Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/dea22b-0587-4a2c-a7f5-a6f0f8637cc0/1/TGCBmtejqqoP3ew-AKibHAoUA9k.roa
File: TGCBmtejqqoP3ew-AKibHAoUA9k.roa (raw, json)
Hash identifier: qEyzqc7OoE9I/4z4rvvt38C2weG8J1ImRjVs/9Ey1Q8=
Subject key identifier: 4C:60:81:9A:D7:A3:AA:AA:0F:DD:EC:3E:00:A8:9B:1C:0A:14:03:D9
Certificate issuer: /CN=41b502a16de3458db7e830591f2841fd9483c69a
Certificate serial: 0A6E0D3E
Authority key identifier: 41:B5:02:A1:6D:E3:45:8D:B7:E8:30:59:1F:28:41:FD:94:83:C6:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QbUCoW3jRY236DBZHyhB_ZSDxpo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/dea22b-0587-4a2c-a7f5-a6f0f8637cc0/1/TGCBmtejqqoP3ew-AKibHAoUA9k.roa
Signing time: Tue 29 Mar 2022 14:55:36 +0000
ROA not before: Tue 29 Mar 2022 14:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60233
IP address blocks: 185.47.252.0/22 maxlen: 24
2a04:5f80::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174984510 (0xa6e0d3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41b502a16de3458db7e830591f2841fd9483c69a
Validity
Not Before: Mar 29 14:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c60819ad7a3aaaa0fddec3e00a89b1c0a1403d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:df:95:f1:a5:72:60:5b:05:c1:20:d2:02:58:
de:88:b7:83:2c:fc:81:b8:2d:4f:41:c2:ba:50:85:
c4:08:46:6d:85:10:2d:fe:b6:07:6a:b3:8b:02:88:
81:b1:6c:a9:66:6f:27:6c:41:d0:59:e0:32:cf:50:
82:12:d6:2f:75:0a:45:6c:44:25:a3:02:47:0c:7b:
71:19:97:ce:18:c1:56:6d:f3:ee:f0:ab:97:6b:35:
ed:c8:54:ea:71:4a:82:30:af:75:c8:db:e0:9e:11:
38:a1:4a:c8:86:99:73:84:7b:e8:c4:59:4e:fe:96:
6a:68:a4:74:b3:1c:cf:cf:6c:86:99:c1:46:7a:b8:
27:f9:e5:44:06:59:f6:65:c8:cb:68:4b:04:8d:46:
c8:c9:b1:24:79:87:fc:19:cb:05:01:5d:ff:12:44:
c6:e0:c2:f0:2f:28:9f:ec:a8:fe:81:7b:ef:cf:2b:
37:e1:5a:27:d5:bc:2e:d8:7c:87:1b:39:7e:17:c5:
e1:e0:b0:e9:f6:e9:98:3d:53:22:ae:3d:61:63:f3:
d3:b9:0f:12:b6:28:ef:df:36:63:53:df:99:50:72:
62:d1:b7:23:63:08:cf:92:53:d9:ab:3d:53:51:b8:
43:1b:2d:6b:60:3f:27:cc:5b:bb:61:b9:a4:b2:f5:
94:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:60:81:9A:D7:A3:AA:AA:0F:DD:EC:3E:00:A8:9B:1C:0A:14:03:D9
X509v3 Authority Key Identifier:
keyid:41:B5:02:A1:6D:E3:45:8D:B7:E8:30:59:1F:28:41:FD:94:83:C6:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QbUCoW3jRY236DBZHyhB_ZSDxpo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/dea22b-0587-4a2c-a7f5-a6f0f8637cc0/1/TGCBmtejqqoP3ew-AKibHAoUA9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/dea22b-0587-4a2c-a7f5-a6f0f8637cc0/1/QbUCoW3jRY236DBZHyhB_ZSDxpo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.252.0/22
IPv6:
2a04:5f80::/29
Signature Algorithm: sha256WithRSAEncryption
89:82:ff:15:74:7f:ab:81:c2:27:5f:c4:43:d4:6a:02:db:eb:
77:1f:00:c4:c6:b3:0f:24:ae:b9:37:1e:23:2d:2e:77:48:c1:
4d:03:92:6d:01:32:4b:2a:5b:6d:83:00:f6:26:08:5d:e7:48:
43:23:03:40:a3:21:a1:0c:2e:80:86:e1:7e:ff:ed:84:e3:05:
ff:bc:13:1e:96:d1:4b:8e:f5:14:09:ed:2c:be:81:a2:64:60:
1d:27:36:4a:1e:d2:57:2b:2f:90:a4:80:41:8c:14:71:a6:fe:
86:ac:bb:89:f7:0f:3d:d9:a2:8f:70:4b:29:b3:52:da:18:42:
06:09:ad:47:5f:ed:3f:e4:ef:8b:5f:1a:99:43:80:8f:83:a7:
db:f3:c9:e8:3e:b9:3e:25:8e:86:f4:7a:13:d7:56:46:ec:91:
86:75:75:48:5e:01:25:78:16:7c:56:64:e0:56:56:cb:0f:8a:
21:1d:8a:e0:26:68:4b:81:f5:ac:e6:47:16:d1:69:32:4f:46:
1a:ad:62:b1:7a:4f:1d:59:14:2e:ad:01:35:42:15:6e:d7:69:
0d:7f:c5:c2:c8:13:f8:13:d2:19:ef:61:67:75:8e:b0:c0:d6:
da:2e:1a:bc:8c:0d:05:cb:53:da:2b:48:94:43:15:92:eb:29:
b2:0d:97:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:57 2025 by rpki-client