Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/383b38-6786-4c11-aaea-7e70ff214871/1/uYTZmAbTwb0ChJ3LXTb3O8owKbc.roa
File: uYTZmAbTwb0ChJ3LXTb3O8owKbc.roa (raw, json)
Hash identifier: Yh+LVci/9JSili2qV55HkOr+FJ9nftdXzJa9w+y4hF4=
Subject key identifier: B9:84:D9:98:06:D3:C1:BD:02:84:9D:CB:5D:36:F7:3B:CA:30:29:B7
Certificate issuer: /CN=af4c5436c9148ab39f3b90970e2c3272b2e0c6c2
Certificate serial: 01831C4D2C89AA647E7794106C7B1E2C2D59
Authority key identifier: AF:4C:54:36:C9:14:8A:B3:9F:3B:90:97:0E:2C:32:72:B2:E0:C6:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r0xUNskUirOfO5CXDiwycrLgxsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/383b38-6786-4c11-aaea-7e70ff214871/1/uYTZmAbTwb0ChJ3LXTb3O8owKbc.roa
Signing time: Thu 08 Sep 2022 08:52:43 +0000
ROA not before: Thu 08 Sep 2022 08:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50255
IP address blocks: 195.128.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:4d:2c:89:aa:64:7e:77:94:10:6c:7b:1e:2c:2d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af4c5436c9148ab39f3b90970e2c3272b2e0c6c2
Validity
Not Before: Sep 8 08:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b984d99806d3c1bd02849dcb5d36f73bca3029b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:6e:90:dd:de:35:9c:1c:9e:85:a3:34:0e:
48:cc:f4:86:68:db:62:53:7a:64:e9:3c:5c:d3:f5:
72:9a:a5:4e:1a:fb:34:09:15:99:0e:2e:50:30:28:
90:aa:03:b8:ca:da:ec:43:f8:28:48:2a:6e:ad:48:
27:16:14:1a:e3:07:f9:1c:05:1e:1e:46:52:6b:18:
79:b0:18:dc:45:66:f4:fb:a3:81:c9:fb:74:4c:dd:
d1:ef:64:2f:ce:86:5f:58:d3:bd:ad:68:8b:17:88:
e1:8a:3e:3b:7c:32:40:9b:5e:45:cc:29:4c:ce:2c:
7e:67:06:fb:94:33:45:f6:0c:e2:31:34:40:85:69:
fd:c4:6d:a1:42:3e:1e:a3:28:bf:62:d3:b1:24:73:
ee:2c:3b:fc:a0:d3:79:17:23:88:21:25:73:b3:68:
18:05:52:19:c6:7a:c4:a7:10:ce:af:14:f7:b9:e3:
51:1d:2e:43:b9:6d:62:49:08:60:b8:b2:25:00:e7:
e6:8c:26:c6:03:ad:f9:7f:48:e7:06:a7:f0:15:27:
00:a7:19:b7:d2:18:4a:46:7a:d8:1b:bb:5b:74:ba:
43:00:ae:64:34:3a:50:c0:74:6a:b9:29:e6:b5:ea:
10:1a:63:4d:83:b7:33:ae:3a:ad:69:e4:82:89:f8:
95:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:84:D9:98:06:D3:C1:BD:02:84:9D:CB:5D:36:F7:3B:CA:30:29:B7
X509v3 Authority Key Identifier:
keyid:AF:4C:54:36:C9:14:8A:B3:9F:3B:90:97:0E:2C:32:72:B2:E0:C6:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r0xUNskUirOfO5CXDiwycrLgxsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/383b38-6786-4c11-aaea-7e70ff214871/1/uYTZmAbTwb0ChJ3LXTb3O8owKbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/383b38-6786-4c11-aaea-7e70ff214871/1/r0xUNskUirOfO5CXDiwycrLgxsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.151.0/24
Signature Algorithm: sha256WithRSAEncryption
97:7f:c6:6c:22:c1:56:cb:39:c1:e2:ca:b4:e0:75:75:a3:85:
cc:7b:ea:21:05:d7:8d:cf:6b:be:01:01:69:b8:98:62:f4:ea:
97:39:ef:db:88:01:a5:65:32:51:f5:e2:41:65:cd:ca:50:5e:
c9:d8:f9:ce:15:23:2c:c0:76:64:a2:11:ed:b2:0d:2e:ef:67:
48:89:ee:56:f7:50:6b:42:3b:91:0f:d2:fc:6c:3d:12:5d:fe:
38:83:1b:e5:d0:3d:d1:f1:79:95:28:41:14:f2:74:b6:26:c3:
5a:6c:46:ac:af:c2:bf:92:97:f8:65:d4:7f:14:55:57:d7:aa:
c1:3a:bf:c6:16:1b:cc:ca:d5:2a:be:a9:22:3c:26:d6:7c:ca:
cb:e5:29:59:1b:00:9c:ad:a3:e9:7d:0d:cc:7e:78:13:93:bb:
6d:0f:67:7a:57:d1:7d:59:63:e7:84:db:a9:9a:50:8e:43:03:
2d:c8:99:3a:04:dd:42:a1:79:4e:de:a4:47:2c:6b:e4:b4:d8:
0d:b8:b1:a4:ce:e4:0f:f9:9d:90:eb:21:42:73:4a:a6:53:3f:
1b:bb:1b:4c:86:45:fc:13:d3:9c:66:c9:a9:32:1d:28:9b:4a:
e5:8e:58:cb:1b:ad:35:d2:aa:f4:c5:69:01:c5:09:55:53:88:
b0:a3:4b:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:26:28 2025 by rpki-client