Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/418417-bb27-43be-b81f-263990a82a38/1/XXpyYFpA_T3elNGWxmywbd-O6Ds.roa
File: XXpyYFpA_T3elNGWxmywbd-O6Ds.roa (raw, json)
Hash identifier: 2EITHhgYvwoWeUy3eG1s2amJN1LpaRB6Xga6+lQTuME=
Subject key identifier: 5D:7A:72:60:5A:40:FD:3D:DE:94:D1:96:C6:6C:B0:6D:DF:8E:E8:3B
Certificate issuer: /CN=00f24c9fce9670cd11206ddf738a0c6c91dbc32a
Certificate serial: 04EB0E8D
Authority key identifier: 00:F2:4C:9F:CE:96:70:CD:11:20:6D:DF:73:8A:0C:6C:91:DB:C3:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APJMn86WcM0RIG3fc4oMbJHbwyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/418417-bb27-43be-b81f-263990a82a38/1/XXpyYFpA_T3elNGWxmywbd-O6Ds.roa
Signing time: Sat 01 Jan 2022 09:58:56 +0000
ROA not before: Sat 01 Jan 2022 09:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202754
IP address blocks: 185.153.17.0/24 maxlen: 24
185.153.16.0/22 maxlen: 22
185.153.16.0/24 maxlen: 24
185.153.18.0/24 maxlen: 24
185.153.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82513549 (0x4eb0e8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00f24c9fce9670cd11206ddf738a0c6c91dbc32a
Validity
Not Before: Jan 1 09:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d7a72605a40fd3dde94d196c66cb06ddf8ee83b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:15:86:54:75:5f:f6:ad:91:4b:ef:1b:28:7d:
9a:6e:f4:7c:78:d2:78:1c:39:54:54:63:f1:61:1f:
22:7f:f4:b0:a6:c3:f2:8d:a4:cc:5d:9c:fe:74:da:
48:fa:c4:24:27:24:65:a9:e6:bc:a7:15:cd:86:a6:
1c:9e:a6:7a:18:e0:f3:8b:b5:55:4d:98:8b:0c:b9:
b5:b5:ba:23:23:af:ad:ff:6c:1d:a9:ad:fc:65:1a:
a7:d8:fa:4e:5b:1e:96:b6:e6:d8:3e:ef:54:f3:8f:
17:0e:76:da:fc:2b:6e:d0:d7:15:03:3d:03:b5:49:
32:a9:d8:98:30:23:e4:27:04:6b:97:50:5e:03:50:
f8:cb:f8:a9:1c:8c:79:c4:4d:60:48:f8:05:88:3c:
1f:47:b9:d9:16:ce:78:25:64:7a:48:85:ab:7f:ad:
f8:86:ce:26:cb:05:a7:36:d4:3f:6f:bf:04:be:44:
0c:e5:a4:e9:f1:7e:3b:86:96:e7:41:be:83:8c:2d:
4a:21:f8:33:99:5f:2b:30:e0:3b:cf:77:e2:a2:a5:
cf:0f:e3:d8:a9:83:99:52:3f:b3:6d:79:6d:e8:82:
13:11:83:fa:53:1a:6f:f4:99:bc:8a:5f:47:23:50:
36:31:07:cb:38:04:ca:1b:b1:e9:40:d3:5b:58:e5:
b5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7A:72:60:5A:40:FD:3D:DE:94:D1:96:C6:6C:B0:6D:DF:8E:E8:3B
X509v3 Authority Key Identifier:
keyid:00:F2:4C:9F:CE:96:70:CD:11:20:6D:DF:73:8A:0C:6C:91:DB:C3:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APJMn86WcM0RIG3fc4oMbJHbwyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/418417-bb27-43be-b81f-263990a82a38/1/XXpyYFpA_T3elNGWxmywbd-O6Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/418417-bb27-43be-b81f-263990a82a38/1/APJMn86WcM0RIG3fc4oMbJHbwyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.16.0/22
Signature Algorithm: sha256WithRSAEncryption
22:ee:2d:e8:84:72:ad:01:b8:22:4f:3f:b8:b1:24:f5:4e:53:
3d:10:1f:c4:5f:b1:86:59:95:a1:51:f3:dc:54:b8:94:27:e3:
a2:68:35:3d:7a:24:f8:a8:b5:9a:b0:0c:b9:0f:f2:82:c4:3d:
c5:dc:6a:2c:0e:86:16:cc:2f:1f:81:7c:4e:59:15:80:bf:9a:
6b:4f:46:3d:19:18:5e:f7:12:b6:a1:ad:9c:30:ee:ac:d8:1a:
1b:f8:a6:f2:d0:0d:9c:a7:72:9e:4b:31:a9:11:b6:60:b5:02:
e4:2d:2b:45:20:c1:ac:71:8f:a6:c5:c8:e1:86:e6:3d:6a:d0:
fc:e5:a5:02:70:e2:0c:b5:fd:eb:9e:a9:4f:9a:a7:cd:4c:37:
a8:51:ae:fd:8b:4d:f7:86:cb:21:0f:0b:3b:cb:38:2e:0a:9f:
38:90:6b:24:f4:16:cb:e1:4e:56:ae:c4:c1:1a:b4:35:e9:25:
ca:d3:d1:24:05:bf:28:aa:f7:bc:fb:85:bc:5f:6d:26:13:03:
09:11:fe:23:44:13:99:62:51:16:80:f6:b1:6f:b3:72:62:b7:
b0:19:75:0f:e9:3f:06:1d:07:fd:1f:b9:72:e2:8e:1f:cd:5f:
87:e9:93:9e:ab:3d:3c:27:da:13:c8:41:b6:cd:74:c6:03:49:
cb:c4:5e:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:58 2023 by rpki-client on console-fra.rpki-client.org