Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/27dad2-e611-4f0c-94f7-eb76f8110c7f/1/u8KaJlE8E5lYi0hcdOFoonMFNYI.roa
File: u8KaJlE8E5lYi0hcdOFoonMFNYI.roa (raw, json)
Hash identifier: ES67h7IC/2efO/F903Szm4UQ3wke/xm3r1/rYNfdPog=
Subject key identifier: BB:C2:9A:26:51:3C:13:99:58:8B:48:5C:74:E1:68:A2:73:05:35:82
Certificate issuer: /CN=e55dd9da42a7c50bd7689b88d409b576caca4d01
Certificate serial: 018B4949D02A91E16EBA84F3EFFEA257F08E
Authority key identifier: E5:5D:D9:DA:42:A7:C5:0B:D7:68:9B:88:D4:09:B5:76:CA:CA:4D:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5V3Z2kKnxQvXaJuI1Am1dsrKTQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/27dad2-e611-4f0c-94f7-eb76f8110c7f/1/u8KaJlE8E5lYi0hcdOFoonMFNYI.roa
Signing time: Thu 19 Oct 2023 18:54:16 +0000
ROA not before: Thu 19 Oct 2023 18:54:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211462
IP address blocks: 185.150.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:49:49:d0:2a:91:e1:6e:ba:84:f3:ef:fe:a2:57:f0:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e55dd9da42a7c50bd7689b88d409b576caca4d01
Validity
Not Before: Oct 19 18:54:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbc29a26513c1399588b485c74e168a273053582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:64:6e:67:72:ed:1c:12:f7:e6:74:d3:fe:dd:
ac:ff:f8:48:55:0d:82:26:36:4e:39:d9:77:63:c3:
5d:fa:6a:43:b6:2a:50:74:4d:93:98:1e:ac:de:9d:
3a:a9:52:cc:6b:c9:43:84:b0:41:96:67:14:a5:11:
ae:1f:8b:fc:18:7a:fb:44:21:d1:c3:56:35:4f:0d:
38:3f:09:6c:18:1d:96:0e:7c:18:f0:9a:0e:b7:f2:
3f:5d:1d:0f:de:e1:25:28:0c:e8:2f:59:6c:b1:d0:
37:62:cc:9d:b4:02:37:cf:92:ef:7b:53:c0:8f:7a:
62:3f:22:19:75:20:93:49:28:5d:0b:a3:3b:c1:93:
f7:00:49:66:da:5f:0d:3b:65:8e:ac:68:e5:b5:23:
69:2c:67:2d:db:aa:c6:72:07:03:4a:ea:22:a4:24:
a6:04:ea:b9:a7:e7:e1:be:90:db:f2:47:b0:f4:fb:
80:55:fc:09:d7:68:b8:b3:62:92:44:dd:1a:ac:b1:
cc:8b:f3:8f:b8:a1:8d:81:86:0f:56:97:c0:e0:b0:
26:63:8d:b5:fd:83:c1:5c:4d:ab:95:d6:47:56:88:
28:85:59:33:73:c6:6e:93:10:ab:63:2c:c0:fd:e2:
41:d9:b8:e2:4d:81:0d:ca:53:ca:3d:1e:4b:72:59:
d0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C2:9A:26:51:3C:13:99:58:8B:48:5C:74:E1:68:A2:73:05:35:82
X509v3 Authority Key Identifier:
keyid:E5:5D:D9:DA:42:A7:C5:0B:D7:68:9B:88:D4:09:B5:76:CA:CA:4D:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5V3Z2kKnxQvXaJuI1Am1dsrKTQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/27dad2-e611-4f0c-94f7-eb76f8110c7f/1/u8KaJlE8E5lYi0hcdOFoonMFNYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/27dad2-e611-4f0c-94f7-eb76f8110c7f/1/5V3Z2kKnxQvXaJuI1Am1dsrKTQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.18.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:b7:8d:5c:09:ca:af:1d:37:dc:f9:9a:35:64:92:42:27:71:
5b:ed:8f:bd:85:e5:22:db:74:ea:25:75:a9:95:33:01:58:58:
2f:f9:de:fd:fc:ba:fd:3e:af:b1:26:eb:0b:32:cd:11:49:64:
b4:bf:e9:eb:9c:77:24:23:e1:c8:e1:75:a2:ec:ab:0d:53:85:
76:0f:16:44:60:93:cf:9c:46:76:5b:dc:9e:fc:de:7b:85:34:
6d:3a:07:ec:c3:c2:ec:63:da:62:e7:13:21:86:13:1e:be:49:
85:b2:4e:be:3d:03:be:9b:34:c9:5a:de:69:e8:d7:4c:94:d5:
f5:e0:0a:87:10:96:06:bc:7c:07:e3:41:d4:20:8f:7f:59:81:
c2:b7:f4:89:c2:36:3d:b5:ca:65:09:8f:a1:06:97:1e:bb:3b:
f0:e4:2a:64:5b:37:33:fc:94:e3:a4:c2:bd:b5:55:a7:db:05:
a6:90:75:14:b3:f1:5a:98:40:a4:cc:54:f6:54:b1:87:c9:f8:
d2:f8:2c:37:36:58:25:48:0a:cc:48:8b:54:5f:46:60:95:e0:
8d:d7:28:46:14:4a:4d:6c:b8:5d:2e:a0:72:09:4e:63:9d:35:
44:3f:5a:48:72:ac:6b:5c:60:46:87:a8:f5:d5:28:ca:f6:72:
74:d0:e1:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:17 2024 by rpki-client on console-ams.rpki-client.org