Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/2gaRJrwyEs9X5v_XIMUCi4-fOfY.roa
File: 2gaRJrwyEs9X5v_XIMUCi4-fOfY.roa (raw, json)
Hash identifier: uqBracarJQ2p4n6lTcxVsYnKhrqM+bWVd8rMpKRh5W4=
Subject key identifier: DA:06:91:26:BC:32:12:CF:57:E6:FF:D7:20:C5:02:8B:8F:9F:39:F6
Certificate issuer: /CN=28642ab1790b7f5f359068e9fbb72641c5413079
Certificate serial: CE6FC0
Authority key identifier: 28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/2gaRJrwyEs9X5v_XIMUCi4-fOfY.roa
Signing time: Sat 01 Jan 2022 07:58:27 +0000
ROA not before: Sat 01 Jan 2022 07:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 185.218.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13529024 (0xce6fc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28642ab1790b7f5f359068e9fbb72641c5413079
Validity
Not Before: Jan 1 07:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da069126bc3212cf57e6ffd720c5028b8f9f39f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:11:5d:4c:7d:69:55:6b:d3:57:9c:5d:ab:19:
a6:87:fd:16:e8:2d:37:ce:4f:e7:01:b1:18:98:6f:
f7:39:e1:6d:ba:89:cf:08:4e:50:4b:b2:4c:0d:14:
65:38:c9:e1:71:a9:9a:48:ec:fb:9a:be:cb:55:71:
c2:69:77:a1:e2:d8:51:1c:73:a1:e5:06:64:41:00:
a8:c0:11:54:38:fc:bd:67:fc:f6:ca:c5:03:cb:a3:
08:ee:e4:5b:46:34:75:2f:df:34:fa:af:e7:2a:3a:
de:27:bc:1e:9a:d4:04:03:cd:84:a1:b6:bf:74:1f:
4e:d0:b0:06:1c:9b:2b:17:0a:6f:70:52:a9:39:83:
0d:0b:b2:e2:6a:74:52:24:02:5a:69:94:4a:26:f1:
a8:6e:7e:a5:6c:08:59:1d:f9:98:fd:01:b1:6b:54:
2f:82:f3:f6:a8:3a:8e:32:46:d1:f6:48:29:00:cd:
e7:0e:8e:25:63:e5:c2:6d:f6:a6:42:d8:79:2a:f1:
be:92:8e:0a:ab:3d:07:8a:85:68:8c:44:52:02:85:
2a:20:a6:f0:92:fd:0d:6f:4a:99:56:79:ae:9d:c3:
55:b2:4a:f4:24:3d:a8:dc:32:0a:e0:bf:5b:03:97:
91:b4:8f:3a:06:6d:05:56:8c:23:ef:26:c2:9e:1b:
4d:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:06:91:26:BC:32:12:CF:57:E6:FF:D7:20:C5:02:8B:8F:9F:39:F6
X509v3 Authority Key Identifier:
keyid:28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/2gaRJrwyEs9X5v_XIMUCi4-fOfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KGQqsXkLf181kGjp-7cmQcVBMHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.184.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:c1:b4:b9:85:07:3d:b5:18:e1:1f:93:51:e4:60:d8:35:1c:
59:0e:08:32:c9:bb:3c:36:dd:0f:ff:7b:08:f9:c1:64:2d:f2:
c0:b1:94:60:61:d6:87:d9:f1:4e:f0:bd:67:ac:03:31:a9:df:
26:5a:43:fb:be:93:86:2d:91:3b:d2:1a:70:f3:5f:ee:84:0c:
8a:c3:38:3d:00:3d:43:57:26:7b:6f:7f:c0:32:ca:60:6e:e1:
16:51:c9:7e:dc:72:99:89:46:1a:bc:78:c3:22:77:b4:3d:8a:
77:82:c7:3c:19:2b:e9:de:f2:c5:02:c7:05:ae:74:00:46:df:
47:d1:10:00:e8:0e:42:ed:fb:b3:87:79:1d:ac:cb:ec:46:ba:
d1:e8:43:d9:3c:f3:79:f4:14:5a:f2:3f:d9:d1:96:ef:88:1b:
62:ac:cd:56:47:ab:f7:8b:d2:80:10:bb:e4:b5:c6:09:82:a9:
41:40:9f:dc:1a:49:19:bb:c8:77:1e:09:0e:bd:fb:53:10:93:
3a:85:43:12:b9:3d:ab:11:e2:73:a8:d2:8e:08:14:93:8b:cc:
9f:ec:fa:09:26:2e:6d:9c:c9:e9:6a:bf:ba:05:7a:e6:78:dc:
ba:14:da:3d:c2:84:25:48:a6:91:a7:8a:b5:f0:1f:82:96:6d:
e4:b9:9d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:10 2025 by rpki-client