Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/_qwYG4WPS8RJb3TzXAVyEtA_0NM.roa
File: _qwYG4WPS8RJb3TzXAVyEtA_0NM.roa (raw, json)
Hash identifier: oQp7EFt8GMAXZs1sVltFwzBG+b+Jy+Qvr30bHUEQsIw=
Subject key identifier: FE:AC:18:1B:85:8F:4B:C4:49:6F:74:F3:5C:05:72:12:D0:3F:D0:D3
Certificate issuer: /CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Certificate serial: 018D842F1BD2E64FF0BEB35BCAB99A9020BF
Authority key identifier: 33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/_qwYG4WPS8RJb3TzXAVyEtA_0NM.roa
Signing time: Wed 07 Feb 2024 15:28:16 +0000
ROA not before: Wed 07 Feb 2024 15:28:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64432
IP address blocks: 185.161.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:2f:1b:d2:e6:4f:f0:be:b3:5b:ca:b9:9a:90:20:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Validity
Not Before: Feb 7 15:28:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=feac181b858f4bc4496f74f35c057212d03fd0d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:10:d8:6a:a8:c6:f4:00:86:99:83:bd:99:3d:
e0:72:b5:0d:96:7f:9e:82:21:32:e0:61:c5:f1:ff:
7e:b1:17:c7:ab:f0:8a:e6:0f:ca:11:bd:9b:9d:36:
59:e3:71:77:b5:fb:a4:d1:6c:55:3d:57:29:1a:dc:
e0:e7:ed:11:c0:16:5a:61:44:df:2d:9b:8a:d0:f9:
e0:1a:44:47:74:04:c3:c2:7c:89:ea:e6:3b:90:10:
7e:d9:16:10:54:8b:e0:76:5a:6d:44:e5:20:9c:5b:
f7:2b:e7:15:82:8a:14:f0:c7:38:4a:1f:e1:d8:03:
33:0c:f2:e4:b7:ff:b1:c0:9c:ab:e3:b3:7c:3c:86:
2d:7c:8d:40:44:42:a9:e7:b8:7e:e7:9a:8d:ef:6b:
9b:0b:6a:cd:47:fa:ff:12:d5:4a:84:23:8a:d3:95:
30:8f:2e:a7:63:9a:a6:43:79:00:b4:7e:a4:30:53:
42:26:28:52:9d:65:8e:1d:7b:7b:ec:93:05:41:aa:
43:77:9b:50:4f:05:a2:49:7a:7d:bb:d1:43:3c:58:
f1:bf:e2:dd:b7:46:ca:75:83:86:f0:c5:8e:97:d8:
04:07:6b:c7:6d:97:75:c4:cb:4c:f7:ce:0a:40:14:
cf:b7:1a:60:c9:cb:b8:81:d0:ac:e4:74:36:ab:c4:
be:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AC:18:1B:85:8F:4B:C4:49:6F:74:F3:5C:05:72:12:D0:3F:D0:D3
X509v3 Authority Key Identifier:
keyid:33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/_qwYG4WPS8RJb3TzXAVyEtA_0NM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/M_XOH8N5J8taTmexdsemOzL_bok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.79.0/24
Signature Algorithm: sha256WithRSAEncryption
17:51:ec:f4:b5:18:77:3c:9d:5c:07:63:75:2e:75:74:ba:c4:
58:48:b5:77:d7:26:4a:aa:c2:31:ba:e8:5b:f4:71:98:62:d0:
91:58:3f:00:82:ea:66:ef:e4:b2:34:ef:25:66:fd:70:85:f4:
dd:de:3e:2e:da:37:29:65:39:b1:88:51:a7:19:93:69:2f:02:
a3:bc:96:3f:5d:a9:cb:30:db:c0:db:c1:da:f9:66:8c:6c:d4:
b8:8e:36:1a:18:e1:11:46:54:6c:3d:64:dc:17:bc:c3:65:09:
f5:0c:82:7a:c4:60:35:18:1f:ed:2c:3a:46:e8:85:f1:20:dd:
41:5e:bd:c0:e5:16:73:9d:a9:7c:da:a7:aa:9c:5f:84:2b:15:
01:ae:0f:35:f1:07:15:b8:27:dc:cb:0e:ea:d8:b6:28:46:0f:
35:4a:09:12:5d:01:16:00:04:94:14:25:1a:cb:d6:7b:ea:09:
82:a6:e7:fe:4e:1c:75:91:d8:ba:65:e6:bb:00:f2:ea:83:5a:
37:63:10:e0:4b:84:ff:38:19:53:ab:53:f2:4a:32:a8:c0:45:
ce:e6:df:55:bf:0d:2f:ce:98:4f:c5:1b:6e:38:23:32:96:5d:
0e:39:b2:9d:73:f4:fe:34:69:08:e7:58:33:db:f8:23:a6:2e:
94:2c:14:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:09 2024 by rpki-client on console-ams.rpki-client.org