Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cffe7b-696c-4a18-8c40-641a3499565b/1/wU68ukB-i3tvyYVDmmt5yXJBsnk.roa
File: wU68ukB-i3tvyYVDmmt5yXJBsnk.roa (raw, json)
Hash identifier: vivHsdY9vWfD96ZhNyGz7m4WRUHv4U+UYTG5w1xgFrg=
Subject key identifier: C1:4E:BC:BA:40:7E:8B:7B:6F:C9:85:43:9A:6B:79:C9:72:41:B2:79
Certificate issuer: /CN=a2e49828926fc61c7f6b77e9a3d8fd036e463845
Certificate serial: 018CC794102513CE23C5D43E79CBDE1BD132
Authority key identifier: A2:E4:98:28:92:6F:C6:1C:7F:6B:77:E9:A3:D8:FD:03:6E:46:38:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ouSYKJJvxhx_a3fpo9j9A25GOEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cffe7b-696c-4a18-8c40-641a3499565b/1/wU68ukB-i3tvyYVDmmt5yXJBsnk.roa
Signing time: Tue 02 Jan 2024 00:30:18 +0000
ROA not before: Tue 02 Jan 2024 00:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 217.198.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:10:25:13:ce:23:c5:d4:3e:79:cb:de:1b:d1:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2e49828926fc61c7f6b77e9a3d8fd036e463845
Validity
Not Before: Jan 2 00:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c14ebcba407e8b7b6fc985439a6b79c97241b279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:02:af:5f:e5:cf:b3:86:a9:a4:38:28:4e:5a:
57:07:9e:89:1f:97:0d:91:95:6f:3c:92:2a:72:7c:
c0:c3:81:bd:fb:4f:65:b1:17:52:c9:8b:b6:93:fa:
e7:f4:67:54:85:49:a9:10:8f:0f:37:61:57:76:dd:
1b:c1:57:38:7b:c7:33:bf:e0:f0:d2:a1:c6:7e:f1:
a9:04:aa:6a:26:2b:7f:4d:64:4b:bd:6f:a7:47:24:
cd:bc:4b:12:0e:60:81:7c:0a:0e:fd:d6:5f:c8:87:
db:ba:c6:79:5b:12:09:2b:48:ba:d3:55:0c:05:6c:
0e:b8:81:f5:c1:80:6e:01:ae:54:90:fc:cf:df:27:
bb:39:ab:84:01:de:71:6c:ab:a3:72:d4:09:ee:73:
31:b6:12:38:f7:6e:5e:43:4d:58:5a:4b:c4:f7:59:
a2:53:c6:db:4d:b9:49:49:9a:23:3f:8b:82:b9:e0:
ed:6f:69:fa:ac:25:4e:a7:2b:04:48:df:b8:dd:8b:
d7:35:11:ac:ae:1e:d6:6a:08:49:8c:9d:76:cc:5e:
83:b8:a0:c4:cf:d0:ca:80:3a:69:9b:15:0d:eb:61:
76:76:09:f4:9a:b2:ce:5e:7b:53:21:52:98:b0:3c:
a4:bb:28:4c:91:2d:ac:00:c6:69:00:ca:ff:62:a4:
9d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:4E:BC:BA:40:7E:8B:7B:6F:C9:85:43:9A:6B:79:C9:72:41:B2:79
X509v3 Authority Key Identifier:
keyid:A2:E4:98:28:92:6F:C6:1C:7F:6B:77:E9:A3:D8:FD:03:6E:46:38:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ouSYKJJvxhx_a3fpo9j9A25GOEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cffe7b-696c-4a18-8c40-641a3499565b/1/wU68ukB-i3tvyYVDmmt5yXJBsnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cffe7b-696c-4a18-8c40-641a3499565b/1/ouSYKJJvxhx_a3fpo9j9A25GOEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.182.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:7e:81:35:9a:fc:95:aa:a9:d3:a0:4f:d3:4c:b4:bf:aa:dd:
d2:97:e3:8f:7b:44:6b:94:bf:0f:2a:15:8d:b3:ee:a6:13:d9:
8d:83:c4:50:57:e7:f5:37:a0:96:25:70:fb:fe:ad:a0:82:58:
6b:88:bd:f1:9f:c1:47:9e:69:10:d0:42:64:82:d5:bf:67:e8:
04:fc:26:04:49:82:18:b3:64:3a:e4:18:18:8b:b0:70:80:c2:
3d:0f:b0:d4:bc:5d:af:c7:4c:6a:3b:d8:bd:36:d5:3d:71:29:
e0:50:66:a2:13:1b:50:2a:ef:6e:d2:b7:f7:a8:ff:29:ba:31:
a4:21:cd:5a:b5:85:6c:c4:08:8e:0a:89:b1:99:10:c4:f7:42:
86:ae:d6:ef:36:82:2b:24:88:67:57:49:3a:e4:6e:7c:33:c1:
bc:5c:85:a6:03:4c:fb:97:84:a5:69:51:bd:ef:83:d7:95:d9:
be:3e:e9:68:c3:b1:3a:d8:d6:3d:83:1d:45:a4:dd:23:44:4c:
52:9f:88:20:eb:79:49:f2:74:c4:8a:8b:e9:69:ac:ea:b6:e0:
7f:4b:ae:9f:80:85:58:f5:21:82:fc:d9:e9:ab:99:d1:7c:9e:
ec:48:02:43:bd:5a:82:b3:f2:18:68:dc:fb:f8:c4:8a:da:60:
d3:c8:29:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:15 2025 by rpki-client