Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/qExLWUYHW9Y41RbenjxHup49tWs.roa
File: qExLWUYHW9Y41RbenjxHup49tWs.roa (raw, json)
Hash identifier: clb+l4rpcYIQlghYBOHgAMvHUNfdHckpE7fnIDhvPfk=
Subject key identifier: A8:4C:4B:59:46:07:5B:D6:38:D5:16:DE:9E:3C:47:BA:9E:3D:B5:6B
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 0B232D55
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/qExLWUYHW9Y41RbenjxHup49tWs.roa
Signing time: Tue 31 May 2022 13:22:14 +0000
ROA not before: Tue 31 May 2022 13:22:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15440
IP address blocks: 185.149.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186854741 (0xb232d55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: May 31 13:22:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a84c4b5946075bd638d516de9e3c47ba9e3db56b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:45:98:a6:66:c1:8d:ca:38:35:ed:9b:52:1e:
ae:85:5e:a1:33:48:a8:6e:52:9e:08:86:cd:4b:eb:
80:38:57:b3:59:f7:55:42:fb:45:f0:d3:af:d2:72:
49:59:0d:18:e2:fa:42:65:a6:b8:91:17:6e:19:99:
fe:8e:c4:7d:7b:4e:4c:a9:3b:75:d8:7b:3f:7f:89:
03:ae:1e:5d:22:8c:2a:56:93:94:fe:49:93:c7:d9:
3f:09:9a:77:d7:51:dd:f8:c8:d3:8a:54:ed:56:b7:
9c:a3:d8:d1:2a:fd:f4:1b:79:f6:23:17:92:bf:97:
19:ce:a7:be:b3:c2:93:a9:e0:79:4d:4b:10:86:ca:
27:c0:31:aa:0d:47:2e:4f:48:ee:02:7f:11:b4:53:
7b:e2:6d:64:9b:c9:35:c1:dc:23:7f:31:7a:c8:9d:
f6:a0:bb:9a:32:c1:b6:f1:f7:5c:cf:00:c6:75:af:
fa:8b:56:db:ae:66:ea:f2:70:2c:6d:cd:88:39:6f:
ee:67:32:2b:02:49:28:cf:26:90:a9:69:c4:86:7c:
75:10:0a:8d:9a:8d:66:70:a4:ab:f0:e7:5a:85:d1:
91:17:3a:7c:4f:b8:b7:6d:1a:62:8c:77:dc:7f:18:
be:5b:42:2b:54:b2:76:e8:38:dc:8e:c9:58:49:21:
28:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:4C:4B:59:46:07:5B:D6:38:D5:16:DE:9E:3C:47:BA:9E:3D:B5:6B
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/qExLWUYHW9Y41RbenjxHup49tWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.153.0/24
Signature Algorithm: sha256WithRSAEncryption
15:68:74:2e:05:30:dd:43:1a:ed:1a:d4:84:b6:c9:cf:42:98:
9e:80:40:a7:96:9f:b7:3b:53:e3:4a:cf:35:a9:9b:ca:bd:5f:
8b:7b:52:27:75:f1:dc:c6:16:6a:89:37:c1:68:96:eb:6b:61:
9f:24:49:7f:d2:dd:6d:8d:7d:5b:75:ed:a6:19:cf:b1:26:b6:
84:84:7e:00:2c:a3:fb:df:9b:2c:23:cf:0e:43:5b:c7:c2:ad:
f5:0f:90:ab:68:10:a3:4a:66:40:f9:9d:6c:2f:8b:3c:40:1a:
77:2a:ef:c2:ad:c9:fe:38:75:f6:f5:92:ec:27:ca:08:8c:44:
11:89:fe:8d:72:2f:6e:a1:a2:fd:b8:16:9e:1a:de:e7:a2:b5:
87:2a:8c:d6:b3:6c:12:ed:ff:83:48:ac:39:57:e2:43:85:07:
69:c9:88:eb:f5:c9:67:f0:00:99:b2:c6:da:2e:f5:ce:4e:4b:
40:47:7d:c4:b0:f0:f9:94:c0:29:b6:15:4f:fe:b9:e5:66:a9:
5e:fe:f6:0a:58:b3:85:e3:14:ab:31:ab:80:06:73:6a:6f:76:
51:07:69:ca:a2:74:3e:38:1d:26:f7:3b:1b:7f:26:cb:7e:3e:
52:de:70:c5:25:f1:c0:58:28:aa:15:16:32:19:bb:92:ee:d2:
d9:7e:4c:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org