Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Kqelj5iolQfmIsRUtue5NV3Oz0k.roa
File: Kqelj5iolQfmIsRUtue5NV3Oz0k.roa (raw, json)
Hash identifier: oKpZ/XOZSzRj3dj7Ts6Q42tVi7df2lSJN+LPvTv+2ZM=
Subject key identifier: 2A:A7:A5:8F:98:A8:95:07:E6:22:C4:54:B6:E7:B9:35:5D:CE:CF:49
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018410B50EF5EF9D8811ECB67C09D0F154D6
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Kqelj5iolQfmIsRUtue5NV3Oz0k.roa
Signing time: Tue 25 Oct 2022 19:53:31 +0000
ROA not before: Tue 25 Oct 2022 19:53:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44477
IP address blocks: 185.93.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:b5:0e:f5:ef:9d:88:11:ec:b6:7c:09:d0:f1:54:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Oct 25 19:53:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2aa7a58f98a89507e622c454b6e7b9355dcecf49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fa:a3:21:1a:c9:8b:b6:5e:96:2e:2c:31:95:
f7:a6:4b:46:47:1e:fa:39:93:36:3b:8a:08:3b:ea:
0f:49:db:a1:90:5c:f4:2b:6c:9d:58:b3:d0:7b:58:
a7:38:ee:32:e4:59:94:e2:61:ce:8c:ce:0e:81:ab:
7b:a5:24:ca:80:75:0f:32:f4:76:46:63:ad:d5:8a:
2d:df:15:92:5b:45:bd:ad:73:75:54:56:e0:87:10:
0c:9e:b0:58:60:31:59:31:3d:69:ad:74:8e:2f:06:
74:73:7f:3d:a3:46:c3:4e:38:7a:1c:e5:cb:b5:13:
b0:0e:98:37:22:1e:c3:7e:8f:8e:24:e2:9e:28:43:
1f:89:d6:ff:d8:ef:7f:66:81:42:ff:43:60:92:f9:
06:24:06:6c:58:ff:5b:a6:1c:ae:0a:4b:80:7d:24:
09:32:28:e5:17:e7:ea:90:e5:32:d2:6a:31:47:13:
8a:68:c8:90:38:2d:4e:ab:5d:fd:60:22:1a:7e:c6:
5d:d0:d0:b6:01:01:c7:30:0b:e0:9a:5f:17:e2:13:
34:72:1d:2c:15:7f:5c:4e:23:44:8c:92:98:3f:c7:
8f:3d:a6:ba:3d:3f:ff:f3:f7:78:34:96:7b:bd:59:
1c:c5:3a:f6:83:7e:f7:3b:35:52:64:41:4f:e3:a6:
31:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:A7:A5:8F:98:A8:95:07:E6:22:C4:54:B6:E7:B9:35:5D:CE:CF:49
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Kqelj5iolQfmIsRUtue5NV3Oz0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.33.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:51:a1:b2:ef:f2:f4:71:11:dd:43:74:db:64:c2:65:4b:9f:
52:f6:0a:3f:20:75:70:7e:78:fd:c9:0e:8d:1d:ed:7b:3f:a3:
e9:4d:e5:85:1e:67:bc:eb:4b:e3:7d:69:36:de:9c:e6:5c:b7:
76:7a:19:82:79:2f:af:52:2f:ac:3f:41:bc:b4:e2:1e:e5:1e:
43:30:cd:f4:36:f1:5f:bc:e3:d2:5b:46:68:89:36:37:d6:98:
69:22:d3:3a:48:9c:57:c9:19:cc:50:e6:0d:db:5c:a3:21:83:
c3:35:5a:9a:64:27:02:aa:29:a3:8c:2b:9f:46:ae:e7:a9:d8:
c7:a5:e9:7b:f9:6e:4f:42:f1:6f:41:0c:06:61:8f:fb:50:24:
6a:47:5f:1f:a9:fb:44:20:1a:44:b1:6e:6e:5e:ff:48:14:e5:
de:cb:0d:12:5b:94:55:f7:c0:15:20:14:79:c3:c6:ff:f4:72:
a5:45:53:28:ea:02:3e:53:75:cb:ca:c7:28:ea:77:77:19:98:
33:f5:0e:7d:eb:5f:65:ac:75:97:4b:63:28:ff:da:cc:73:c4:
4a:07:68:d7:d7:2b:af:b4:f2:f3:0b:f9:3c:f0:e9:5a:d5:e4:
8b:48:77:0d:f5:c1:c1:bf:98:6b:ad:c6:a9:15:0c:2c:4b:86:
2e:14:ec:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org