Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/vWL0q1AficpkOYayojh3b3WZZh0.roa
File: vWL0q1AficpkOYayojh3b3WZZh0.roa (raw, json)
Hash identifier: y4jopACd903AhJYK4tk5xVubC2GJ27QQftrTvUeYVEw=
Subject key identifier: BD:62:F4:AB:50:1F:89:CA:64:39:86:B2:A2:38:77:6F:75:99:66:1D
Certificate issuer: /CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31
Certificate serial: 01942828365E4FD4D272664DA1F5905D9EFD
Authority key identifier: 15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/vWL0q1AficpkOYayojh3b3WZZh0.roa
Signing time: Thu 02 Jan 2025 17:55:11 +0000
ROA not before: Thu 02 Jan 2025 17:55:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 4755
IP address blocks: 185.150.216.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:36:5e:4f:d4:d2:72:66:4d:a1:f5:90:5d:9e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31
Validity
Not Before: Jan 2 17:55:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd62f4ab501f89ca643986b2a238776f7599661d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ac:46:30:32:56:3e:0e:4e:ae:b8:76:08:73:
c2:a9:2a:b2:e2:ec:a0:af:38:b8:1e:5d:09:56:6c:
73:c8:bb:88:6c:f3:7b:9c:ce:e2:15:5a:11:55:f9:
eb:1d:bf:a0:1f:05:80:99:9e:4c:a8:b4:51:9f:73:
1b:f4:d9:49:e8:cd:33:1a:36:78:f1:91:6a:0e:8d:
44:4b:14:e1:f9:de:72:cc:06:b9:e7:ef:af:c4:08:
e4:0c:77:b4:69:ce:fa:98:1f:e5:3c:f7:98:64:e1:
1e:8b:55:2f:99:23:bf:86:47:f5:f4:3b:be:95:36:
45:2f:4f:a1:fd:34:f6:49:99:82:d6:ca:6e:d4:73:
3f:32:55:30:d0:f3:a2:02:a8:6b:db:05:14:36:30:
4e:f0:4b:c1:31:c1:9a:2b:3f:62:e5:50:a7:40:9a:
9a:57:ee:f6:c7:d4:d1:1f:8d:23:8d:b7:7a:65:3b:
7d:41:fe:b0:f0:dd:65:b0:29:b5:51:d4:51:34:0c:
8b:cb:a8:75:c6:38:69:c8:85:10:9a:8c:c1:c4:b5:
37:c1:26:3e:b1:6b:d7:a9:73:2e:ab:94:c7:73:a0:
7b:54:c6:a1:26:d3:e1:02:04:9b:1d:bd:51:e1:3e:
39:fd:1a:4a:01:97:66:82:82:44:ce:bc:ae:c5:71:
ba:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:62:F4:AB:50:1F:89:CA:64:39:86:B2:A2:38:77:6F:75:99:66:1D
X509v3 Authority Key Identifier:
keyid:15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/vWL0q1AficpkOYayojh3b3WZZh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/FdH_a-yfvLielQo6Ae8taG8OejE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.216.0/22
Signature Algorithm: sha256WithRSAEncryption
92:6b:c9:1d:75:88:3c:9c:a4:bb:a3:3f:aa:a7:d4:86:4f:6e:
9c:cf:36:39:8c:dd:36:a4:65:53:4e:4a:a2:bb:52:36:ad:05:
ed:1c:4a:97:a2:7c:bf:0e:9d:90:59:dc:f8:88:55:84:14:fd:
fc:3f:bd:06:1b:6b:99:6b:1b:0a:7b:7d:0d:13:cd:85:45:1a:
7a:38:2a:fa:f4:8f:74:d2:a6:16:ae:c7:fe:39:75:e4:51:ca:
c2:ee:ba:33:83:55:21:44:50:ed:70:1b:53:71:e0:05:48:46:
06:d7:96:29:77:97:57:5a:86:cc:cc:93:4b:c8:16:a4:03:61:
e7:2e:fd:cf:e5:05:38:58:e7:42:70:42:31:1a:2d:60:af:d5:
36:3f:71:cb:bb:13:7b:1d:5c:9c:e8:37:15:51:1c:24:8c:63:
1e:56:a8:17:37:8c:c9:54:87:ff:71:76:6e:4b:cd:e3:5e:08:
4c:76:3a:0e:ea:94:54:1a:75:e5:9f:bc:3d:de:8b:a7:4d:a1:
2d:9f:8d:e5:2b:51:ee:4e:98:7c:a4:3d:5f:cb:ca:44:e0:26:
bf:e5:ce:93:49:c7:cf:a9:82:c3:41:6f:72:11:23:63:c1:20:
ca:d4:80:6b:91:72:a2:73:e4:46:fd:99:c0:9c:2c:aa:f6:f0:
c6:a9:c4:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:21:19 2025 by rpki-client