Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/vtuKzUMojjkobcXXAtZQwzvy1as.roa
File: vtuKzUMojjkobcXXAtZQwzvy1as.roa (raw, json)
Hash identifier: Hs38SGrMv1Gs/tBi8EYVGDHixoYYqFqBEaPnGjaDSng=
Subject key identifier: BE:DB:8A:CD:43:28:8E:39:28:6D:C5:D7:02:D6:50:C3:3B:F2:D5:AB
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0194214407CA8BE0BE2BBF29C92465A19897
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/vtuKzUMojjkobcXXAtZQwzvy1as.roa
Signing time: Wed 01 Jan 2025 09:48:14 +0000
ROA not before: Wed 01 Jan 2025 09:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57724
IP address blocks: 185.149.120.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:07:ca:8b:e0:be:2b:bf:29:c9:24:65:a1:98:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Jan 1 09:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bedb8acd43288e39286dc5d702d650c33bf2d5ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0e:d6:9e:50:85:ac:b4:d8:78:4a:6d:25:c9:
09:0b:d8:b8:d5:39:39:e3:44:3b:c1:9f:8b:b8:f7:
c2:2f:e2:76:58:93:ac:06:b6:47:e1:3e:f4:c3:5e:
18:11:28:f2:8c:ab:f5:ef:b6:46:cc:ff:45:cf:9b:
59:e3:47:30:c8:0d:15:d3:92:56:1e:be:cd:2f:91:
00:b5:81:62:33:87:c9:f9:99:c2:b0:49:1f:b1:99:
22:52:6a:04:8d:60:06:d6:2c:db:89:ec:b5:94:ca:
8d:84:14:5c:be:3b:2c:b9:a3:fc:dd:29:5d:90:94:
52:ab:dd:1e:f1:5c:38:52:d2:83:fa:9d:6a:97:26:
96:40:6c:e5:89:f7:25:e7:0c:6d:69:f2:6f:e0:1c:
34:c5:0e:87:f8:b6:7a:91:75:6f:47:4b:00:eb:20:
95:fb:60:6f:56:be:8e:2f:1f:4b:9d:a4:6c:51:03:
8c:7c:8c:75:28:4d:df:de:d1:66:0f:63:48:c6:5e:
61:51:b3:7d:fd:60:f1:86:88:bb:8f:fd:4b:e7:bb:
78:9d:c8:a9:30:dd:ef:15:12:30:fe:a4:ab:b3:34:
06:10:cc:9b:2b:94:93:cf:96:b9:b1:ba:02:9a:05:
57:16:e0:34:39:fb:34:f8:f0:8c:49:6c:97:f7:7e:
84:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DB:8A:CD:43:28:8E:39:28:6D:C5:D7:02:D6:50:C3:3B:F2:D5:AB
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/vtuKzUMojjkobcXXAtZQwzvy1as.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.120.0/24
Signature Algorithm: sha256WithRSAEncryption
65:69:29:14:42:f0:ff:08:d4:48:06:d3:bd:0e:43:e7:30:d8:
ec:a9:50:a8:dd:e5:c6:2c:de:cd:d3:ad:88:b5:47:53:a4:08:
d2:49:52:bf:d8:61:23:50:81:e8:a2:6e:dd:73:4a:e9:a8:84:
17:75:df:a6:0d:51:7c:ad:ae:41:d6:3c:c5:33:fa:68:69:ef:
00:8a:03:ab:36:16:c8:fc:88:c5:b7:77:ba:88:71:e9:df:ef:
b1:82:b5:54:98:05:03:1b:ff:65:06:eb:c1:d7:8b:70:a4:3f:
18:dd:6b:dd:ec:01:79:c3:56:fb:de:a6:bf:0b:85:15:fe:5d:
9d:be:18:3d:5c:f3:36:3c:29:c2:18:73:e5:0e:b9:ac:b5:7b:
2a:dc:6e:14:12:b1:df:8a:0d:12:ee:49:48:3b:5a:48:c3:09:
7f:65:94:18:67:18:4b:b2:0e:e6:91:c8:2e:cf:fa:98:bb:b6:
0b:d4:92:8a:4a:9d:39:6b:e0:d3:68:00:00:fb:4a:36:63:dd:
e3:78:82:2b:d5:33:69:7b:5a:7b:c7:21:35:54:bb:33:49:61:
a4:e9:37:e7:c6:e3:49:9b:69:82:fc:e1:09:12:cf:62:4b:61:
fe:8b:99:3e:60:1f:76:bd:aa:2e:7e:0f:e4:01:d8:46:5d:62:
b7:fc:80:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:34:04 2025 by rpki-client