Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/BDTH3ILUan6_zfYPTgmdo2aSIEs.roa
File: BDTH3ILUan6_zfYPTgmdo2aSIEs.roa (raw, json)
Hash identifier: vfoMCSza5cDas2vR4Ocwzq0jqksW2l8HAJ0wMflsMqE=
Subject key identifier: 04:34:C7:DC:82:D4:6A:7E:BF:CD:F6:0F:4E:09:9D:A3:66:92:20:4B
Certificate issuer: /CN=9b19758a087876816dc19361eaf1e9412de73f86
Certificate serial: 01942521F36CB66BCB9C2C74CE0FA4E30230
Authority key identifier: 9B:19:75:8A:08:78:76:81:6D:C1:93:61:EA:F1:E9:41:2D:E7:3F:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mxl1igh4doFtwZNh6vHpQS3nP4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/BDTH3ILUan6_zfYPTgmdo2aSIEs.roa
Signing time: Thu 02 Jan 2025 03:49:29 +0000
ROA not before: Thu 02 Jan 2025 03:49:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216120
IP address blocks: 185.150.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:f3:6c:b6:6b:cb:9c:2c:74:ce:0f:a4:e3:02:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b19758a087876816dc19361eaf1e9412de73f86
Validity
Not Before: Jan 2 03:49:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0434c7dc82d46a7ebfcdf60f4e099da36692204b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:83:a4:a4:e2:cb:fc:a0:bc:a6:c8:fd:9a:21:
2f:b9:87:1d:e4:9c:f4:e6:be:d3:ee:1d:bb:de:f1:
93:4a:f6:e8:95:8f:7e:c5:51:a7:b5:c0:30:f6:71:
1a:bd:2f:d4:c8:da:46:58:c6:59:9b:8b:9a:29:78:
d6:f5:cd:53:da:80:46:04:88:58:bf:47:d5:66:5c:
6b:c0:87:a7:c9:a3:ca:53:16:66:f2:60:3d:0a:f1:
54:d1:56:15:0b:c6:66:41:bd:52:db:21:d2:fd:04:
29:a3:ad:0a:71:68:16:90:30:28:e1:12:d9:b7:6e:
20:7b:ce:b1:a3:5c:23:7b:3d:62:c7:3b:34:cc:10:
ed:f3:17:1d:2a:e8:96:cb:bb:c1:c3:75:70:28:ee:
46:28:06:48:e9:f4:fc:52:4d:2f:c9:8f:bd:45:e9:
87:fb:61:c9:8a:de:8a:d3:e6:5b:b0:23:2c:2b:16:
48:60:5d:af:c8:d1:05:63:7c:2c:49:b6:7d:00:bc:
b0:a5:43:94:b8:8a:e2:41:65:d8:7c:cf:04:0a:e9:
a6:d4:10:5c:e4:c1:0e:43:d5:7d:e8:d8:7b:7a:a4:
a8:8f:9d:e6:cc:46:b4:b3:85:8a:15:73:81:12:0c:
59:01:8c:58:fc:94:26:ac:fe:b7:49:21:52:4a:56:
6e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:34:C7:DC:82:D4:6A:7E:BF:CD:F6:0F:4E:09:9D:A3:66:92:20:4B
X509v3 Authority Key Identifier:
keyid:9B:19:75:8A:08:78:76:81:6D:C1:93:61:EA:F1:E9:41:2D:E7:3F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mxl1igh4doFtwZNh6vHpQS3nP4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/BDTH3ILUan6_zfYPTgmdo2aSIEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/mxl1igh4doFtwZNh6vHpQS3nP4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.19.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:70:95:44:67:f3:c7:05:29:f8:b5:fd:6c:c3:b3:7e:85:29:
a1:c7:76:bd:ec:23:2d:ce:ba:aa:9a:ad:c6:f1:c0:e3:77:42:
a6:50:28:4c:06:f9:da:55:5b:f2:70:95:72:2a:49:65:7b:4d:
ff:33:82:ba:f9:36:7c:0a:b5:b6:de:e4:ed:6d:29:4a:86:f6:
42:9a:42:4a:fc:17:a3:5d:ae:cf:48:e4:a6:b4:ab:aa:31:52:
01:96:b6:f7:87:de:40:c4:f1:c8:20:4a:fe:f7:1d:31:dc:31:
54:1f:cc:0b:f1:68:78:1b:4f:33:18:59:9f:3e:a1:df:f0:f1:
68:05:62:72:2b:64:db:1f:bc:bd:ca:f5:f6:5d:3d:69:b1:2a:
9b:73:5a:88:56:b1:ee:4e:ed:ea:2d:5a:c1:b5:aa:ea:c6:34:
b0:62:18:77:46:6c:e9:2a:20:d0:a8:be:32:f1:b3:7f:e5:b5:
56:23:cb:7d:54:83:2f:79:89:03:f3:c1:45:b3:08:e0:c4:3f:
3b:6f:84:6e:f4:81:09:01:52:8e:ad:d8:32:a6:c3:aa:75:33:
02:3e:0b:4a:93:f0:2f:54:6a:a4:0f:b6:13:b2:5e:93:c6:70:
a3:2e:d2:26:13:1f:fb:63:b2:f5:5c:b8:97:08:07:a7:77:e2:
ca:fa:b9:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:55:43 2025 by rpki-client