Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/8HpYYCtbNjce6A3ku2AMqNqzBGU.roa
File: 8HpYYCtbNjce6A3ku2AMqNqzBGU.roa (raw, json)
Hash identifier: twnWDU8fE2Y/6Z7oXZpJfPVo61M12QRln/+Km2Qwb5w=
Subject key identifier: F0:7A:58:60:2B:5B:36:37:1E:E8:0D:E4:BB:60:0C:A8:DA:B3:04:65
Certificate issuer: /CN=aaca4f4a737ec09f335ac40633133328213efc3d
Certificate serial: 0181D29C510B9CEC79B88E7F27E013C39447
Authority key identifier: AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/8HpYYCtbNjce6A3ku2AMqNqzBGU.roa
Signing time: Wed 06 Jul 2022 08:24:28 +0000
ROA not before: Wed 06 Jul 2022 08:24:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205876
IP address blocks: 194.5.132.0/24 maxlen: 24
194.5.145.0/24 maxlen: 24
45.152.249.0/24 maxlen: 24
45.152.250.0/24 maxlen: 24
31.24.250.0/24 maxlen: 24
2a12:5040:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d2:9c:51:0b:9c:ec:79:b8:8e:7f:27:e0:13:c3:94:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaca4f4a737ec09f335ac40633133328213efc3d
Validity
Not Before: Jul 6 08:24:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f07a58602b5b36371ee80de4bb600ca8dab30465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:70:6e:ca:8f:89:65:57:20:7d:15:6b:ec:2b:
62:4b:eb:d7:14:18:95:a9:24:98:ef:a1:10:31:ee:
d3:96:1a:64:55:2f:35:12:1e:c8:19:07:1e:2e:ce:
03:41:31:fe:29:d9:39:53:ec:10:7a:66:c1:11:86:
11:1c:68:29:a2:0e:f5:b5:41:0f:f7:2a:80:7d:d7:
6c:13:9e:35:e7:02:9a:a5:99:85:1e:05:d8:8a:c2:
bb:a4:03:99:cf:98:f3:2a:ab:e6:c8:ed:93:dc:25:
34:23:09:70:ad:38:39:4d:43:ca:0c:aa:d0:7a:f8:
57:47:62:e7:4a:d3:41:be:3d:7f:1a:8e:89:d1:05:
ec:f2:ae:e6:65:21:6f:d0:d7:ad:65:5b:08:ba:4b:
8e:5a:9b:43:79:fb:f0:77:86:44:dd:da:1e:9a:01:
bd:10:a0:74:11:c4:16:c9:12:84:af:cd:37:e9:5a:
5f:a9:b7:e5:1c:dd:42:8c:14:15:c7:7b:0a:84:d0:
6c:a9:ca:2b:dd:42:0e:99:c4:fe:d0:6e:4b:3e:53:
2d:07:53:04:b0:54:b8:5e:70:23:32:7d:ef:b2:35:
3c:79:ae:3a:0b:fa:e8:fb:d7:db:05:08:bc:2f:97:
9b:2a:95:44:b2:e0:78:11:47:d8:47:94:8c:15:f8:
43:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7A:58:60:2B:5B:36:37:1E:E8:0D:E4:BB:60:0C:A8:DA:B3:04:65
X509v3 Authority Key Identifier:
keyid:AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/8HpYYCtbNjce6A3ku2AMqNqzBGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/qspPSnN-wJ8zWsQGMxMzKCE-_D0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.250.0/24
45.152.249.0-45.152.250.255
194.5.132.0/24
194.5.145.0/24
IPv6:
2a12:5040:1::/48
Signature Algorithm: sha256WithRSAEncryption
4b:88:74:7a:cb:6f:35:e4:4f:a6:2a:df:8f:18:98:71:7f:6e:
7d:98:56:ae:84:d5:66:b2:f5:b9:29:6b:c4:8e:ed:36:e7:6a:
a8:fb:4d:8f:35:9d:aa:6f:11:d1:89:00:d3:f6:ef:18:d4:55:
2d:c4:cc:80:fc:ee:a4:1a:94:b9:7d:3a:e0:f2:db:ac:9a:ea:
44:b9:83:83:12:67:d9:31:47:0a:bb:f7:8c:6d:d4:68:bb:5d:
05:de:bd:65:0c:93:7f:20:a3:07:dd:99:2e:88:3c:89:e5:37:
ad:ba:58:7b:95:0e:8d:d3:e1:ad:94:ea:cb:12:98:c8:0a:84:
df:e2:fa:c8:49:5c:84:b3:52:35:c0:37:51:f8:33:e3:9b:71:
97:65:21:1a:b5:ac:d3:c8:c1:49:ad:17:96:1d:e5:e3:51:5a:
6f:13:87:78:85:3f:64:f8:e2:2b:c5:f5:4b:ed:c9:5e:6e:95:
50:8e:36:20:25:dd:13:a0:d3:5b:7a:c2:5f:fd:cf:b0:6e:99:
02:e8:be:3a:52:71:fe:0e:7e:48:01:7f:60:64:a4:5c:cf:0d:
39:0b:d9:a1:e6:d9:42:10:21:7d:66:98:06:40:ea:6c:84:23:
eb:56:1b:5b:e4:7c:02:3f:b1:86:0c:e9:82:21:1b:b4:18:7f:
b8:83:06:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:17:06 2025 by rpki-client