Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/ccdbe0-17c9-41cd-8e97-42bbfa991a35/1/XwsTZ3J0v4IcyVTu-AO5Lw69Q-8.roa
File: XwsTZ3J0v4IcyVTu-AO5Lw69Q-8.roa (raw, json)
Hash identifier: 2HXuJcty4wLuLeTR/V1ZUZtGm+FMJ6cE4YSLy1RVOJ8=
Subject key identifier: 5F:0B:13:67:72:74:BF:82:1C:C9:54:EE:F8:03:B9:2F:0E:BD:43:EF
Certificate issuer: /CN=dca6c3d3f85d83f6db741bb2f44f114e2260aea1
Certificate serial: 01857356222A01FDD1471475A8ED75888CC9
Authority key identifier: DC:A6:C3:D3:F8:5D:83:F6:DB:74:1B:B2:F4:4F:11:4E:22:60:AE:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KbD0_hdg_bbdBuy9E8RTiJgrqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/ccdbe0-17c9-41cd-8e97-42bbfa991a35/1/XwsTZ3J0v4IcyVTu-AO5Lw69Q-8.roa
Signing time: Mon 02 Jan 2023 16:35:02 +0000
ROA not before: Mon 02 Jan 2023 16:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211627
IP address blocks: 185.252.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:22:2a:01:fd:d1:47:14:75:a8:ed:75:88:8c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca6c3d3f85d83f6db741bb2f44f114e2260aea1
Validity
Not Before: Jan 2 16:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f0b13677274bf821cc954eef803b92f0ebd43ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:32:80:01:2b:1c:76:a6:01:fb:a4:e3:10:3a:
fb:32:76:95:85:3b:ca:bd:a4:3b:a9:5b:c7:93:2d:
8b:ba:9e:a8:25:07:08:a1:9a:04:2d:d4:51:ca:93:
da:b7:56:36:13:f8:8c:c3:4d:59:e2:85:89:ba:50:
27:b5:69:8f:b9:d9:53:9a:15:1c:2f:df:fa:bd:39:
49:d4:71:a9:76:a5:ad:31:0e:b6:35:c5:8d:60:9f:
75:ee:ed:a4:09:57:b2:f4:4f:ff:23:b1:bb:a9:37:
c0:db:0f:e6:d5:a8:a3:3c:e4:ff:b4:bf:fc:bc:89:
81:08:29:23:d1:bc:12:95:71:ed:e9:23:40:c2:33:
90:c0:48:f6:5b:a7:67:11:82:04:80:14:34:9d:60:
ce:b0:c5:99:ac:a3:dc:08:b1:42:28:22:fa:ab:19:
ff:41:67:66:59:bc:c0:2f:39:9d:01:52:f1:3c:19:
2e:2f:88:4d:e5:4c:3c:e4:6a:a8:bd:e8:a3:2f:70:
55:aa:cd:5d:df:fc:0f:e8:37:f2:32:f9:91:c0:d3:
9e:af:51:68:91:32:8b:8d:1e:18:7b:43:55:f4:8a:
d6:49:4b:f9:cc:c7:3b:ef:1a:7d:d1:40:af:d1:1d:
fd:7f:64:f4:61:f7:d3:ef:0b:77:cf:6f:70:b5:3a:
63:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:0B:13:67:72:74:BF:82:1C:C9:54:EE:F8:03:B9:2F:0E:BD:43:EF
X509v3 Authority Key Identifier:
keyid:DC:A6:C3:D3:F8:5D:83:F6:DB:74:1B:B2:F4:4F:11:4E:22:60:AE:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KbD0_hdg_bbdBuy9E8RTiJgrqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ccdbe0-17c9-41cd-8e97-42bbfa991a35/1/XwsTZ3J0v4IcyVTu-AO5Lw69Q-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ccdbe0-17c9-41cd-8e97-42bbfa991a35/1/3KbD0_hdg_bbdBuy9E8RTiJgrqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.200.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:99:46:6d:da:d5:a2:91:f4:7c:66:d5:13:63:1c:50:e9:53:
a3:19:14:6d:87:8b:1f:43:86:87:63:ae:c0:42:1d:d4:d2:b8:
a7:d8:b5:c2:d3:f7:6a:0d:52:b2:7b:54:7c:77:b7:98:8a:87:
b8:21:9b:34:2b:57:bd:0c:a1:81:6f:53:50:df:d8:e1:38:73:
be:5f:a8:c2:ba:a1:d6:82:5e:fb:8b:7e:9d:b7:40:4a:ec:d4:
51:42:22:5c:2d:ee:6f:e2:0e:db:65:71:1f:25:50:d4:be:e8:
17:24:c0:96:76:9e:fe:a2:52:46:89:38:df:22:bd:1f:b3:b5:
d2:33:85:8b:ed:90:1a:f5:8a:0e:d7:4a:f5:71:1c:cb:f9:97:
6a:3a:13:01:10:99:56:d9:b3:05:bf:70:95:2d:af:24:10:54:
7f:60:84:c8:ed:d8:ce:67:37:55:2c:35:32:29:c2:05:46:a3:
ea:77:aa:a7:f5:ab:2a:5f:c7:9b:df:8b:b1:b9:93:34:43:d0:
8a:12:e1:c0:9f:ec:8b:22:bd:ad:7c:5c:5d:4a:27:17:76:cc:
b5:52:09:73:36:0b:31:06:8b:fb:b4:e4:4d:9f:01:2b:43:b0:
db:6e:8e:0c:b3:fd:09:2c:b5:b9:3d:82:04:ef:7e:ac:65:6e:
1d:36:ee:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:22 2023 by rpki-client on console-fra.rpki-client.org