Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/sBcjIszTrm3q2VF0vM-3FIasQDE.roa
File: sBcjIszTrm3q2VF0vM-3FIasQDE.roa (raw, json)
Hash identifier: /CrngcTTPgGfbTfhsTr61/TbSHXIiOVem1d9CcHTyiQ=
Subject key identifier: B0:17:23:22:CC:D3:AE:6D:EA:D9:51:74:BC:CF:B7:14:86:AC:40:31
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B2ED1EFC53AE444AD3865B070EB335
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/sBcjIszTrm3q2VF0vM-3FIasQDE.roa
Signing time: Thu 02 Jan 2025 01:48:13 +0000
ROA not before: Thu 02 Jan 2025 01:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39365
IP address blocks: 185.144.184.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:ed:1e:fc:53:ae:44:4a:d3:86:5b:07:0e:b3:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0172322ccd3ae6dead95174bccfb71486ac4031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:22:83:5b:79:5f:31:26:e2:3d:bb:ae:ef:b5:
17:1c:fe:57:f5:d8:a4:c8:ad:d0:5b:62:3b:58:eb:
67:6d:4a:62:3b:20:ab:44:4f:74:cf:8f:00:ea:4c:
af:0e:61:40:c0:7f:ea:b1:ae:11:32:eb:5e:a3:1a:
b6:ae:4f:3a:46:51:8c:4a:63:2e:e4:78:24:18:37:
de:89:74:eb:0d:98:45:83:06:1d:31:de:9e:56:22:
d3:ea:6a:77:85:c4:92:06:c7:0c:bc:63:b1:9a:2c:
82:b3:f8:ad:d1:fa:d2:4c:76:d5:e5:c8:84:82:32:
43:1e:cf:6d:24:4a:22:a6:98:f2:56:f2:2f:52:22:
1a:53:49:98:51:19:3f:a5:75:0f:20:71:d5:de:4e:
1e:ad:2e:65:7e:18:46:68:ce:54:7f:ac:5c:25:a8:
ea:df:d9:a3:77:10:1a:66:8a:a0:64:c9:bb:b2:97:
7f:56:95:15:8a:76:90:2a:e9:6c:0c:13:7e:52:97:
f5:71:dd:81:0e:d6:79:8c:c4:4e:68:52:69:20:74:
31:b8:2a:24:56:34:49:b9:5d:82:73:e5:54:10:1e:
c5:9e:fe:5c:94:e3:3d:14:3f:41:6c:9e:2d:31:53:
7a:3e:4d:6b:bb:8f:43:6b:3a:ab:5d:bd:58:63:40:
1c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:17:23:22:CC:D3:AE:6D:EA:D9:51:74:BC:CF:B7:14:86:AC:40:31
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/sBcjIszTrm3q2VF0vM-3FIasQDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.184.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:66:b5:7f:fc:ca:d4:e5:95:10:95:c0:81:18:2c:17:4a:78:
38:35:12:4e:09:b2:2f:ff:ad:51:22:5e:a9:6a:8a:4c:38:1a:
84:4b:2c:c0:99:75:5c:58:59:1e:35:74:f1:d9:36:c7:57:f1:
36:87:98:5a:c5:ab:c9:38:86:ed:1b:d3:12:f9:64:bf:43:e4:
f3:8d:ff:26:30:d6:92:15:58:5f:4e:fa:20:41:14:93:5d:af:
2f:a6:50:00:cd:70:33:f2:50:0f:b5:d4:b6:3c:6f:4f:3d:ba:
63:fa:d6:0b:e6:f6:eb:a0:c7:3d:69:1a:d7:2d:96:98:67:e1:
3e:0d:27:8b:91:43:3f:78:cb:fb:43:ed:85:72:f4:d7:18:f9:
a3:2f:82:42:a3:b1:80:45:a1:49:b6:c5:c8:19:5c:89:2c:b9:
d9:f3:e9:7d:6d:4e:be:90:3e:d2:29:e5:8d:7f:6d:50:2a:a6:
8f:08:90:0f:20:3a:42:76:2c:07:1f:26:2c:e1:e6:ce:4f:ee:
12:ee:6b:fe:29:20:2b:3c:73:f1:b4:18:fa:22:26:04:22:bb:
68:02:38:b1:86:1b:67:a1:e4:47:2d:2f:e2:16:6b:ee:89:c5:
2f:6c:16:ee:a4:bd:ef:b5:5e:dc:0d:16:61:29:5c:de:d9:c3:
b6:41:47:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:24:50 2025 by rpki-client