Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/21582f-511a-4af3-8028-e2d88376d44d/1/S2AzM7mSvtKOzKYQVnmP327fQIk.roa
File: S2AzM7mSvtKOzKYQVnmP327fQIk.roa (raw, json)
Hash identifier: qBalvHoovNAYJvi51b3VqpRHY65KluKwtthKpWfNWNo=
Subject key identifier: 4B:60:33:33:B9:92:BE:D2:8E:CC:A6:10:56:79:8F:DF:6E:DF:40:89
Certificate issuer: /CN=03d17bc7ebebdcc9f1b3fdb55ad122e7062243e2
Certificate serial: 019D152A
Authority key identifier: 03:D1:7B:C7:EB:EB:DC:C9:F1:B3:FD:B5:5A:D1:22:E7:06:22:43:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9F7x-vr3Mnxs_21WtEi5wYiQ-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/21582f-511a-4af3-8028-e2d88376d44d/1/S2AzM7mSvtKOzKYQVnmP327fQIk.roa
Signing time: Sat 01 Jan 2022 13:04:33 +0000
ROA not before: Sat 01 Jan 2022 13:04:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.151.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27071786 (0x19d152a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03d17bc7ebebdcc9f1b3fdb55ad122e7062243e2
Validity
Not Before: Jan 1 13:04:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b603333b992bed28ecca61056798fdf6edf4089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:48:aa:57:08:56:ea:e3:ef:1e:f5:32:c5:f9:
c3:d9:13:b5:28:b1:4e:24:a3:8c:82:e3:16:1e:05:
1e:c2:20:85:e6:88:54:7c:52:13:39:f9:03:b6:e3:
4f:10:c7:15:b8:a6:6d:52:3f:c1:7e:dc:f2:86:86:
23:0d:db:5d:6f:a5:ac:a7:a0:7c:13:d5:18:24:4e:
d9:d6:5e:12:ec:34:fd:53:6e:94:f0:77:f0:f9:d1:
5e:c6:50:8f:36:ca:ef:e1:9b:83:48:72:95:19:9d:
5d:c6:50:d5:d3:cf:5f:e0:98:3b:93:d0:5c:40:84:
23:7e:2a:bf:b6:8a:b9:c8:76:bd:ee:65:0b:d5:5a:
79:c8:ae:13:1c:e1:6c:72:9b:22:df:32:e9:7e:9b:
7a:e6:b9:7d:b2:ef:18:64:37:8d:fc:2b:10:b5:61:
fe:9c:5b:3c:c6:fe:e4:f9:22:39:6a:ae:69:93:b9:
56:f2:14:4b:5f:2f:ba:c6:eb:83:71:f1:03:fe:4a:
20:fa:30:1b:cd:4b:c6:3f:f1:9d:ce:f7:af:1d:f0:
87:d4:5e:03:f7:e4:44:19:b9:24:59:5f:a9:9d:14:
8b:28:0f:39:0b:3a:43:2c:0c:da:f8:fd:51:7a:be:
d4:30:21:eb:9c:3c:15:e7:9a:9d:92:b0:37:99:6d:
53:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:60:33:33:B9:92:BE:D2:8E:CC:A6:10:56:79:8F:DF:6E:DF:40:89
X509v3 Authority Key Identifier:
keyid:03:D1:7B:C7:EB:EB:DC:C9:F1:B3:FD:B5:5A:D1:22:E7:06:22:43:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9F7x-vr3Mnxs_21WtEi5wYiQ-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/21582f-511a-4af3-8028-e2d88376d44d/1/S2AzM7mSvtKOzKYQVnmP327fQIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/21582f-511a-4af3-8028-e2d88376d44d/1/A9F7x-vr3Mnxs_21WtEi5wYiQ-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.146.0/24
Signature Algorithm: sha256WithRSAEncryption
e4:ec:f0:e2:4b:a1:c0:07:25:d2:f5:fd:bf:34:9c:a3:e8:34:
bf:9c:6d:f6:ee:b4:55:c3:fc:ee:61:2e:89:23:d8:35:0d:94:
b4:d2:91:f7:86:a1:27:39:48:60:6c:56:00:44:5c:0c:78:ae:
41:c9:02:60:ff:85:91:79:54:4e:8b:27:9a:04:63:17:87:64:
09:1a:d8:ae:55:50:2c:6b:ae:c0:6b:39:d0:5e:0c:74:ab:82:
e8:be:b7:6d:94:26:41:d1:d3:9e:55:b1:9b:16:7b:15:95:b4:
52:a2:73:1c:24:12:44:25:cb:6e:c4:d8:34:c6:ba:12:c3:6d:
48:22:1f:df:2a:76:b4:f6:9c:c6:e7:d6:0b:34:83:d7:68:5b:
bf:ab:7f:d9:85:61:cb:73:fb:50:80:c4:76:d5:a2:9e:0a:72:
00:30:90:5e:ee:13:35:d9:b7:0a:d6:a7:03:ef:a7:9c:b1:0d:
db:65:c8:d9:fc:54:2e:9c:0b:0a:11:5a:8c:0a:18:f3:43:2a:
88:e3:b3:dc:6f:c5:ea:7f:7b:d1:f2:1a:eb:c6:ab:76:36:e4:
ac:40:2a:b7:4e:3c:3e:c0:ad:73:a9:7f:41:a1:b0:9e:c4:0d:
12:69:3b:c0:59:bb:93:7e:66:72:ec:fc:d8:31:2c:80:27:6c:
8d:8d:b5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:13 2024 by rpki-client on console-fra.rpki-client.org