Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/154f81-ea44-4e76-845e-b0718f437d7c/1/L49Jdu34-Di7tpdzZP6jqVjt1I0.roa
File: L49Jdu34-Di7tpdzZP6jqVjt1I0.roa (raw, json)
Hash identifier: IfwwULDjTOzYSJ82WoJmJHewoAGk2UhJRmB0fDi9XHw=
Subject key identifier: 2F:8F:49:76:ED:F8:F8:38:BB:B6:97:73:64:FE:A3:A9:58:ED:D4:8D
Certificate issuer: /CN=1464c35730b65c6f1e420e59a9627980b53bc1a5
Certificate serial: 01882086B03C62342CCD1D6F23639344F6D5
Authority key identifier: 14:64:C3:57:30:B6:5C:6F:1E:42:0E:59:A9:62:79:80:B5:3B:C1:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FGTDVzC2XG8eQg5ZqWJ5gLU7waU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/154f81-ea44-4e76-845e-b0718f437d7c/1/L49Jdu34-Di7tpdzZP6jqVjt1I0.roa
Signing time: Mon 15 May 2023 17:47:57 +0000
ROA not before: Mon 15 May 2023 17:47:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 185.149.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b0:3c:62:34:2c:cd:1d:6f:23:63:93:44:f6:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1464c35730b65c6f1e420e59a9627980b53bc1a5
Validity
Not Before: May 15 17:47:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f8f4976edf8f838bbb6977364fea3a958edd48d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:45:35:92:fd:ea:8c:5a:50:dc:f4:05:d3:2a:
0f:6d:ff:5c:03:93:81:c9:10:86:14:81:87:42:1d:
5e:47:ef:3d:6b:1e:c9:f3:aa:84:37:f5:0d:22:bb:
2d:b5:be:ea:0d:1d:fe:71:80:14:69:a5:28:3f:2c:
25:81:f3:49:c2:f6:90:82:75:84:23:75:2a:20:49:
01:e4:ff:e9:33:ab:3d:a6:1a:b5:31:30:c3:a1:6a:
37:d4:0f:19:4d:1f:59:ea:86:c0:2b:db:6b:a9:94:
56:9f:98:80:5e:52:03:f6:b1:f5:d9:4d:33:e3:80:
01:98:ca:4f:9f:4f:bf:31:21:cc:a2:73:26:a3:7b:
ac:5b:41:c9:11:b5:79:9f:09:93:00:0d:4b:86:52:
6c:4c:29:13:15:fc:b3:b9:ce:53:a2:a1:4a:86:9d:
32:35:78:7b:91:21:3f:a7:14:c6:4a:85:78:df:22:
38:85:44:74:5e:2a:2b:98:17:e5:13:af:f3:bc:69:
15:3c:60:46:a8:15:0c:e4:2e:f2:b9:6b:2c:a9:5c:
96:fd:3f:7b:33:c3:66:b6:b3:63:55:4f:07:68:20:
c3:a1:1b:0b:98:c1:1f:84:c6:1d:7c:82:ef:1c:c6:
ef:12:ac:fb:89:ac:bd:97:c1:a8:8a:8f:65:f9:f3:
1d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:8F:49:76:ED:F8:F8:38:BB:B6:97:73:64:FE:A3:A9:58:ED:D4:8D
X509v3 Authority Key Identifier:
keyid:14:64:C3:57:30:B6:5C:6F:1E:42:0E:59:A9:62:79:80:B5:3B:C1:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FGTDVzC2XG8eQg5ZqWJ5gLU7waU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/154f81-ea44-4e76-845e-b0718f437d7c/1/L49Jdu34-Di7tpdzZP6jqVjt1I0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/154f81-ea44-4e76-845e-b0718f437d7c/1/FGTDVzC2XG8eQg5ZqWJ5gLU7waU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.148.0/24
Signature Algorithm: sha256WithRSAEncryption
92:9e:63:28:97:a0:50:03:78:9d:3b:5f:ea:0e:fe:91:58:2e:
76:ea:eb:4d:56:e9:3b:12:c5:18:6c:9f:f7:43:bb:f9:19:08:
73:70:2e:0d:6b:83:4d:02:bc:ca:c8:61:ae:df:47:25:dd:6b:
41:88:fe:6a:1d:ba:43:4d:30:51:5f:1b:ef:84:74:e6:d7:42:
15:d0:53:98:8e:20:09:97:11:eb:8e:a8:e0:f6:ea:a0:1d:63:
b2:4b:51:67:91:5b:06:07:d4:2d:ab:f5:fa:04:68:06:55:21:
d0:0e:6b:a7:91:b9:d8:c6:e2:e1:07:8a:72:99:6e:15:06:cf:
40:cc:d0:d9:21:54:d2:39:a3:42:e7:5e:9a:e8:f6:db:c0:c1:
e6:f2:cd:03:21:fa:f3:0d:aa:3f:fa:0f:8d:09:ea:fd:f2:e7:
96:2f:7d:1d:31:d0:c0:fd:7e:9d:77:81:2a:fc:19:9d:17:6b:
c9:6a:28:1c:8e:20:4e:a6:d5:8b:a3:82:27:0a:0f:ff:62:2a:
b2:92:e1:7b:cb:93:69:cf:ec:5e:ba:c6:28:fb:da:d8:8c:69:
84:33:76:62:8e:fc:3b:01:1d:88:60:17:01:54:d6:fa:59:4b:
0f:49:8f:3b:6f:df:08:d0:fa:7d:df:24:3e:e8:be:60:3d:24:
d8:90:f8:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:36 2025 by rpki-client