Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/1c7481-e6a0-4a1c-87e6-4027423aa38c/1/Z3LVGRibJD3FOlJiXtRqMUO4xDM.roa
File: Z3LVGRibJD3FOlJiXtRqMUO4xDM.roa (raw, json)
Hash identifier: nak8c0H0SvVfOFUvEyDjrRweBCjpwCoXO5Oefl1gbnM=
Subject key identifier: 67:72:D5:19:18:9B:24:3D:C5:3A:52:62:5E:D4:6A:31:43:B8:C4:33
Certificate issuer: /CN=913f4c9c6388f0a0342762009e324ec13271337e
Certificate serial: 018967D2BC2E03AFCB42D7C3D577F72BE33F
Authority key identifier: 91:3F:4C:9C:63:88:F0:A0:34:27:62:00:9E:32:4E:C1:32:71:33:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kT9MnGOI8KA0J2IAnjJOwTJxM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/1c7481-e6a0-4a1c-87e6-4027423aa38c/1/Z3LVGRibJD3FOlJiXtRqMUO4xDM.roa
Signing time: Tue 18 Jul 2023 07:06:51 +0000
ROA not before: Tue 18 Jul 2023 07:06:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 185.151.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:67:d2:bc:2e:03:af:cb:42:d7:c3:d5:77:f7:2b:e3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913f4c9c6388f0a0342762009e324ec13271337e
Validity
Not Before: Jul 18 07:06:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6772d519189b243dc53a52625ed46a3143b8c433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7a:ef:ca:bb:f3:81:6b:e2:9d:42:11:c2:25:
05:2b:6a:84:e5:9b:ae:f6:9a:19:d3:5a:42:73:8f:
cc:e6:68:21:00:ce:fa:3a:a8:76:38:6e:d2:6f:c7:
2e:ee:95:eb:ee:ee:28:f4:e0:8e:16:26:71:a8:ac:
90:21:60:e5:1b:bd:ec:a8:ea:bd:3e:24:ae:2c:af:
06:22:da:44:eb:98:26:d2:80:f7:b7:8e:5e:11:3e:
e5:57:36:59:e2:5f:81:1b:d0:38:51:ae:5a:96:cc:
51:c9:ad:01:f9:76:4e:14:04:fc:3b:82:c2:7e:b8:
f6:1d:5d:61:5b:cc:f8:27:c5:68:2a:a2:b8:0f:4a:
c5:5d:a8:a9:80:f0:f7:37:86:a8:27:09:12:7b:a4:
e5:34:e2:0e:73:df:68:ff:11:d4:9f:8a:85:51:51:
e4:e5:80:8a:87:7c:f8:a1:46:ce:17:c2:a5:da:7a:
14:3a:e0:aa:a1:a2:e2:28:11:43:55:0c:25:c4:9f:
a5:e8:75:4a:5d:d3:46:8d:f3:34:29:ca:af:a1:06:
f8:b0:0d:fe:8d:f1:66:d0:e8:d9:4c:0c:14:17:8f:
56:e7:de:09:70:f5:80:f6:81:63:18:a7:f4:95:12:
fd:6f:1f:70:ab:f9:3d:1d:09:7f:30:f5:59:53:bb:
a8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:72:D5:19:18:9B:24:3D:C5:3A:52:62:5E:D4:6A:31:43:B8:C4:33
X509v3 Authority Key Identifier:
keyid:91:3F:4C:9C:63:88:F0:A0:34:27:62:00:9E:32:4E:C1:32:71:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kT9MnGOI8KA0J2IAnjJOwTJxM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/1c7481-e6a0-4a1c-87e6-4027423aa38c/1/Z3LVGRibJD3FOlJiXtRqMUO4xDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/1c7481-e6a0-4a1c-87e6-4027423aa38c/1/kT9MnGOI8KA0J2IAnjJOwTJxM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.144.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:23:1a:28:8a:17:15:35:01:16:e4:5d:ed:17:f5:f9:4c:bb:
15:77:eb:0b:10:93:02:54:34:ba:75:36:dc:47:d8:b6:31:d3:
6a:e5:d1:40:76:df:41:eb:02:34:33:b9:c2:cb:77:0b:f9:50:
8c:7d:d6:64:e2:34:02:fd:90:2f:b9:a4:7c:ea:6b:7d:75:3f:
3c:dc:ea:e5:55:1e:ed:f3:47:dd:71:f7:ae:af:36:e5:18:ce:
6a:82:e5:f8:4f:47:3c:07:71:ff:cd:00:f6:d3:c3:e9:e9:e0:
55:11:27:dc:25:64:0e:91:93:f1:ec:b2:fe:8e:76:21:02:ec:
ea:43:76:13:e3:6c:59:29:d0:fb:fd:b3:ae:34:02:70:4d:63:
40:a4:e5:d8:ef:85:16:c9:52:3b:2a:31:12:d4:5d:f2:ac:93:
92:fb:4a:2f:9a:e3:1c:d1:3f:82:d4:bb:f1:ae:fe:fe:3d:c2:
1b:37:82:73:d9:fa:c7:0d:88:e5:65:6f:d2:2b:27:4e:fb:1a:
fc:00:a3:b6:cf:41:7a:bb:fd:41:ce:33:4c:98:65:16:0f:e8:
ec:01:58:85:c0:de:c8:60:d6:3d:d2:c8:dc:d4:38:f5:a6:d4:
da:d7:e5:1d:87:e2:d7:cb:81:87:aa:75:eb:29:f1:02:fe:27:
c3:56:7c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:08 2024 by rpki-client on console-fra.rpki-client.org