Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/qJpOvtm14BHuQzzWPaTrq5pMSt4.roa
File: qJpOvtm14BHuQzzWPaTrq5pMSt4.roa (raw, json)
Hash identifier: DyrRateXR8DKJj4kyiG+BOdjtFC0ZjjfJbrMDkXw3L4=
Subject key identifier: A8:9A:4E:BE:D9:B5:E0:11:EE:43:3C:D6:3D:A4:EB:AB:9A:4C:4A:DE
Certificate issuer: /CN=67cfd7fae20d1d34b779dab669b8f0f07c9c34f8
Certificate serial: 0183B1FE9CDB0574BB28686147BD5ECFCFE1
Authority key identifier: 67:CF:D7:FA:E2:0D:1D:34:B7:79:DA:B6:69:B8:F0:F0:7C:9C:34:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8_X-uINHTS3edq2abjw8HycNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/qJpOvtm14BHuQzzWPaTrq5pMSt4.roa
Signing time: Fri 07 Oct 2022 10:29:57 +0000
ROA not before: Fri 07 Oct 2022 10:29:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57152
IP address blocks: 195.85.207.0/24 maxlen: 24
185.242.162.0/24 maxlen: 24
185.242.161.0/24 maxlen: 24
185.242.160.0/24 maxlen: 24
185.242.163.0/24 maxlen: 24
2a09:cfc0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b1:fe:9c:db:05:74:bb:28:68:61:47:bd:5e:cf:cf:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67cfd7fae20d1d34b779dab669b8f0f07c9c34f8
Validity
Not Before: Oct 7 10:29:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a89a4ebed9b5e011ee433cd63da4ebab9a4c4ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a7:22:44:a5:78:5c:41:b4:c3:6a:38:d6:b8:
4d:9d:8a:da:40:a8:19:3d:76:14:47:a8:41:2c:38:
00:82:19:48:ba:63:63:02:89:5e:41:27:4f:8d:77:
e4:b9:65:07:db:44:e0:31:01:13:f4:36:0c:4d:bc:
aa:d7:b4:5b:5d:cd:b5:f9:7f:5b:43:38:8a:74:f9:
31:42:d6:9c:26:b2:29:2d:2d:60:76:ab:08:13:64:
2b:72:01:38:c7:e7:89:fc:05:c4:b6:e6:45:f1:76:
f6:1f:6a:73:cc:9f:eb:da:ec:a2:95:1c:94:ca:01:
3a:07:ac:23:d8:24:e1:bd:dd:35:f6:ef:93:66:b4:
4a:20:19:1d:2f:b2:c5:8d:7b:0c:05:5f:2a:6e:1b:
6f:d6:45:97:4d:fa:2d:70:1d:79:bc:3a:0b:2d:1a:
f6:12:18:2d:52:4a:29:50:c6:7b:9f:78:48:38:8c:
b3:56:60:f8:31:7e:a9:8f:aa:65:d7:8e:bf:21:8f:
61:ce:cb:bb:8b:8a:fa:d2:b4:8e:f9:19:a2:f3:7e:
76:78:29:66:36:9b:c3:c4:f1:2d:dd:dd:cf:87:70:
6a:35:ff:ef:f7:a0:68:ac:40:3a:d8:6f:a2:a3:20:
d2:44:5d:d7:5c:66:2a:d1:6f:92:aa:15:ae:18:aa:
5c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9A:4E:BE:D9:B5:E0:11:EE:43:3C:D6:3D:A4:EB:AB:9A:4C:4A:DE
X509v3 Authority Key Identifier:
keyid:67:CF:D7:FA:E2:0D:1D:34:B7:79:DA:B6:69:B8:F0:F0:7C:9C:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8_X-uINHTS3edq2abjw8HycNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/qJpOvtm14BHuQzzWPaTrq5pMSt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/62343d-d924-4378-a121-2b68ab2ad2e9/1/Z8_X-uINHTS3edq2abjw8HycNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.160.0/22
195.85.207.0/24
IPv6:
2a09:cfc0::/29
Signature Algorithm: sha256WithRSAEncryption
a2:73:12:ef:af:15:0f:0c:fd:28:fa:6c:d1:25:34:a9:c4:a8:
e8:ac:7e:48:b1:a4:fc:b5:88:dd:40:c2:82:6d:f1:85:0a:c4:
6d:da:1b:33:22:69:46:cc:28:b1:60:0a:cb:83:ea:b4:d4:2e:
04:fe:7d:22:ce:dd:9a:e9:65:39:d1:f4:ea:a1:ce:33:21:22:
a7:f4:30:79:1d:fd:97:30:3e:33:7e:7b:6b:85:fc:39:0d:c7:
07:90:8c:e4:a1:a0:8a:8b:54:90:dc:43:9b:73:9e:70:6b:f6:
70:d4:37:20:f2:4a:f7:c0:fa:c6:7d:20:c3:75:b5:31:5f:84:
15:a2:07:a0:53:d6:4b:5c:c2:62:4d:45:a1:8a:ed:67:a7:68:
1e:82:36:cf:97:42:d8:19:57:8b:ce:2e:5e:dd:74:30:4a:19:
52:7f:2f:06:f8:5d:44:cb:7f:78:a4:a6:90:e4:4a:73:02:a3:
bb:25:01:74:aa:a5:1c:5a:df:79:0b:b8:56:58:3a:82:4e:d0:
4e:44:bb:a9:1d:4e:05:9e:ae:b9:0e:da:9c:ab:c0:cb:0d:2c:
7d:95:70:4b:07:06:ff:48:c8:a6:93:1e:85:1d:ac:d8:ef:b4:
39:89:bc:55:68:a5:42:09:b4:5b:04:24:31:5e:02:d2:11:42:
2a:1d:f6:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:18 2024 by rpki-client on console-ams.rpki-client.org