certificate serial: 019451101121A18E75B7EC6E06170E849E20
Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/a_6EfM_eUhmEh3H7meW3ObA4-Go.roa
Signing time: Fri 10 Jan 2025 16:33:14 +0000
ROA not before: Fri 10 Jan 2025 16:33:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 26383
IP address blocks: 185.100.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:51:10:11:21:a1:8e:75:b7:ec:6e:06:17:0e:84:9e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67499595a65aab0b53768def08091e31061e9e65
Validity
Not Before: Jan 10 16:33:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6bfe847ccfde5219848771fb99e5b739b038f86a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:de:d5:3b:84:20:5c:38:b9:15:ef:af:df:07:
2a:cd:df:52:8c:4f:ee:d9:c3:2d:e5:b0:25:90:18:
52:bc:d5:ce:70:9e:5a:72:75:bd:cd:03:27:b4:ff:
4e:92:7e:0d:dd:df:90:d3:ee:e9:cf:60:7d:4f:58:
23:55:7e:fb:40:5d:1d:50:1d:47:1b:5b:96:13:ba:
d2:6c:9c:f7:14:02:bd:d4:86:bc:b5:3e:25:35:7e:
5a:c8:bf:81:80:4c:66:f4:97:7b:78:f8:1e:0f:4d:
34:19:74:6c:54:23:5e:51:e7:1e:52:04:c1:a9:9e:
9c:75:f2:b8:df:07:25:1e:90:e9:a1:ac:04:cf:bc:
45:85:93:d9:97:1e:0d:fd:00:e3:7a:b3:c6:72:a5:
b9:fd:e4:05:f2:34:58:dc:b4:7c:9e:bd:67:fb:5e:
51:4a:e0:c2:82:98:77:5e:f6:66:4c:26:6b:ad:cd:
29:00:2a:8d:2f:b3:fe:e9:a7:ac:57:c0:b4:88:cb:
8f:7e:cd:c5:8d:32:b5:04:65:d0:3e:a0:68:a2:1d:
8a:a7:dd:e8:35:e9:6b:f0:8d:87:23:f0:93:16:99:
c0:d1:f6:20:0c:2a:c4:89:ed:b5:fd:1b:54:31:f7:
19:27:4b:01:f7:82:c2:0a:47:93:49:13:d3:f3:66:
8e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:FE:84:7C:CF:DE:52:19:84:87:71:FB:99:E5:B7:39:B0:38:F8:6A
X509v3 Authority Key Identifier:
keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/a_6EfM_eUhmEh3H7meW3ObA4-Go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.100.168.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d7:4c:87:7f:c4:99:ca:71:7e:39:35:a9:76:6c:71:ce:e3:
ee:08:73:b7:9e:98:ba:d0:0d:28:28:a6:a7:f0:0f:33:13:3d:
c7:9f:ac:f0:76:0a:e5:0c:72:1c:6e:d8:e2:a7:00:ac:e9:b0:
4e:30:1d:df:3e:b3:03:e6:89:56:4f:2e:dd:26:90:c8:58:02:
9c:81:33:32:26:8c:8b:6e:16:95:90:25:23:dd:5b:1e:c1:a2:
32:2f:85:9e:68:0c:7a:46:8c:f8:bf:ae:ba:58:28:59:52:0d:
f9:c0:d6:15:f7:8a:80:cd:41:04:c1:90:21:bf:15:b4:8a:83:
8f:a4:01:98:a2:87:d7:e8:d8:58:ab:d0:28:c6:af:1d:74:64:
5e:6e:84:fe:f5:96:7d:d2:d2:50:4f:b5:58:33:f1:5a:64:fd:
ce:3a:9e:2f:57:f0:5f:19:2a:fc:0b:e2:5e:42:05:b5:fa:bc:
3b:7f:75:9c:21:89:70:58:12:63:12:a0:e9:27:75:ac:89:c1:
b4:cb:aa:1a:01:73:a2:f7:0f:54:36:82:cd:89:17:1b:d7:cb:
c4:99:6f:04:1a:d7:5f:c8:57:b0:5a:3a:f6:ed:68:a0:ab:11:
4a:40:49:d3:6e:b7:b8:bf:76:08:26:1c:5d:cf:bf:bd:04:c6:
03:f1:71:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:28 2025 by rpki-client