Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/49ef95-a7f1-471e-b796-b7c8b2afdde5/1/xuHtLWzUJTGYH9iFojaKHV_1Hjg.roa
File: xuHtLWzUJTGYH9iFojaKHV_1Hjg.roa (raw, json)
Hash identifier: 8tKArXctPMnlXnurWDsbQ+dB6hrOwcz4b2Z/0BX2zpY=
Subject key identifier: C6:E1:ED:2D:6C:D4:25:31:98:1F:D8:85:A2:36:8A:1D:5F:F5:1E:38
Certificate issuer: /CN=a1824f252f5b666e20943260d82bfab407e5fba0
Certificate serial: 018AA9A35C4399A566BC060B3633E2106E1D
Authority key identifier: A1:82:4F:25:2F:5B:66:6E:20:94:32:60:D8:2B:FA:B4:07:E5:FB:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYJPJS9bZm4glDJg2Cv6tAfl-6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/49ef95-a7f1-471e-b796-b7c8b2afdde5/1/xuHtLWzUJTGYH9iFojaKHV_1Hjg.roa
Signing time: Mon 18 Sep 2023 18:52:50 +0000
ROA not before: Mon 18 Sep 2023 18:52:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202827
IP address blocks: 185.1.148.0/24 maxlen: 24
2001:7f8:140::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a9:a3:5c:43:99:a5:66:bc:06:0b:36:33:e2:10:6e:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1824f252f5b666e20943260d82bfab407e5fba0
Validity
Not Before: Sep 18 18:52:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6e1ed2d6cd42531981fd885a2368a1d5ff51e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2f:85:d4:c7:e8:44:23:cb:2a:78:39:cc:67:
5d:73:ec:e8:9c:2a:f4:e9:7a:b1:2b:ba:99:d3:0c:
1c:0f:20:2a:ad:c6:d7:1c:0a:7b:87:34:fb:79:c1:
d8:f8:88:64:fb:9e:bd:da:09:99:bf:83:a7:6e:f7:
01:bd:73:94:8b:84:06:9a:64:37:f3:68:c5:5b:20:
b0:29:2d:47:35:82:dd:7b:97:4d:61:62:42:20:9b:
83:da:53:06:14:9b:b5:7b:3d:2e:52:f7:7c:8f:9e:
41:40:fb:29:a4:72:12:76:cf:a5:e6:87:62:a6:d3:
64:3b:34:65:40:ad:a2:26:e0:bf:bc:76:33:23:bf:
85:b0:3b:b5:72:37:69:da:33:c7:87:f6:21:80:4d:
b1:e7:5f:94:3c:f1:45:5a:1e:ac:9f:5a:d0:45:ac:
5c:38:72:f9:9a:7e:99:a1:1b:a6:6b:0d:ab:7b:62:
35:46:64:47:dc:b6:7d:31:0f:54:b6:c6:a8:ef:ec:
28:ff:b4:2e:91:36:98:02:16:1e:19:3b:42:fe:ec:
55:e4:0c:ad:90:00:dc:d2:f1:3e:3e:58:ea:de:f3:
61:b6:14:35:ba:d0:ce:31:36:1b:ad:64:13:da:c0:
e8:ff:51:92:a5:d5:d8:73:42:4e:1c:9b:b0:f3:c1:
52:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:E1:ED:2D:6C:D4:25:31:98:1F:D8:85:A2:36:8A:1D:5F:F5:1E:38
X509v3 Authority Key Identifier:
keyid:A1:82:4F:25:2F:5B:66:6E:20:94:32:60:D8:2B:FA:B4:07:E5:FB:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYJPJS9bZm4glDJg2Cv6tAfl-6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/49ef95-a7f1-471e-b796-b7c8b2afdde5/1/xuHtLWzUJTGYH9iFojaKHV_1Hjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/49ef95-a7f1-471e-b796-b7c8b2afdde5/1/oYJPJS9bZm4glDJg2Cv6tAfl-6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.148.0/24
IPv6:
2001:7f8:140::/48
Signature Algorithm: sha256WithRSAEncryption
84:01:61:fd:97:a1:16:67:9c:2b:ce:e9:0a:5e:87:08:68:ad:
aa:5b:2a:a0:ad:82:4e:80:8f:8f:99:38:4c:72:64:bd:5a:47:
c1:63:39:0c:ab:39:1b:5a:d4:17:82:35:6b:9a:dc:b0:ae:b9:
e7:97:54:b7:45:fa:15:ed:bf:f6:66:f1:24:d3:a2:0c:a3:4b:
d0:33:6c:9c:14:95:43:5d:b4:54:9e:cd:f8:47:d0:01:39:32:
f7:c4:b7:66:dd:60:4e:98:bf:c1:74:b0:06:fc:ae:17:6c:87:
b6:c4:67:8a:16:2d:90:35:fc:9c:e9:07:fc:9f:66:4e:89:da:
47:b6:6d:0b:bc:80:e2:ae:77:d0:92:59:9d:03:ac:02:ce:02:
77:49:24:21:90:76:17:72:8a:22:ae:4d:24:5d:5e:10:65:a8:
ed:60:6c:c3:b7:c8:36:5f:e9:46:39:18:e9:db:5d:6a:a0:98:
e0:92:6a:8a:3f:1c:5c:ef:1a:9a:89:e0:02:16:ef:72:b0:b5:
4d:e2:7f:5d:4f:41:1f:ab:fb:e0:8f:41:a2:de:22:db:67:20:
fc:d1:b8:f3:3e:fa:84:a1:69:fd:db:36:8e:e0:1e:a3:8b:c2:
dd:f7:f4:59:22:5a:c8:4b:8a:36:44:40:9c:b2:26:06:27:c2:
b5:87:80:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:19 2025 by rpki-client