Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/AqJHCDYL9o3wKeJlWQgz2TBpF6M.roa
File: AqJHCDYL9o3wKeJlWQgz2TBpF6M.roa (raw, json)
Hash identifier: dG2wu296HZBA+jomNZqHSA336xpzHqILBySjIbNJQaQ=
Subject key identifier: 02:A2:47:08:36:0B:F6:8D:F0:29:E2:65:59:08:33:D9:30:69:17:A3
Certificate issuer: /CN=26472cfdcd392a184f1f051320bba806a204c6cd
Certificate serial: 0184E12B17110D2CD6FFB889582FD063B7C4
Authority key identifier: 26:47:2C:FD:CD:39:2A:18:4F:1F:05:13:20:BB:A8:06:A2:04:C6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jkcs_c05KhhPHwUTILuoBqIExs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/AqJHCDYL9o3wKeJlWQgz2TBpF6M.roa
Signing time: Mon 05 Dec 2022 07:23:28 +0000
ROA not before: Mon 05 Dec 2022 07:23:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25227
IP address blocks: 185.124.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:2b:17:11:0d:2c:d6:ff:b8:89:58:2f:d0:63:b7:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26472cfdcd392a184f1f051320bba806a204c6cd
Validity
Not Before: Dec 5 07:23:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02a24708360bf68df029e265590833d9306917a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e1:dd:2c:42:36:6e:12:c2:0c:41:f0:19:f5:
18:14:62:87:13:0d:d0:66:5c:38:07:fb:51:96:e9:
64:a3:d8:53:9d:77:bd:1f:e1:67:87:61:3b:fb:89:
eb:48:4e:a4:e0:13:82:38:fb:a4:4b:86:f3:d4:ff:
71:e3:ed:1c:79:eb:1e:23:02:2c:ce:76:30:69:ad:
ea:b7:a1:b3:2f:af:a9:c0:0d:dc:85:cd:d1:3f:77:
f2:51:c0:9a:2b:f6:60:bc:b5:f3:05:9c:24:2f:18:
be:91:41:4a:ce:01:fa:51:19:17:fc:c5:6f:eb:cb:
ba:74:6e:f3:95:81:0d:d6:de:bd:c2:dc:a3:73:8c:
eb:1e:82:9d:e1:f2:85:f6:63:06:de:55:30:39:62:
45:26:cc:3b:f5:4d:c2:6d:ac:e3:73:ce:8e:ec:f1:
d9:4c:d7:ab:68:bc:23:22:52:21:b5:34:5e:30:d9:
af:46:58:2a:ce:8a:11:0a:7d:e9:70:85:b3:66:f1:
b8:ff:6e:95:79:3a:62:30:33:7b:09:9e:45:32:3f:
d2:bf:5b:49:1e:b7:36:94:d3:7f:8e:56:3d:2b:c0:
67:b2:0f:b4:4b:61:58:0b:69:a8:e2:70:1c:bd:3a:
4e:f0:af:5e:4f:0b:86:6a:bc:42:66:e9:cd:ba:36:
c8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A2:47:08:36:0B:F6:8D:F0:29:E2:65:59:08:33:D9:30:69:17:A3
X509v3 Authority Key Identifier:
keyid:26:47:2C:FD:CD:39:2A:18:4F:1F:05:13:20:BB:A8:06:A2:04:C6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jkcs_c05KhhPHwUTILuoBqIExs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/AqJHCDYL9o3wKeJlWQgz2TBpF6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/Jkcs_c05KhhPHwUTILuoBqIExs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.64.0/24
Signature Algorithm: sha256WithRSAEncryption
86:85:a6:a9:96:f9:18:2b:29:9d:43:32:a7:26:8c:a7:6a:de:
f1:07:ad:32:90:49:67:8c:da:19:58:90:a5:1f:81:30:ff:91:
b6:64:5b:e4:d8:ef:37:0f:92:b3:9d:1f:b2:91:21:73:9d:92:
cf:e2:81:8f:5d:d0:f8:15:d7:cf:2a:5e:e3:58:2c:87:b6:de:
34:12:05:f3:22:ba:de:6c:2c:63:61:42:8e:e0:9d:ba:0e:b2:
b6:58:f7:c4:d6:95:15:27:4c:39:5d:c0:b4:09:30:8f:a5:ea:
59:9a:f9:b8:73:80:06:ba:87:76:9e:25:2a:0e:b4:e5:8c:93:
fa:83:61:2e:89:73:75:95:ca:30:8e:45:dc:02:ef:b8:f5:71:
03:f3:f6:48:d9:91:50:d3:09:a9:f5:f7:7f:fa:9e:7f:18:78:
00:b7:43:ff:3a:78:4b:34:25:66:30:5c:ef:39:c6:2d:40:a3:
39:29:6b:b3:89:33:5d:e5:9e:47:cc:8e:72:63:f0:33:1d:1d:
1a:e6:ef:10:b4:5a:98:b1:5f:32:81:87:1a:7f:6e:44:3f:7e:
6d:40:e6:6b:5a:7d:06:a2:ae:6e:68:7b:a4:4b:af:3a:ef:c7:
59:8a:26:cd:d3:71:66:e1:28:76:ef:ab:e7:a4:b7:18:55:44:
8f:16:b4:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:27 2025 by rpki-client