Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/549312-22ea-42ee-9812-ebc4c2976e45/1/0DM_2u81kFmhI4uxbwRRBtuGWec.roa
File: 0DM_2u81kFmhI4uxbwRRBtuGWec.roa (raw, json)
Hash identifier: 1t/aZ+MfSNdnAHhYvhhyHS7ntrbaU/BITROyHnNj4z0=
Subject key identifier: D0:33:3F:DA:EF:35:90:59:A1:23:8B:B1:6F:04:51:06:DB:86:59:E7
Certificate issuer: /CN=014318684fcad9f86a21c45d0c7b88166590a8b9
Certificate serial: 0B68582B
Authority key identifier: 01:43:18:68:4F:CA:D9:F8:6A:21:C4:5D:0C:7B:88:16:65:90:A8:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUMYaE_K2fhqIcRdDHuIFmWQqLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/549312-22ea-42ee-9812-ebc4c2976e45/1/0DM_2u81kFmhI4uxbwRRBtuGWec.roa
Signing time: Sat 01 Jan 2022 13:56:18 +0000
ROA not before: Sat 01 Jan 2022 13:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42720
IP address blocks: 194.110.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191387691 (0xb68582b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=014318684fcad9f86a21c45d0c7b88166590a8b9
Validity
Not Before: Jan 1 13:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0333fdaef359059a1238bb16f045106db8659e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d3:c8:23:86:8c:48:d9:e8:72:79:0d:73:af:
8c:60:41:1b:d7:a4:f6:83:2c:c5:b9:dd:9f:8c:25:
78:2b:2b:79:a5:d1:84:bb:4b:22:c5:1d:82:dc:11:
b1:0b:e4:2f:84:dd:79:ad:cc:9d:2c:2e:c2:9d:ee:
a0:7c:ea:b6:d6:b6:3b:7a:98:92:c0:5c:fc:c4:40:
5c:85:83:bc:69:28:e5:da:af:9d:a9:ba:d4:b0:f0:
b5:fa:7a:3e:79:6e:56:44:0f:64:b8:4d:cb:8e:74:
ff:91:92:46:e2:8f:f1:5d:41:a5:7b:81:59:ec:91:
5e:7a:45:2d:2d:66:63:e8:7d:48:a8:05:b1:ca:36:
ea:ff:aa:bc:93:9b:e4:cc:b9:bb:7d:ae:8f:40:ea:
f1:8f:b9:41:c9:28:48:2c:69:80:77:44:c1:6c:4f:
31:e4:66:34:f7:6b:db:1a:6e:f2:1c:a4:80:ac:6a:
dc:3e:60:87:a6:c1:bd:d8:1b:60:7e:e3:cc:84:98:
eb:c2:fb:96:9c:be:26:32:e9:3e:38:57:9d:56:66:
1b:70:fe:fa:23:3f:1a:ab:e9:3a:9a:b8:30:c5:cf:
16:b0:4f:dd:b5:ec:c0:c9:10:6d:d8:d3:0d:ed:e5:
47:c9:f6:9f:83:3e:c2:53:ff:da:05:c1:59:d3:a8:
f4:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:33:3F:DA:EF:35:90:59:A1:23:8B:B1:6F:04:51:06:DB:86:59:E7
X509v3 Authority Key Identifier:
keyid:01:43:18:68:4F:CA:D9:F8:6A:21:C4:5D:0C:7B:88:16:65:90:A8:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUMYaE_K2fhqIcRdDHuIFmWQqLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/549312-22ea-42ee-9812-ebc4c2976e45/1/0DM_2u81kFmhI4uxbwRRBtuGWec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/549312-22ea-42ee-9812-ebc4c2976e45/1/AUMYaE_K2fhqIcRdDHuIFmWQqLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.206.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ae:88:d3:66:d1:76:98:d6:e8:f0:47:e1:f9:5b:20:97:fa:
5c:83:e1:ae:c5:0e:d3:35:2e:13:ac:2d:0a:6c:ff:35:99:41:
63:1f:db:26:66:d0:35:63:d4:ea:9d:09:19:ed:7e:78:09:da:
53:74:0d:f5:27:db:5b:f0:2d:6d:87:72:81:22:ba:fe:51:27:
85:01:57:ca:a2:08:b2:b8:cf:23:ca:0d:76:17:0a:76:fb:31:
0b:05:28:dd:3d:8e:2e:57:02:9d:71:81:90:6c:49:1d:b9:60:
29:6a:a5:3b:e2:6d:1e:5a:dd:f7:ae:6b:ee:ba:c5:20:0b:61:
eb:d2:fe:f1:1c:b7:1e:c8:ad:fc:13:3c:f5:c0:3c:19:d7:6a:
8c:90:22:3f:66:24:10:23:87:cb:2b:57:0a:38:32:b8:0b:51:
c4:07:23:a9:0e:48:12:fe:e7:8d:8c:48:3f:bd:48:56:b9:c9:
02:ce:ac:81:5a:24:2a:dc:c5:1d:49:c0:32:33:69:e1:9d:c1:
b9:2f:ee:9c:55:79:b6:5e:cc:59:b0:79:c0:e6:e3:18:bb:28:
80:df:60:fc:42:27:64:06:1f:df:e6:f4:4c:8d:1f:b2:72:65:
0c:43:3a:cc:05:b5:0f:b2:d9:7d:1b:83:91:bd:94:a1:ee:f3:
6f:c5:b1:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:56 2025 by rpki-client