Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1875ac-a274-479e-a676-b025f4003943/1/rEh_278UPa08TcuBDg69iUFyIG0.roa
File: rEh_278UPa08TcuBDg69iUFyIG0.roa (raw, json)
Hash identifier: 8X+LSKHRc72FwFeH5my3G70omYOKSoXeWlGbYuq+sIA=
Subject key identifier: AC:48:7F:DB:BF:14:3D:AD:3C:4D:CB:81:0E:0E:BD:89:41:72:20:6D
Certificate issuer: /CN=68f691e98532920b49f63cf84a509a1b3ca8c0f0
Certificate serial: 018AF9F63966534802F86E890D41E6B59629
Authority key identifier: 68:F6:91:E9:85:32:92:0B:49:F6:3C:F8:4A:50:9A:1B:3C:A8:C0:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPaR6YUykgtJ9jz4SlCaGzyowPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1875ac-a274-479e-a676-b025f4003943/1/rEh_278UPa08TcuBDg69iUFyIG0.roa
Signing time: Wed 04 Oct 2023 09:12:57 +0000
ROA not before: Wed 04 Oct 2023 09:12:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211415
IP address blocks: 185.232.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f9:f6:39:66:53:48:02:f8:6e:89:0d:41:e6:b5:96:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68f691e98532920b49f63cf84a509a1b3ca8c0f0
Validity
Not Before: Oct 4 09:12:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac487fdbbf143dad3c4dcb810e0ebd894172206d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a9:e9:5d:a8:b3:46:4e:4a:2f:34:0c:8a:9b:
f9:bf:3c:c3:e1:e0:72:4f:0e:68:a8:cf:e2:ec:0c:
dc:25:ff:5d:5a:5b:4e:4b:13:82:fb:18:9c:2e:00:
4b:b3:e6:fd:fd:4e:6a:5f:f2:af:7a:4d:32:ba:ba:
8b:61:ef:30:bd:3d:65:a4:ad:a9:39:b7:eb:48:47:
3d:2b:c3:f6:0f:c0:5a:86:97:87:fb:44:2c:fc:f6:
30:96:74:f0:89:5f:ed:4f:0c:b8:dd:7d:fe:c4:ac:
f3:53:fe:b3:1d:59:86:b0:61:8f:43:c8:35:9a:3b:
e7:8e:18:98:5e:11:80:6a:50:f8:3e:53:1e:a2:1a:
4d:70:59:b0:37:eb:77:d6:3f:65:ce:38:73:49:be:
3c:df:8c:ec:0a:39:d5:0e:8e:0e:c6:e9:b9:68:e3:
46:32:3a:b6:ed:d2:67:48:46:1b:e4:6d:63:dd:48:
ba:01:91:55:91:0c:c8:07:b9:c1:b7:74:bf:0e:f6:
5b:ed:0f:e5:ac:3e:06:20:f3:cd:59:e9:ef:26:34:
70:8e:9d:64:d3:76:fe:2a:b3:70:dc:42:5a:03:79:
6c:b1:ce:0e:62:68:29:bc:7d:c2:3d:0e:45:23:1e:
7d:a5:33:56:aa:2f:95:bf:59:f3:27:07:83:6a:84:
d8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:48:7F:DB:BF:14:3D:AD:3C:4D:CB:81:0E:0E:BD:89:41:72:20:6D
X509v3 Authority Key Identifier:
keyid:68:F6:91:E9:85:32:92:0B:49:F6:3C:F8:4A:50:9A:1B:3C:A8:C0:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPaR6YUykgtJ9jz4SlCaGzyowPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1875ac-a274-479e-a676-b025f4003943/1/rEh_278UPa08TcuBDg69iUFyIG0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1875ac-a274-479e-a676-b025f4003943/1/aPaR6YUykgtJ9jz4SlCaGzyowPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.167.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:b0:25:2c:ec:40:c9:a2:2f:84:b6:71:a9:2b:0f:4e:65:e3:
d7:0f:90:09:1d:9d:aa:d1:0d:b4:e6:96:00:35:a9:6d:64:64:
0f:81:32:8e:23:e4:a2:09:8d:48:c6:fc:45:97:48:a2:04:bc:
7f:17:71:71:8f:be:50:7a:fc:2a:3e:23:5b:77:99:2b:0c:7b:
f3:d9:2f:a9:5c:3c:53:1b:33:ca:ea:e0:2b:0e:5c:23:ec:79:
b7:10:48:5a:88:e1:f5:59:95:ad:b6:5e:a1:53:81:b5:a2:85:
6a:d2:b8:5e:df:7a:50:5e:a1:e6:72:85:a6:e3:4f:d6:f4:44:
1c:5d:d8:ce:53:1a:da:f1:0e:d0:f1:4a:a0:4e:8c:d9:9d:95:
86:79:87:f2:ce:e7:bf:cf:8c:1b:7b:e7:16:73:98:9c:74:ff:
bf:0f:63:32:57:78:5e:af:6b:33:59:e5:5b:0f:2b:da:26:83:
7f:89:c3:93:53:32:bb:14:e9:77:3b:5b:f8:44:c2:1a:6c:97:
22:e9:14:ff:85:ab:18:7d:30:fc:b1:a7:a8:7d:50:2f:b2:f8:
be:c6:18:31:bd:72:ae:bc:38:59:ad:8f:c2:7f:37:55:15:c7:
23:3e:6c:36:5f:08:3e:c9:da:9a:c4:34:65:81:bc:10:71:a7:
c0:1b:b6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:23:59 2025 by rpki-client