Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/UpVMk5V8yO98257h3larhfjAXjA.roa
File: UpVMk5V8yO98257h3larhfjAXjA.roa (raw, json)
Hash identifier: 0NJUmcI87x1Zm+JW54NeJBIdOf7+29iESpzNiCsXd/Y=
Subject key identifier: 52:95:4C:93:95:7C:C8:EF:7C:DB:9E:E1:DE:56:AB:85:F8:C0:5E:30
Certificate issuer: /CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Certificate serial: 018570306BDC4AC3DEA4EE04641E5DFF388E
Authority key identifier: 2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/UpVMk5V8yO98257h3larhfjAXjA.roa
Signing time: Mon 02 Jan 2023 01:54:59 +0000
ROA not before: Mon 02 Jan 2023 01:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41957
IP address blocks: 185.191.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:6b:dc:4a:c3:de:a4:ee:04:64:1e:5d:ff:38:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd9516db9417952dedd9252fe5d83f09a3d99f5
Validity
Not Before: Jan 2 01:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52954c93957cc8ef7cdb9ee1de56ab85f8c05e30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5d:63:4e:ee:cd:1d:a7:49:08:c0:e7:67:58:
20:c4:88:8c:28:cf:f8:eb:cc:04:e2:99:43:f1:62:
af:2d:b5:80:39:88:cb:32:3d:1b:c5:d5:b1:19:3a:
ac:15:03:f1:f6:41:24:ab:7a:8b:44:4e:8b:38:d6:
22:e4:85:c6:01:a4:ba:11:54:52:58:94:bd:ec:85:
33:88:0a:34:92:1f:f2:b4:42:8a:56:f6:21:d7:f3:
2d:12:69:62:cc:b2:a9:2b:82:6e:15:47:fc:e5:0e:
9e:dd:47:e1:73:19:db:c1:ef:f4:0e:b4:a0:0a:5d:
f0:ec:d6:6d:87:90:34:b6:39:0d:3f:6f:e5:d2:1a:
62:e1:82:34:2f:80:bc:3a:5f:86:4d:0a:70:8d:ef:
80:f4:67:08:be:11:21:e3:9f:63:1d:7e:42:61:a4:
cf:6d:07:8c:7d:23:59:df:aa:b2:2f:68:4c:71:b2:
88:d7:03:38:a0:6f:14:22:75:63:de:b1:24:de:d0:
30:28:e2:39:8d:5d:3d:c5:f0:c1:50:fe:31:92:aa:
ef:55:42:84:18:ff:e5:6c:cd:f3:c4:3d:d9:31:69:
1f:a8:26:32:7d:78:06:84:f8:b0:2d:35:2f:d5:34:
e8:ed:65:51:00:27:0b:57:58:e2:dd:e7:6a:60:f9:
c3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:95:4C:93:95:7C:C8:EF:7C:DB:9E:E1:DE:56:AB:85:F8:C0:5E:30
X509v3 Authority Key Identifier:
keyid:2C:D9:51:6D:B9:41:79:52:DE:DD:92:52:FE:5D:83:F0:9A:3D:99:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/UpVMk5V8yO98257h3larhfjAXjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bab53b-3115-41c5-87ea-c00454e0b12a/1/LNlRbblBeVLe3ZJS_l2D8Jo9mfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.213.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:5e:fe:62:c2:de:9b:79:f7:bc:e9:86:c7:0c:90:7d:95:b0:
44:0f:9b:25:cc:f7:93:b6:69:04:f8:ee:ea:aa:42:e8:60:08:
4f:1d:55:13:da:b7:7a:70:c1:bb:2a:64:46:e3:8e:f0:cb:f2:
c2:da:a6:fd:3d:91:8f:a8:11:ae:7e:5d:dd:fd:71:ad:c0:34:
a7:ee:a0:2f:4f:b5:c3:28:75:93:fe:7d:bf:0a:d4:09:c5:46:
99:6e:66:4a:f3:6f:9c:04:f5:b8:ae:d0:b4:82:72:a4:56:90:
a7:42:d9:fe:23:81:91:1f:28:d7:c6:3d:ef:52:83:f8:34:ca:
fb:df:35:e7:9f:c8:ec:15:38:5d:87:5d:29:07:9a:61:b1:22:
af:7f:fa:ca:fc:98:b3:e0:63:de:69:1e:87:ef:da:d5:cf:63:
01:e1:49:78:21:6e:97:9b:a1:c0:18:67:9f:12:1f:21:41:26:
eb:68:6c:6c:05:2d:e6:fb:5c:2a:31:69:f9:be:02:f8:fb:b4:
d5:a1:30:a5:ac:48:fa:15:94:15:9f:6a:48:f1:29:cd:a2:5a:
75:be:37:10:87:10:48:02:a7:a3:c9:06:dc:1b:3d:23:7d:ef:
15:46:dc:21:f9:93:63:ce:57:7d:d3:af:0b:79:be:fe:bc:b1:
b5:f3:a4:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:14:09 2025 by rpki-client