Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/B19YNy73Rqe68FFcdtpNj9oru94.roa
File: B19YNy73Rqe68FFcdtpNj9oru94.roa (raw, json)
Hash identifier: w0HGcq1TMValZW8k/1b20QsHh3lZ41lrzn+uXpN0wJQ=
Subject key identifier: 07:5F:58:37:2E:F7:46:A7:BA:F0:51:5C:76:DA:4D:8F:DA:2B:BB:DE
Certificate issuer: /CN=656cc25012e3a4c8b1626dd757c7b0510e457341
Certificate serial: 01856FE7232A5F8E10B4EB9ECBE975A577A2
Authority key identifier: 65:6C:C2:50:12:E3:A4:C8:B1:62:6D:D7:57:C7:B0:51:0E:45:73:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/B19YNy73Rqe68FFcdtpNj9oru94.roa
Signing time: Mon 02 Jan 2023 00:34:56 +0000
ROA not before: Mon 02 Jan 2023 00:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.170.189.0/24 maxlen: 24
185.170.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:23:2a:5f:8e:10:b4:eb:9e:cb:e9:75:a5:77:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=656cc25012e3a4c8b1626dd757c7b0510e457341
Validity
Not Before: Jan 2 00:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=075f58372ef746a7baf0515c76da4d8fda2bbbde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:dc:b9:f3:b1:91:69:93:06:1d:53:f9:1d:
c6:5f:8f:9f:9a:78:1e:35:ab:ad:b5:64:5c:bb:97:
0c:45:a4:52:46:95:6e:fd:62:39:c5:e7:bb:5d:de:
da:89:d9:b5:18:72:01:47:33:df:5f:5e:66:c9:51:
f6:0a:ab:88:66:be:94:0e:ff:0b:d9:5b:0b:d7:48:
65:8b:db:40:e0:61:e2:22:2d:ac:99:16:53:b9:7e:
64:f4:7d:4f:0d:7f:98:64:33:4f:d6:fb:70:3b:09:
41:3a:c0:15:bc:2c:e7:83:15:81:df:7e:9f:da:c6:
ff:e0:5b:f6:39:d3:ad:95:2f:a7:40:c6:cb:ef:60:
ec:41:65:a1:74:62:4c:96:76:06:b4:54:74:04:69:
91:d2:08:bb:8f:f1:1e:c5:80:7f:4b:6c:3c:f4:d8:
f9:15:16:19:bf:0c:57:c8:ca:52:a7:f4:59:7d:ab:
08:5d:d9:d7:f3:5c:4d:a6:28:50:c3:8d:89:fc:eb:
9c:93:98:33:75:53:c2:b8:ee:fe:c1:f9:27:4b:a6:
1f:3b:37:0a:5c:e9:2a:91:c3:4a:69:5f:8a:85:ee:
39:c1:e3:e8:10:b3:36:ca:a2:95:a8:f8:49:d0:54:
0f:9a:a2:c4:9a:d9:e2:d0:fc:cc:ad:b4:51:84:c7:
0c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5F:58:37:2E:F7:46:A7:BA:F0:51:5C:76:DA:4D:8F:DA:2B:BB:DE
X509v3 Authority Key Identifier:
keyid:65:6C:C2:50:12:E3:A4:C8:B1:62:6D:D7:57:C7:B0:51:0E:45:73:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/B19YNy73Rqe68FFcdtpNj9oru94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6db46d-bc2d-45d7-a279-820325f53ccb/1/ZWzCUBLjpMixYm3XV8ewUQ5Fc0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.188.0/23
Signature Algorithm: sha256WithRSAEncryption
c4:1e:82:7f:fe:f4:68:20:84:12:52:5e:7f:1f:53:b2:1c:d7:
a4:05:48:c8:8f:2d:79:8f:a3:59:70:11:e3:ca:dc:10:ee:6e:
ea:e7:e3:f9:f2:2c:9c:88:8f:49:42:7c:fd:ea:68:7f:ba:ec:
70:6b:a9:79:cf:55:9b:88:16:89:f1:ee:71:7c:a8:7a:ea:6c:
a6:97:db:09:4f:cf:15:23:b5:3d:ac:aa:26:a2:de:a5:7a:b4:
fe:a7:e0:62:21:44:22:c3:af:8f:13:6b:de:cf:7e:f8:41:34:
0d:d2:fa:f1:9f:da:fd:5d:45:81:04:7d:ab:92:b7:c2:94:c7:
6f:7d:91:4f:f2:a6:29:ba:25:fb:12:1b:06:c3:dd:44:b8:2f:
07:27:a5:26:1a:38:c6:be:d7:a9:43:be:cb:60:11:e0:d5:c4:
10:7b:9c:07:b4:db:62:a6:aa:17:28:e7:19:59:2f:86:80:2a:
cd:a9:be:d1:00:4b:0a:e8:56:ac:b9:3f:8d:63:f9:f6:c3:66:
d9:f6:e3:62:9f:3a:86:d1:50:61:e1:c1:33:ed:da:2b:f4:47:
fc:3a:99:64:51:7b:18:6b:69:11:0f:e7:27:6a:a3:1e:91:cf:
d7:7f:4f:f2:2f:b4:49:0c:a4:be:f3:01:3d:bd:d4:76:d8:d8:
7e:3f:42:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:50:23 2025 by rpki-client