Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/1d70f1-74c5-4fd0-aee5-dc66ba580fb4/1/U8i2X6Xf0XWbcFfecQlooLfB5Uk.roa
File: U8i2X6Xf0XWbcFfecQlooLfB5Uk.roa (raw, json)
Hash identifier: Hp58KRyJ04HUq/D1YdSWln2rnSk8ZnLyGrepALP1iSc=
Subject key identifier: 53:C8:B6:5F:A5:DF:D1:75:9B:70:57:DE:71:09:68:A0:B7:C1:E5:49
Certificate issuer: /CN=f275358a9ffc9a69e4f1b1443ba481ef41badcac
Certificate serial: 018CC8DE77B8F6B23336F8E7C07655A9EBAC
Authority key identifier: F2:75:35:8A:9F:FC:9A:69:E4:F1:B1:44:3B:A4:81:EF:41:BA:DC:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8nU1ip_8mmnk8bFEO6SB70G63Kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/1d70f1-74c5-4fd0-aee5-dc66ba580fb4/1/U8i2X6Xf0XWbcFfecQlooLfB5Uk.roa
Signing time: Tue 02 Jan 2024 06:31:11 +0000
ROA not before: Tue 02 Jan 2024 06:31:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202374
IP address blocks: 185.248.68.0/22 maxlen: 22
2a07:e600::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:77:b8:f6:b2:33:36:f8:e7:c0:76:55:a9:eb:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f275358a9ffc9a69e4f1b1443ba481ef41badcac
Validity
Not Before: Jan 2 06:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53c8b65fa5dfd1759b7057de710968a0b7c1e549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:11:2e:16:52:71:36:0e:84:c7:81:28:fc:40:
ca:b6:8f:3c:fd:ff:61:38:ba:53:e8:54:a3:ea:3e:
6e:b7:c0:47:22:8b:cb:77:7b:73:e2:c5:11:4a:c5:
b9:29:3b:21:25:c9:a5:b0:a0:74:c7:1d:ea:78:ad:
e3:a6:b0:fb:4d:10:4c:03:dc:22:8f:7a:5d:b7:a9:
02:e7:fc:3b:70:5e:48:79:fb:4a:96:36:4d:f4:66:
97:2e:26:c6:b9:d0:d5:fe:17:d6:aa:71:28:b8:bd:
f5:bf:83:ec:31:ce:4a:1b:c0:6d:ea:89:84:aa:8d:
f7:f3:72:bd:28:90:ec:1d:db:9d:91:bd:5e:63:35:
fa:3b:91:c8:68:bf:2e:2e:2e:a5:6e:7a:d2:ad:42:
ac:26:bf:4f:bd:20:7c:60:6f:2b:78:cf:fa:33:97:
b5:d5:5e:3a:ea:fd:c4:4c:4a:ff:3c:e6:14:a3:95:
f1:16:f2:f2:95:33:ed:71:a9:79:9a:ec:b3:98:d8:
21:73:57:6f:07:24:21:fe:0b:e4:a8:1e:c8:cc:33:
40:14:46:0f:eb:3f:85:02:ce:56:2a:95:54:e7:c2:
17:29:83:71:32:c3:4b:51:a8:ab:27:d9:7f:11:b6:
c1:a7:af:ae:8d:80:a8:8c:47:1a:66:c9:85:5f:72:
00:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C8:B6:5F:A5:DF:D1:75:9B:70:57:DE:71:09:68:A0:B7:C1:E5:49
X509v3 Authority Key Identifier:
keyid:F2:75:35:8A:9F:FC:9A:69:E4:F1:B1:44:3B:A4:81:EF:41:BA:DC:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8nU1ip_8mmnk8bFEO6SB70G63Kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/1d70f1-74c5-4fd0-aee5-dc66ba580fb4/1/U8i2X6Xf0XWbcFfecQlooLfB5Uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/1d70f1-74c5-4fd0-aee5-dc66ba580fb4/1/8nU1ip_8mmnk8bFEO6SB70G63Kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.68.0/22
IPv6:
2a07:e600::/29
Signature Algorithm: sha256WithRSAEncryption
a7:9c:6e:f2:e8:79:62:40:e6:8c:e2:2d:1e:b1:39:1d:db:73:
9c:bd:5e:07:36:5b:0a:38:b3:1d:0c:62:61:70:91:08:a4:96:
08:94:7b:bc:5b:29:1a:fb:44:90:6d:64:e0:a0:20:d9:1e:d2:
5c:28:09:2f:75:eb:60:85:10:c0:c7:8e:72:c1:31:8b:bb:75:
b2:21:34:d7:80:d8:88:98:9d:26:db:a1:37:7f:1e:c6:31:6c:
66:c9:ed:69:50:f3:d8:e2:36:30:e2:af:7f:c2:6c:7b:39:1a:
3c:c3:2c:96:3f:c7:24:42:55:8a:6b:bf:50:9a:7d:b7:b3:a8:
03:46:61:57:da:04:ba:e9:25:c9:50:de:10:4c:0c:9d:2e:07:
00:5e:9a:50:35:a7:8f:f0:53:e8:f9:61:08:9a:3b:d1:e5:1a:
9e:3a:2c:36:41:b9:23:cd:2a:b2:c6:0b:78:80:87:2a:e7:82:
03:54:1f:83:37:21:95:ce:88:34:18:ae:3a:1b:65:fb:4a:e5:
6e:36:40:d9:d5:0c:dc:b6:63:fb:d1:9b:1a:56:16:9e:81:be:
76:f8:45:42:33:f7:7a:e7:69:ee:e4:76:b1:17:ef:4c:78:39:
7d:7a:29:30:5b:9d:8c:2c:e2:b4:06:1b:7c:26:24:a0:ed:4a:
b5:70:ab:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 16:47:21 2024 by rpki-client on console-fra.rpki-client.org