Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/GbMs7aMVctjZO_nMgjQhvjA5R7U.roa
File: GbMs7aMVctjZO_nMgjQhvjA5R7U.roa (raw, json)
Hash identifier: U+dLyA+AJU3elfrX5reZMFrePZa20isREdZcLMi39W8=
Subject key identifier: 19:B3:2C:ED:A3:15:72:D8:D9:3B:F9:CC:82:34:21:BE:30:39:47:B5
Certificate issuer: /CN=4c7844abef711c232c84f83c807a420af3804728
Certificate serial: 0193BF6D2A701028FEC3EDF7E59A344A8CDE
Authority key identifier: 4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/GbMs7aMVctjZO_nMgjQhvjA5R7U.roa
Signing time: Fri 13 Dec 2024 09:50:22 +0000
ROA not before: Fri 13 Dec 2024 09:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202910
IP address blocks: 185.151.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bf:6d:2a:70:10:28:fe:c3:ed:f7:e5:9a:34:4a:8c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c7844abef711c232c84f83c807a420af3804728
Validity
Not Before: Dec 13 09:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19b32ceda31572d8d93bf9cc823421be303947b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1e:f6:b9:d5:d6:40:94:6f:19:f3:e2:13:e0:
b7:18:21:b8:eb:e2:83:61:65:21:17:3b:aa:30:9d:
44:a2:5a:c2:6b:20:72:8b:02:ab:3c:35:86:28:88:
05:88:12:f1:54:2f:c4:b5:18:0e:22:5a:68:78:63:
df:bc:f0:5f:f8:02:30:ed:5c:1e:76:3e:69:9e:8e:
8e:0f:c2:50:d0:ad:d1:10:0c:18:dd:f4:88:ec:44:
fd:1d:6b:64:75:f1:18:fa:1c:43:55:f1:c9:78:d2:
5f:ce:6d:e9:cc:75:99:b8:7b:1f:1b:98:4c:e1:98:
9b:8e:7c:cb:e5:8b:3f:58:db:57:ad:f3:69:62:55:
b8:97:09:a7:c4:ee:91:63:95:ce:72:03:7d:44:65:
f5:22:68:88:d9:27:ab:47:45:d5:d0:09:d1:77:37:
40:c9:46:1c:bf:17:be:f9:80:c2:b1:01:59:b4:f6:
8d:30:f2:43:4f:b9:2a:5c:31:16:1b:69:38:8e:e5:
f3:56:21:03:6e:74:47:66:2b:96:dc:65:34:dc:2c:
3e:0f:de:97:ec:28:a3:cf:19:c0:da:8e:51:0d:2d:
ca:bd:eb:b9:9d:71:b6:de:8d:80:3a:5c:8f:98:ec:
5a:70:0a:83:0e:64:9c:d9:4f:f2:13:26:7a:7e:49:
3f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B3:2C:ED:A3:15:72:D8:D9:3B:F9:CC:82:34:21:BE:30:39:47:B5
X509v3 Authority Key Identifier:
keyid:4C:78:44:AB:EF:71:1C:23:2C:84:F8:3C:80:7A:42:0A:F3:80:47:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THhEq-9xHCMshPg8gHpCCvOARyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/GbMs7aMVctjZO_nMgjQhvjA5R7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/8d55c0-9aa0-4be7-82a8-dab6b83cf7ec/1/THhEq-9xHCMshPg8gHpCCvOARyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:9b:8a:ff:0b:af:94:4f:45:0b:c8:42:19:87:e4:f8:82:64:
3d:9a:35:3d:70:11:45:51:d2:53:af:60:1b:5d:51:fb:0a:ea:
6d:31:b1:d5:ac:76:72:f6:b9:bf:9e:38:d1:79:f7:3c:4d:3e:
82:9a:dc:d4:58:0d:d9:dc:ae:fd:0a:5f:0c:06:69:e5:12:89:
fd:9c:a9:59:be:36:9e:32:fd:8f:ae:0c:99:84:ac:45:c8:43:
26:13:88:cb:b5:17:19:a8:e4:2a:a2:d7:fc:29:85:82:a2:f3:
71:a7:2d:78:66:cf:9f:e7:a7:fb:be:ff:58:46:51:77:6d:96:
0b:19:f5:84:20:a1:c5:e9:88:5f:f9:1b:b7:81:f4:c7:97:1f:
ab:23:ef:09:ed:0c:bd:27:b3:a8:43:8f:f4:60:ff:e4:66:89:
17:c1:db:56:f2:97:fe:79:ae:17:27:72:a8:cb:66:ac:6c:cf:
77:18:1d:bc:50:9b:c4:c7:5a:80:96:2a:a3:e8:30:a5:76:bc:
08:6c:f1:eb:ea:4b:d3:21:71:c2:8e:c3:eb:a6:2a:7e:bd:5e:
13:0d:3f:26:cb:15:45:a1:13:b3:99:3f:00:b8:a8:d4:00:bc:
34:69:2f:28:2f:c0:b4:7c:95:4e:81:43:e8:db:8a:39:74:63:
6c:c8:d8:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:46:09 2025 by rpki-client