Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/49e49a-987e-4741-aba9-37a50cdfae07/1/XC0v0MvaALBx8aBslDUHHk1dMBo.roa
File: XC0v0MvaALBx8aBslDUHHk1dMBo.roa (raw, json)
Hash identifier: La9+C4qFUWEPxnWPfaW730bngFVJ7D2wSbDj1Z3BmLQ=
Subject key identifier: 5C:2D:2F:D0:CB:DA:00:B0:71:F1:A0:6C:94:35:07:1E:4D:5D:30:1A
Certificate issuer: /CN=6e681c256d672981cb39ce25ca78cf215cf4eaa6
Certificate serial: 018DCC6F14730B2ED566922369E776475A52
Authority key identifier: 6E:68:1C:25:6D:67:29:81:CB:39:CE:25:CA:78:CF:21:5C:F4:EA:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bmgcJW1nKYHLOc4lynjPIVz06qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/49e49a-987e-4741-aba9-37a50cdfae07/1/XC0v0MvaALBx8aBslDUHHk1dMBo.roa
Signing time: Wed 21 Feb 2024 16:10:48 +0000
ROA not before: Wed 21 Feb 2024 16:10:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205251
IP address blocks: 185.149.180.0/24 maxlen: 24
185.149.181.0/24 maxlen: 24
185.149.182.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cc:6f:14:73:0b:2e:d5:66:92:23:69:e7:76:47:5a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e681c256d672981cb39ce25ca78cf215cf4eaa6
Validity
Not Before: Feb 21 16:10:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c2d2fd0cbda00b071f1a06c9435071e4d5d301a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f5:f2:65:a8:da:a4:e0:ac:3b:e7:ea:a7:80:
de:36:e7:e4:92:db:72:2d:4c:e8:51:25:e5:3c:e6:
89:00:54:a5:4c:cf:06:8a:e4:0b:1c:e1:e0:a2:2e:
c4:61:40:25:26:00:ad:bf:fc:a6:d2:db:10:8d:06:
63:88:fa:af:d5:65:52:95:47:c4:79:88:f4:77:34:
03:b5:78:b0:be:93:58:f9:32:9a:b2:d8:5f:1c:c8:
a1:e9:08:0d:64:2f:68:b3:dc:e4:9d:c6:59:eb:a3:
45:b6:dd:43:da:fc:0d:60:d4:76:bc:10:29:52:c7:
a7:da:55:18:ee:c8:63:4d:89:b9:f7:cd:a0:0b:b4:
1e:3a:1e:d3:9d:b9:6c:17:ad:22:18:c3:bb:c2:f0:
3a:c9:df:d0:9e:ac:b1:4c:10:9e:74:65:b9:61:7b:
c4:4d:43:4f:41:5e:44:48:4a:f7:8a:c9:27:77:a8:
1c:af:bb:39:f3:0b:de:f3:23:0a:15:08:f9:0e:d1:
bc:47:68:2a:41:4c:c9:9b:1b:9b:23:6c:6c:56:32:
13:93:53:6f:54:04:4e:06:64:ce:ef:17:52:2f:16:
5e:8d:5f:25:7a:40:67:2c:9c:3b:6c:10:42:fd:b0:
d0:24:5a:f5:6e:9b:e2:f0:91:bd:d2:c4:eb:2e:f9:
40:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2D:2F:D0:CB:DA:00:B0:71:F1:A0:6C:94:35:07:1E:4D:5D:30:1A
X509v3 Authority Key Identifier:
keyid:6E:68:1C:25:6D:67:29:81:CB:39:CE:25:CA:78:CF:21:5C:F4:EA:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bmgcJW1nKYHLOc4lynjPIVz06qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/49e49a-987e-4741-aba9-37a50cdfae07/1/XC0v0MvaALBx8aBslDUHHk1dMBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/49e49a-987e-4741-aba9-37a50cdfae07/1/bmgcJW1nKYHLOc4lynjPIVz06qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.180.0-185.149.182.255
Signature Algorithm: sha256WithRSAEncryption
08:1e:ce:c0:62:a0:05:54:0d:16:86:f3:28:01:0e:bd:33:d5:
1f:0d:2c:0d:ed:2a:e6:80:70:27:a4:c9:69:df:57:9b:80:58:
6a:54:cf:41:b4:91:56:4a:bc:1e:e2:75:a4:e9:53:51:d6:ef:
16:94:63:77:c2:9b:48:e1:43:62:37:b7:e1:85:5d:ba:2f:3f:
60:d6:15:0a:d1:56:9e:ee:44:0f:ee:95:64:6c:4f:8c:00:f4:
ee:41:43:cc:10:6c:4e:75:ec:63:02:6d:29:83:98:dd:a7:cb:
b4:c6:bc:18:be:fd:0e:57:9d:88:be:be:27:ef:a8:e7:87:66:
d9:8e:80:66:bd:c0:96:02:03:30:1e:ad:4b:c8:d1:54:d4:b7:
10:4b:e2:44:dd:52:6d:1f:86:df:4c:7a:e3:03:54:95:23:8a:
06:c0:28:60:51:9a:4d:78:9f:d2:0b:74:ad:b7:d3:11:4b:e2:
c4:49:b1:c6:e4:ba:5a:12:4f:b4:67:1f:dc:e2:be:f2:67:cf:
e7:02:7a:52:6b:b6:ed:29:d2:7e:43:69:d4:34:95:ab:32:03:
e1:3a:74:66:bf:d7:90:86:29:dd:6c:d2:cb:c1:dc:ca:a7:21:
15:fd:fa:ae:14:df:1c:b3:25:73:a5:a7:69:df:de:98:69:2b:
b6:45:a7:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:12 2024 by rpki-client on console.sobornost.net