Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/943585-c124-4bac-888a-3e59cf1aec44/1/ImSgW1z4u-KGAmiuoxHHguUSTWY.roa
File: ImSgW1z4u-KGAmiuoxHHguUSTWY.roa (raw, json)
Hash identifier: tEkcAF5S+LOP1e5mGov1wq6tIkVE0533dEs1ps9q4/w=
Subject key identifier: 22:64:A0:5B:5C:F8:BB:E2:86:02:68:AE:A3:11:C7:82:E5:12:4D:66
Certificate issuer: /CN=b67dd6f5bce98f7bc3169b1db9fa0e5b9cef2ebb
Certificate serial: FF01B5
Authority key identifier: B6:7D:D6:F5:BC:E9:8F:7B:C3:16:9B:1D:B9:FA:0E:5B:9C:EF:2E:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tn3W9bzpj3vDFpsdufoOW5zvLrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/943585-c124-4bac-888a-3e59cf1aec44/1/ImSgW1z4u-KGAmiuoxHHguUSTWY.roa
Signing time: Sat 01 Jan 2022 12:02:36 +0000
ROA not before: Sat 01 Jan 2022 12:02:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211193
IP address blocks: 185.251.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16712117 (0xff01b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b67dd6f5bce98f7bc3169b1db9fa0e5b9cef2ebb
Validity
Not Before: Jan 1 12:02:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2264a05b5cf8bbe2860268aea311c782e5124d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e5:d2:f5:82:18:23:13:ab:8a:a8:57:36:03:
a3:96:4f:04:aa:15:b3:bd:65:fd:36:c3:0e:e7:c1:
d3:ed:29:cc:5f:08:a4:67:d0:01:7e:cd:01:40:04:
ab:d9:8e:a2:ad:3c:12:ca:cf:2c:fe:d2:a3:ec:64:
d3:d9:8e:ac:8d:f1:eb:17:50:13:b9:3a:52:f6:87:
1e:d5:35:28:4f:51:f4:f2:d0:e0:76:86:19:97:18:
91:1d:4e:01:7a:9c:0c:ae:e8:f6:f8:1b:34:d1:37:
cc:8f:9a:f6:5b:5f:b8:3c:ab:03:c3:e9:3a:cc:2c:
18:5f:b8:14:51:ec:77:d1:0a:b2:eb:15:bf:db:89:
75:7a:a6:8d:8b:26:0c:18:b6:dc:52:d0:e0:b2:ad:
97:84:9c:5d:ed:15:d2:ee:0c:8a:43:7c:fa:2d:c2:
dd:3d:90:f5:c9:5f:63:a2:a1:bc:39:5f:a6:59:40:
d9:67:7b:e7:cd:d2:63:25:a0:a1:d0:ee:d4:2e:ed:
20:23:88:36:95:63:7e:ea:2d:89:e8:a0:e0:b3:33:
d0:fa:74:bd:b1:dd:b3:ae:31:bc:c8:38:86:f1:8d:
b4:fd:9b:a4:6f:3d:04:55:75:61:1d:7f:1e:3f:4c:
21:a0:ad:ba:d7:fa:40:0b:4a:89:cc:4f:3a:a5:c6:
77:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:64:A0:5B:5C:F8:BB:E2:86:02:68:AE:A3:11:C7:82:E5:12:4D:66
X509v3 Authority Key Identifier:
keyid:B6:7D:D6:F5:BC:E9:8F:7B:C3:16:9B:1D:B9:FA:0E:5B:9C:EF:2E:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tn3W9bzpj3vDFpsdufoOW5zvLrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/943585-c124-4bac-888a-3e59cf1aec44/1/ImSgW1z4u-KGAmiuoxHHguUSTWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/943585-c124-4bac-888a-3e59cf1aec44/1/tn3W9bzpj3vDFpsdufoOW5zvLrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.23.0/24
Signature Algorithm: sha256WithRSAEncryption
97:48:58:76:32:d6:ec:97:c7:a4:4d:a1:d3:16:40:4e:20:fc:
29:08:ff:d4:4b:5c:29:e6:e8:ca:12:37:ba:a4:59:a1:f8:41:
ba:ae:83:69:f0:0c:a9:5f:6d:5a:27:7e:2e:cc:32:6c:a8:67:
15:a8:a6:9a:a9:54:53:21:7c:d3:82:98:b0:14:1c:bf:38:3f:
84:12:23:38:20:d6:41:8a:41:ee:96:d8:62:b6:e4:3c:00:2f:
23:1c:e8:06:fa:39:f7:c2:b0:2b:04:77:03:c8:4c:76:5e:74:
c2:4a:ec:34:65:c8:dc:4c:61:f8:0e:80:cf:95:cc:7e:97:a6:
b9:e9:df:c0:4a:f0:a4:49:04:26:ac:57:d6:16:f5:2c:81:fb:
00:5f:0f:e7:6a:38:5e:d2:7d:c8:90:38:fe:58:e0:ce:5e:f5:
fa:64:45:31:ac:5a:3c:50:90:a9:13:63:0d:8d:e3:e6:1e:25:
a3:fa:3c:44:be:89:61:a9:13:33:76:b8:61:5f:3a:26:5c:03:
17:92:eb:e7:4b:88:77:96:fd:33:dc:97:84:32:d9:dc:55:a8:
35:80:41:56:36:da:ac:ac:03:65:c9:b4:ad:f6:ed:0c:8d:e1:
10:a0:51:34:73:7a:62:99:f9:b4:75:7c:bd:f8:38:ba:5e:8a:
ff:b5:e6:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:02 2025 by rpki-client