Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/a31768-d44a-474a-8514-0c5d7031ffad/1/L1K6Lo5mKXs3RqJJuzhQjcKjuOY.roa
File: L1K6Lo5mKXs3RqJJuzhQjcKjuOY.roa (raw, json)
Hash identifier: KEGl62FVzP7RPgJyTZybit0N3Wlcw+WVVBenLTzcnAo=
Subject key identifier: 2F:52:BA:2E:8E:66:29:7B:37:46:A2:49:BB:38:50:8D:C2:A3:B8:E6
Certificate issuer: /CN=ce0b298e1e2b300469070d1c10ccaea6f1f80ae2
Certificate serial: 01856FF96F802A2176CEC2032F8A08A6C4B0
Authority key identifier: CE:0B:29:8E:1E:2B:30:04:69:07:0D:1C:10:CC:AE:A6:F1:F8:0A:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zgspjh4rMARpBw0cEMyupvH4CuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/a31768-d44a-474a-8514-0c5d7031ffad/1/L1K6Lo5mKXs3RqJJuzhQjcKjuOY.roa
Signing time: Mon 02 Jan 2023 00:54:56 +0000
ROA not before: Mon 02 Jan 2023 00:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.251.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:6f:80:2a:21:76:ce:c2:03:2f:8a:08:a6:c4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce0b298e1e2b300469070d1c10ccaea6f1f80ae2
Validity
Not Before: Jan 2 00:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f52ba2e8e66297b3746a249bb38508dc2a3b8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:3a:85:fb:09:86:e9:c7:b2:af:78:42:03:e6:
80:8d:6a:0f:b9:81:1b:0e:75:f8:e7:24:41:d1:1f:
2c:8a:84:b0:e4:c7:28:2b:72:31:02:6d:46:59:34:
d5:10:f1:61:6e:c4:dc:1f:67:34:88:11:06:6f:01:
67:46:38:e1:f3:59:5a:de:30:18:90:ee:6b:e9:65:
fb:47:82:47:ed:93:8c:99:52:9d:95:54:d9:b5:11:
ba:0d:40:8d:bb:4f:0d:b2:a0:04:1a:87:03:12:11:
f2:a5:1f:8b:0e:3f:01:2a:ea:79:1f:93:70:02:b6:
32:e1:b5:59:17:37:d3:83:76:a8:c5:97:b8:65:fe:
df:9c:e1:96:e2:7f:72:41:a4:c5:f9:e9:a4:0c:89:
40:36:a2:74:39:b2:8b:38:67:b6:8a:6a:62:fb:31:
b5:b8:d9:2c:cc:2c:a3:a5:22:5f:b8:06:19:16:97:
f3:f6:17:d5:e9:eb:6d:a8:3b:de:db:77:41:4c:43:
72:af:a9:af:9a:c8:1e:ed:17:b9:24:ed:60:bf:dd:
d9:e8:46:24:5d:08:a9:59:1e:92:e2:b8:ef:8b:1e:
92:d1:22:fe:ef:f3:cc:7b:4e:7c:5a:20:25:31:ff:
16:92:c9:57:88:af:bc:55:6f:01:3b:a0:7c:9c:4e:
fb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:52:BA:2E:8E:66:29:7B:37:46:A2:49:BB:38:50:8D:C2:A3:B8:E6
X509v3 Authority Key Identifier:
keyid:CE:0B:29:8E:1E:2B:30:04:69:07:0D:1C:10:CC:AE:A6:F1:F8:0A:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zgspjh4rMARpBw0cEMyupvH4CuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a31768-d44a-474a-8514-0c5d7031ffad/1/L1K6Lo5mKXs3RqJJuzhQjcKjuOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/a31768-d44a-474a-8514-0c5d7031ffad/1/zgspjh4rMARpBw0cEMyupvH4CuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.19.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:30:a0:28:bb:30:7c:41:a8:59:2e:13:46:42:d5:e1:14:57:
a2:ca:8f:f8:70:e3:90:d9:9a:2f:11:48:e2:79:ce:cc:65:0d:
34:ec:7e:87:eb:14:38:3a:1f:53:ca:1e:1a:88:a4:9b:c3:63:
42:94:f7:48:93:8a:8c:26:ce:17:1c:20:ea:f0:c1:35:5f:7a:
f0:4b:cb:83:08:31:16:3f:f0:df:9d:52:b5:da:9f:42:1e:42:
83:2b:a4:05:b8:45:f1:89:0d:d1:3d:9e:ce:9a:0c:f6:9f:da:
5c:28:08:3c:7e:7f:cd:84:8b:f4:27:e9:1d:c4:96:05:ea:bf:
00:02:18:81:8c:9c:64:29:e4:3e:12:13:9c:44:98:fb:f8:41:
7a:9d:5e:9f:49:68:74:b7:fa:3c:f6:9e:61:a9:20:c1:b6:22:
13:cb:72:ed:c5:57:93:32:cf:26:f9:04:7c:ef:76:8c:2f:ba:
75:67:d4:17:ae:9a:e0:39:4a:06:1f:5d:c9:08:b7:d9:4c:36:
8a:f4:00:aa:f1:a7:1b:ab:ce:4a:a0:34:3e:00:1b:fa:d7:e2:
04:36:34:5e:13:16:56:1c:dd:49:6f:7d:f7:75:ba:b7:16:13:
c5:0e:a8:90:60:e2:bc:13:aa:cb:74:ea:b8:3e:ed:38:fa:12:
e6:00:f9:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:56 2024 by rpki-client on console-ams.rpki-client.org