Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/KoW13eY7ivJ6BMIyWGLoO4LWam0.roa
File: KoW13eY7ivJ6BMIyWGLoO4LWam0.roa (raw, json)
Hash identifier: vAsDV2Pkwgfn9YR9ROWHEn7lPfcxu0XXJaPzOhmFsUw=
Subject key identifier: 2A:85:B5:DD:E6:3B:8A:F2:7A:04:C2:32:58:62:E8:3B:82:D6:6A:6D
Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Certificate serial: 019368AF07656595217CF060FC3173A2D861
Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/KoW13eY7ivJ6BMIyWGLoO4LWam0.roa
Signing time: Tue 26 Nov 2024 13:35:21 +0000
ROA not before: Tue 26 Nov 2024 13:35:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396604
IP address blocks: 81.19.195.30/32 maxlen: 32
81.19.195.31/32 maxlen: 32
185.100.0.53/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:af:07:65:65:95:21:7c:f0:60:fc:31:73:a2:d8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52
Validity
Not Before: Nov 26 13:35:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2a85b5dde63b8af27a04c2325862e83b82d66a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6e:9f:45:a6:29:57:10:06:34:a7:99:6f:f1:
14:4a:59:78:03:ab:88:20:84:29:fc:0b:74:0d:f2:
12:3e:ae:8e:23:dc:93:40:96:a4:97:9c:36:b8:ad:
2f:a1:68:86:1b:92:94:8c:03:38:aa:36:f0:9c:c2:
75:37:21:25:cc:f3:65:8b:fe:44:79:e8:c6:8c:c2:
1e:7b:4a:b7:28:ae:63:5e:21:f1:b8:8d:1a:f2:a7:
74:ea:ad:bc:01:65:cb:88:2d:54:4e:d5:89:1f:4f:
0d:82:aa:b4:fe:86:5a:94:5e:02:2b:31:23:0e:05:
ec:32:18:fd:b2:cf:bb:c9:b8:0a:f3:2e:e7:87:ea:
6f:93:51:0a:80:21:11:2e:91:ee:ff:4e:12:9f:96:
14:f1:c8:38:d6:da:dd:cf:8e:af:c5:4a:87:94:9c:
4b:c3:b0:67:8f:3a:c5:a3:28:d3:49:37:92:75:71:
35:59:fb:20:3a:4a:14:ab:50:2c:78:8e:e7:1c:ac:
8c:58:05:74:28:1c:ec:83:99:65:73:5d:48:5d:e4:
b3:d9:a3:8c:15:54:70:f1:e3:86:4c:4a:12:5d:bb:
82:58:c1:db:ff:53:07:19:3d:b4:60:74:64:91:7d:
95:a1:3c:e1:35:f4:ef:99:eb:ef:31:ed:15:95:07:
2e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:85:B5:DD:E6:3B:8A:F2:7A:04:C2:32:58:62:E8:3B:82:D6:6A:6D
X509v3 Authority Key Identifier:
keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/KoW13eY7ivJ6BMIyWGLoO4LWam0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.195.30/31
185.100.0.53/32
Signature Algorithm: sha256WithRSAEncryption
5e:4b:1b:9a:07:ca:02:35:f5:2a:7a:36:05:b4:0e:54:e4:1c:
6d:ad:dc:aa:b4:c9:58:96:e2:db:df:a5:e2:a0:c6:b3:7c:ab:
d8:3a:6c:e4:5c:cb:a1:b9:2d:10:0d:72:af:49:35:a1:85:9a:
ad:74:ab:fc:68:41:ec:50:b2:6c:84:18:2c:18:22:28:7a:37:
85:1a:a5:e5:9a:4c:07:97:4f:a0:40:fb:b4:cf:0f:48:2d:5a:
75:49:fa:14:4c:ec:eb:e3:28:48:d5:da:02:f7:d0:24:4c:47:
21:8d:db:18:b6:06:f2:19:75:04:8b:0a:b0:0f:c2:7b:07:6b:
43:7d:e9:61:1e:c8:ea:b6:45:fb:33:a0:91:2a:33:73:3f:75:
5d:1c:25:7d:2c:11:e9:d4:1f:f0:e9:bd:11:45:9a:b1:1d:fe:
08:66:0d:1e:be:b6:ea:c6:6e:49:7d:35:f2:01:69:67:b0:06:
86:ae:37:0d:ae:2e:de:c4:0f:41:af:c9:13:e5:10:b7:8f:f4:
53:bf:99:48:91:14:9d:f9:ff:8b:f7:4c:bc:65:12:44:51:f5:
85:12:b3:9a:33:2e:2c:92:72:c5:4a:aa:38:f0:a0:29:05:35:
d0:80:87:30:58:16:e8:9f:48:33:e4:04:97:3f:ff:49:e8:72:
03:79:42:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:35 2024 by rpki-client on console.sobornost.net