Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/AWIWkMbEhC0SZ0VyGabHj34VDBY.roa
File: AWIWkMbEhC0SZ0VyGabHj34VDBY.roa (raw, json)
Hash identifier: ukpE3RizmDmcK5OVeiXC31QFOVEFILE5vR6yzChDI10=
Subject key identifier: 01:62:16:90:C6:C4:84:2D:12:67:45:72:19:A6:C7:8F:7E:15:0C:16
Certificate issuer: /CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Certificate serial: 0126C206
Authority key identifier: 72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/AWIWkMbEhC0SZ0VyGabHj34VDBY.roa
Signing time: Wed 09 Mar 2022 12:18:17 +0000
ROA not before: Wed 09 Mar 2022 12:18:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35591
IP address blocks: 185.196.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19317254 (0x126c206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Validity
Not Before: Mar 9 12:18:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01621690c6c4842d1267457219a6c78f7e150c16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:92:80:2a:cb:21:42:c4:99:3a:ce:4c:82:7e:
e3:b2:3d:d6:4a:d9:ce:83:e2:37:6f:b3:c4:14:51:
4b:de:83:c7:3c:49:a8:82:db:5a:d1:88:b5:12:22:
cd:ab:ff:b5:f9:07:1b:fa:33:66:d4:fd:c1:8a:57:
8e:53:37:2a:56:51:1d:e7:f1:76:84:03:38:cf:80:
5f:07:4e:9c:64:04:bd:de:05:21:22:ff:75:32:1c:
83:0d:5f:4e:56:9c:f7:8f:2a:7d:4a:87:7e:34:85:
4c:e6:e2:c6:60:b3:ea:d3:88:9f:32:ae:58:a8:39:
da:46:b9:fe:a5:bd:89:84:bd:1e:20:fb:fd:9a:f3:
18:4e:a1:b9:44:0b:91:9b:7b:ec:c0:62:17:d1:97:
72:fa:49:85:aa:47:2e:bc:01:2c:55:e4:0e:16:70:
1d:68:3f:c2:af:50:8b:fe:42:5b:30:cd:82:88:50:
96:05:49:2a:a8:29:28:74:85:21:7c:88:14:b9:a0:
97:6b:77:4b:b0:a5:a4:9e:57:3d:a1:a6:f6:04:fc:
c9:9a:2c:09:11:e5:9a:18:a2:f6:63:30:72:0b:05:
7b:d6:39:5d:0a:d8:c5:c3:35:c6:df:4b:17:e1:4f:
13:ad:27:dd:f5:d7:67:7d:fa:b3:cb:ce:2d:56:69:
fc:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:62:16:90:C6:C4:84:2D:12:67:45:72:19:A6:C7:8F:7E:15:0C:16
X509v3 Authority Key Identifier:
keyid:72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/AWIWkMbEhC0SZ0VyGabHj34VDBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/cntIdqLREFjC5qd5_OrF8ECDtMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.118.0/24
Signature Algorithm: sha256WithRSAEncryption
61:82:3c:50:3b:4b:99:0a:7f:20:29:05:53:0f:5a:8d:6d:a8:
7b:ba:10:bf:e3:09:c5:d5:c9:4f:1d:63:07:73:2c:8f:28:fd:
2e:c9:c6:ca:dd:74:72:2c:4b:7c:4e:20:57:43:64:d9:be:4d:
d3:ce:cd:22:7e:ab:7c:fb:bd:e3:45:17:97:d7:a9:f4:35:db:
25:55:6a:f6:74:98:09:c0:23:24:fa:f5:16:39:0e:82:5d:0c:
eb:81:96:88:f0:dc:47:1e:6f:ec:6f:ce:ef:ac:66:73:10:f9:
be:37:93:f4:eb:98:b4:cb:d6:e9:a6:f1:bc:49:05:6b:fb:75:
a5:09:6e:2c:ba:4c:62:eb:6d:19:45:a2:64:47:90:c4:e2:36:
76:01:42:22:b4:38:c3:dc:77:e9:9e:82:e4:06:d5:64:64:58:
c0:e0:ba:08:fd:55:50:8a:57:f1:1d:f2:f8:fb:58:2c:ba:ed:
85:54:6c:f2:6e:f3:e3:91:80:08:79:46:6a:d8:3a:c9:61:f3:
de:27:a3:1e:67:ef:d6:aa:88:64:26:60:97:9d:76:87:3c:57:
83:6c:91:4c:55:aa:58:be:89:d0:9a:21:2a:31:8d:12:a2:48:
c2:dd:39:a7:e8:7c:e1:41:72:68:d4:d5:80:66:1b:d0:cb:58:
c7:d7:77:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:03:27 2025 by rpki-client