Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/3f28cb-e3fc-4a74-9d5f-c6be9347003d/1/kpouujBj_qluykXTqQ9VeNeQyII.roa
File: kpouujBj_qluykXTqQ9VeNeQyII.roa (raw, json)
Hash identifier: sIqdP8hunSalSnv5c7M9DnALEfxAQuYiWL8npCkT5KM=
Subject key identifier: 92:9A:2E:BA:30:63:FE:A9:6E:CA:45:D3:A9:0F:55:78:D7:90:C8:82
Certificate issuer: /CN=ce5bc0eeae1b6b0bda936c5d0689f6a7e875d742
Certificate serial: 0106CE75
Authority key identifier: CE:5B:C0:EE:AE:1B:6B:0B:DA:93:6C:5D:06:89:F6:A7:E8:75:D7:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlvA7q4bawvak2xdBon2p-h110I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/3f28cb-e3fc-4a74-9d5f-c6be9347003d/1/kpouujBj_qluykXTqQ9VeNeQyII.roa
Signing time: Sat 01 Jan 2022 05:00:58 +0000
ROA not before: Sat 01 Jan 2022 05:00:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 185.251.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17223285 (0x106ce75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce5bc0eeae1b6b0bda936c5d0689f6a7e875d742
Validity
Not Before: Jan 1 05:00:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=929a2eba3063fea96eca45d3a90f5578d790c882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:77:b8:39:b3:7d:bd:91:58:a0:53:f6:29:f7:
18:ae:96:ce:8c:92:30:dc:d2:1d:0f:7a:9b:7f:a8:
4a:b8:42:84:38:d0:d7:b4:f2:92:65:2a:73:3a:df:
ae:8b:bb:01:89:ac:3c:5c:02:32:a3:4e:75:2c:89:
a4:65:81:d8:75:3d:1b:ae:43:c0:4c:f0:d1:49:28:
d5:67:85:fb:21:37:b9:65:21:50:95:35:34:77:cf:
d1:6c:8a:40:77:66:f4:55:b4:26:55:e4:38:63:06:
5e:f7:67:9f:9a:0d:df:7b:6c:3a:1c:55:7d:d7:3b:
70:8d:fe:a6:ad:a2:ff:52:67:58:16:bc:06:81:bf:
85:9d:4c:3d:b9:52:77:6f:3d:48:58:9c:f1:cc:94:
33:45:37:bf:03:0a:40:b7:e2:5d:69:9a:ed:7b:cf:
4c:c3:1d:69:3c:bc:33:81:9c:ac:5b:80:59:4c:f1:
4f:88:6c:b7:ea:a6:2a:79:33:48:23:83:fd:48:2d:
cf:35:b2:99:5d:f4:3f:98:4e:3a:34:cc:92:83:fe:
86:f1:47:48:f0:51:bc:5c:5e:e2:62:b1:d4:6b:42:
45:a1:5f:92:df:2b:6e:5f:18:75:7b:42:dd:43:2d:
b2:a7:bc:11:62:ac:72:e3:69:19:fd:81:91:cf:47:
c7:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:9A:2E:BA:30:63:FE:A9:6E:CA:45:D3:A9:0F:55:78:D7:90:C8:82
X509v3 Authority Key Identifier:
keyid:CE:5B:C0:EE:AE:1B:6B:0B:DA:93:6C:5D:06:89:F6:A7:E8:75:D7:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlvA7q4bawvak2xdBon2p-h110I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/3f28cb-e3fc-4a74-9d5f-c6be9347003d/1/kpouujBj_qluykXTqQ9VeNeQyII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/3f28cb-e3fc-4a74-9d5f-c6be9347003d/1/zlvA7q4bawvak2xdBon2p-h110I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.22.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:7e:91:52:3b:4d:ef:fd:93:53:e9:dd:76:6b:26:40:c0:e0:
ed:77:a5:7c:0f:dd:cd:ae:2e:e4:99:e0:44:83:f4:87:cd:43:
1c:0c:ff:89:bb:94:e3:92:55:3f:9e:90:e7:b0:8c:5e:ee:99:
86:12:7c:29:0f:f8:40:fb:94:f3:1a:4d:0e:01:ff:37:7f:e0:
d5:d7:49:de:8b:43:b1:0e:83:fa:32:23:6d:57:1a:5a:e4:3b:
db:95:74:f3:65:f5:af:99:81:df:c3:8e:3c:92:85:62:f8:6d:
6f:fc:12:6e:e1:4e:d3:f2:3a:d6:35:f1:53:d6:10:9f:84:fc:
21:4c:aa:f9:3f:e6:89:45:2c:3f:ce:23:66:9f:47:0f:8e:1c:
bf:3c:c0:4a:a0:07:e5:45:ce:49:6b:31:da:61:71:db:a7:5a:
d0:6c:1c:51:ab:0f:97:05:47:fa:e9:39:28:fe:ab:ba:8d:45:
03:89:d8:9e:ac:d1:c1:f9:de:25:7a:6b:14:7a:aa:02:15:c3:
0e:b7:44:32:9e:f5:8d:c2:68:82:12:b7:86:10:4b:65:41:a5:
1d:a5:d7:b4:9e:56:35:4e:41:f3:33:e8:c6:db:59:ad:11:1c:
58:c1:9a:95:1a:f0:2c:ae:16:a3:c2:09:52:00:10:ca:7c:5e:
6f:18:0b:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:44:31 2025 by rpki-client