Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/552dd8-ceb4-4617-9e9c-0f7ef4e97458/1/6FuULYfJE22P4H852ATmQ2BDjMw.roa
File: 6FuULYfJE22P4H852ATmQ2BDjMw.roa (raw, json)
Hash identifier: /NPxY/xilHZ4rMGBImZZDjYF4JdbBhe38z5BulihvtA=
Subject key identifier: E8:5B:94:2D:87:C9:13:6D:8F:E0:7F:39:D8:04:E6:43:60:43:8C:CC
Certificate issuer: /CN=854c10240f850dfc0d5957a8d5ad4e184adb0057
Certificate serial: 01856F9DD10DEF04FC25F546FA8FF75F70C0
Authority key identifier: 85:4C:10:24:0F:85:0D:FC:0D:59:57:A8:D5:AD:4E:18:4A:DB:00:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUwQJA-FDfwNWVeo1a1OGErbAFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/552dd8-ceb4-4617-9e9c-0f7ef4e97458/1/6FuULYfJE22P4H852ATmQ2BDjMw.roa
Signing time: Sun 01 Jan 2023 23:14:51 +0000
ROA not before: Sun 01 Jan 2023 23:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59456
IP address blocks: 185.55.24.0/22 maxlen: 22
2a01:8cc0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:d1:0d:ef:04:fc:25:f5:46:fa:8f:f7:5f:70:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c10240f850dfc0d5957a8d5ad4e184adb0057
Validity
Not Before: Jan 1 23:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e85b942d87c9136d8fe07f39d804e64360438ccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:35:fb:9b:f0:91:72:5e:ed:b5:9a:09:15:9a:
3c:b1:0b:f4:80:32:7d:dc:9b:8b:78:a0:0b:e6:7b:
eb:40:a6:3e:a8:a3:7c:2b:55:e2:cc:a0:c0:5f:5f:
d7:9d:a6:c5:70:bb:93:73:50:07:86:9b:a7:84:d6:
2d:8b:51:a3:3e:3d:47:d4:2e:d9:37:7e:70:1c:4a:
2f:0e:8c:3a:2a:3a:fe:26:84:8e:51:14:2d:f4:01:
ee:3e:25:8c:36:82:78:31:93:53:4a:b2:c2:32:7d:
c9:66:c6:dd:e1:7f:29:53:5f:6a:b5:d0:2b:4e:2f:
fc:5f:d8:b1:4d:9a:cb:50:4f:a8:e1:44:e5:cd:c5:
3e:c2:cd:78:49:10:98:82:e6:dc:cf:5f:b8:73:43:
e2:34:2b:29:57:12:93:35:9a:3d:75:ba:aa:24:f7:
36:66:22:dd:22:e8:1c:59:60:63:1a:1f:8e:39:f1:
7e:4a:2d:f2:83:5d:34:43:b7:c5:e4:86:53:66:ae:
4e:69:a2:76:e0:59:40:e8:18:dc:1e:33:2e:e3:68:
07:60:60:6f:0f:ec:d8:0b:45:70:5f:37:a6:a0:fd:
2a:cd:03:18:38:78:2b:95:fd:c0:8a:10:93:dc:d9:
92:d7:30:9b:43:33:21:7a:32:2f:b4:e8:85:ec:a4:
03:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:5B:94:2D:87:C9:13:6D:8F:E0:7F:39:D8:04:E6:43:60:43:8C:CC
X509v3 Authority Key Identifier:
keyid:85:4C:10:24:0F:85:0D:FC:0D:59:57:A8:D5:AD:4E:18:4A:DB:00:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUwQJA-FDfwNWVeo1a1OGErbAFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/552dd8-ceb4-4617-9e9c-0f7ef4e97458/1/6FuULYfJE22P4H852ATmQ2BDjMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/552dd8-ceb4-4617-9e9c-0f7ef4e97458/1/hUwQJA-FDfwNWVeo1a1OGErbAFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.24.0/22
IPv6:
2a01:8cc0::/32
Signature Algorithm: sha256WithRSAEncryption
97:c0:f3:d8:f8:d3:a3:e7:01:e6:bd:a4:2e:4d:86:61:0e:ca:
23:18:6c:ee:40:4f:df:c3:df:05:90:ca:5d:e5:9d:95:ca:62:
e8:06:aa:53:a5:75:e3:31:af:d4:74:c1:7d:6d:ab:2e:27:a7:
16:4e:17:4a:a8:65:45:d3:76:e5:71:13:57:92:78:7f:43:62:
82:68:83:14:7a:f5:96:4b:65:ea:89:d2:bf:69:40:d8:2a:3a:
5c:fc:97:23:c2:85:77:34:cb:f0:26:2f:45:4c:50:4d:90:1c:
2a:81:ea:73:83:b3:3e:9e:50:d6:d6:0b:79:d1:f5:25:04:ee:
da:e4:d8:1b:b7:69:e1:11:73:2d:bf:79:b2:74:2c:a3:6f:7a:
82:23:93:c5:dc:09:c5:61:b1:73:a1:a7:3d:77:73:c5:ca:b0:
47:f5:c6:ed:1e:bc:90:34:3a:c0:c4:cc:90:fc:69:52:23:cc:
43:3d:c2:59:5f:33:ce:6d:f4:68:ac:aa:8b:4d:cb:bf:d3:83:
40:71:9d:e3:6c:01:8b:46:58:25:ca:ec:fb:2c:4d:ed:8f:f7:
a1:08:a3:7c:81:22:70:8f:d3:fe:6e:39:12:87:41:7a:d6:e0:
7a:d8:6b:7c:cd:1f:16:11:85:f8:e6:01:51:01:a5:ad:a4:18:
a0:95:39:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 3 16:00:46 2025 by rpki-client