Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/142c4d-d073-48b2-bca0-322b5172af61/1/Qd9L2zIOmH3lm6f97-2vVZZawAo.roa
File: Qd9L2zIOmH3lm6f97-2vVZZawAo.roa (raw, json)
Hash identifier: xvxH2ZjBK/rej4jEqWtZ23EKPFGo4KmwYDcbmmmeB/A=
Subject key identifier: 41:DF:4B:DB:32:0E:98:7D:E5:9B:A7:FD:EF:ED:AF:55:96:5A:C0:0A
Certificate issuer: /CN=a02347bc9d973355e4801f289ca075f9d1e18d48
Certificate serial: 018CC8DF996B89D06BC09932BAA2349AA3A2
Authority key identifier: A0:23:47:BC:9D:97:33:55:E4:80:1F:28:9C:A0:75:F9:D1:E1:8D:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCNHvJ2XM1XkgB8onKB1-dHhjUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/142c4d-d073-48b2-bca0-322b5172af61/1/Qd9L2zIOmH3lm6f97-2vVZZawAo.roa
Signing time: Tue 02 Jan 2024 06:32:26 +0000
ROA not before: Tue 02 Jan 2024 06:32:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206737
IP address blocks: 185.109.50.0/24 maxlen: 24
2a0e:4b80::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:99:6b:89:d0:6b:c0:99:32:ba:a2:34:9a:a3:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a02347bc9d973355e4801f289ca075f9d1e18d48
Validity
Not Before: Jan 2 06:32:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41df4bdb320e987de59ba7fdefedaf55965ac00a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cb:fe:60:e1:26:a0:33:2f:94:d0:27:96:27:
88:e3:3e:c7:31:75:99:92:c4:0d:cb:7c:7a:8c:2f:
0e:e4:59:ca:18:81:ff:bd:3e:05:8d:0e:16:8f:f0:
39:bb:6c:80:4c:7c:c2:97:c0:85:39:06:de:53:6f:
ff:33:cf:97:2f:7d:12:d7:c9:b4:c8:08:30:d9:68:
2b:f4:9c:b4:55:a7:75:57:f2:53:1a:2f:6d:69:dd:
34:ff:66:6a:0a:1d:35:08:ad:3e:2d:ab:1f:2a:9c:
fc:8a:a8:66:9e:32:d3:ed:cb:ee:46:a5:63:a5:e6:
c4:80:03:ad:c7:bb:c6:ae:36:91:09:a0:12:e7:89:
97:6c:b6:53:35:69:be:31:52:8a:7f:14:6c:6c:99:
4a:6c:00:81:55:83:a6:c5:e7:f3:b8:8e:f0:24:81:
0c:f8:77:b9:dc:03:dc:09:2b:6d:38:cd:31:83:3e:
2e:72:81:45:2e:fe:c8:9f:e7:d5:1a:18:e6:ae:0f:
79:c7:c5:57:0a:1d:cb:7c:a9:4d:f6:9e:29:7a:55:
97:d4:ef:f7:05:53:1c:7d:ba:cf:54:0a:cd:22:16:
fa:0a:76:a6:fb:89:fe:6d:10:aa:81:7c:03:fa:45:
42:f6:98:61:e2:ec:a5:be:5f:f7:b5:2e:90:a2:6e:
3b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DF:4B:DB:32:0E:98:7D:E5:9B:A7:FD:EF:ED:AF:55:96:5A:C0:0A
X509v3 Authority Key Identifier:
keyid:A0:23:47:BC:9D:97:33:55:E4:80:1F:28:9C:A0:75:F9:D1:E1:8D:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCNHvJ2XM1XkgB8onKB1-dHhjUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/142c4d-d073-48b2-bca0-322b5172af61/1/Qd9L2zIOmH3lm6f97-2vVZZawAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/142c4d-d073-48b2-bca0-322b5172af61/1/oCNHvJ2XM1XkgB8onKB1-dHhjUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.50.0/24
IPv6:
2a0e:4b80::/29
Signature Algorithm: sha256WithRSAEncryption
8a:00:a5:ca:44:40:94:e1:81:8f:4c:6f:ec:84:c3:0c:21:1a:
1b:68:05:29:b0:e3:8e:09:82:a7:59:f7:bf:9a:89:8f:7e:68:
07:47:14:bd:39:41:7e:11:a4:92:02:3a:3f:ad:37:bc:b7:ca:
00:fa:58:a9:ef:a2:cc:57:bc:01:05:1f:92:19:c1:39:08:a6:
ec:b4:5a:31:b2:9b:12:46:48:91:0a:8a:1a:60:57:67:83:60:
dc:f6:73:d7:be:ab:94:47:a7:a6:a7:98:c2:fe:4f:11:d5:16:
37:76:92:9b:25:62:2d:2d:2c:2a:10:03:5c:b8:0a:0b:bb:93:
a5:27:00:d0:e8:73:c3:d0:ab:5a:1a:55:99:fe:6b:e6:1e:e8:
57:e1:76:d8:e1:44:d2:93:30:72:ef:24:5a:9d:1e:61:0c:e3:
04:10:45:9a:24:6d:9f:3f:b2:05:36:e4:0b:7f:31:2c:aa:ed:
ad:af:bc:e6:d8:74:28:56:3b:2a:bf:76:73:db:61:f8:46:81:
59:0b:ec:a6:45:7f:9f:05:17:20:76:3e:68:4f:40:6c:db:1d:
3a:91:48:29:3d:5d:39:dd:0a:ec:83:8c:05:48:2a:83:a5:73:
58:83:86:52:15:ba:45:ed:d0:31:f8:57:37:b9:ab:64:c5:4e:
49:60:0c:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 12:32:29 2024 by rpki-client on console-fra.rpki-client.org