Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/0ff256-be1b-4610-ab02-7b1f93c4138a/1/34ML44ijYoqrfGHI3MxcOl60sHw.roa
File: 34ML44ijYoqrfGHI3MxcOl60sHw.roa (raw, json)
Hash identifier: Syb17fI8oFg0SCabspgwDVjFWXM3vHeKSidFoNhbPFc=
Subject key identifier: DF:83:0B:E3:88:A3:62:8A:AB:7C:61:C8:DC:CC:5C:3A:5E:B4:B0:7C
Certificate issuer: /CN=a1b8a2bbf80848429e870e774feeea2ce25e46c5
Certificate serial: 01856CEF163C014C4A2FD6EB36DA576BDE90
Authority key identifier: A1:B8:A2:BB:F8:08:48:42:9E:87:0E:77:4F:EE:EA:2C:E2:5E:46:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obiiu_gISEKehw53T-7qLOJeRsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/0ff256-be1b-4610-ab02-7b1f93c4138a/1/34ML44ijYoqrfGHI3MxcOl60sHw.roa
Signing time: Sun 01 Jan 2023 10:44:46 +0000
ROA not before: Sun 01 Jan 2023 10:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209861
IP address blocks: 146.19.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:16:3c:01:4c:4a:2f:d6:eb:36:da:57:6b:de:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b8a2bbf80848429e870e774feeea2ce25e46c5
Validity
Not Before: Jan 1 10:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df830be388a3628aab7c61c8dccc5c3a5eb4b07c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:53:a2:9a:da:61:c6:29:f6:66:d7:a2:ab:5c:
bd:6e:68:05:1a:b7:78:85:0c:d6:ee:f6:71:d2:95:
a9:5f:f0:64:62:0d:66:f8:0f:c7:49:bb:ca:e6:5e:
4d:80:49:ef:0a:30:27:7e:27:7a:ca:83:54:c0:16:
a1:2d:45:d7:3c:e0:0d:63:92:5c:9a:24:00:bb:07:
54:94:b5:ef:d2:18:53:7b:0d:18:f3:6f:f2:b5:3e:
04:e3:0d:fe:5a:53:97:f0:f7:5c:0c:3c:bd:87:a6:
3f:03:80:4f:4e:01:df:23:69:bb:a0:1f:26:7f:5c:
8e:b0:00:43:fc:26:69:7e:c7:7f:a0:7f:f3:73:d3:
4a:57:a7:ae:f8:34:04:59:30:0b:e6:8a:0d:ed:c5:
4a:1b:1c:a0:31:af:2f:a6:f8:b8:93:a5:dc:54:ff:
65:26:4b:37:05:e0:42:ac:91:7a:1b:b3:e9:b2:e7:
bb:62:84:b0:b0:fe:da:04:50:26:56:1b:a3:7a:9b:
c8:83:39:ca:3e:c8:2f:f7:4d:37:e7:a8:7d:32:ef:
2f:ab:5f:f1:97:7a:c0:e0:c0:44:eb:0e:c3:67:79:
68:50:b0:19:cd:4b:90:47:fe:e5:95:5c:cc:fc:87:
6f:b1:f8:78:b4:3a:31:4b:6a:43:32:04:d6:08:23:
fb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:83:0B:E3:88:A3:62:8A:AB:7C:61:C8:DC:CC:5C:3A:5E:B4:B0:7C
X509v3 Authority Key Identifier:
keyid:A1:B8:A2:BB:F8:08:48:42:9E:87:0E:77:4F:EE:EA:2C:E2:5E:46:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obiiu_gISEKehw53T-7qLOJeRsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0ff256-be1b-4610-ab02-7b1f93c4138a/1/34ML44ijYoqrfGHI3MxcOl60sHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0ff256-be1b-4610-ab02-7b1f93c4138a/1/obiiu_gISEKehw53T-7qLOJeRsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.210.0/24
Signature Algorithm: sha256WithRSAEncryption
08:f1:99:93:78:46:f0:d2:90:d7:b8:1a:1f:86:bf:0b:11:95:
9f:0b:03:af:3c:d4:f9:04:9a:5a:c3:11:e0:8c:69:45:b8:88:
27:d9:37:86:ef:2c:73:e6:8f:97:5d:20:f1:2d:e2:9d:dd:a4:
92:02:e8:d8:14:bd:81:dd:0f:6d:5a:04:25:84:f6:e9:91:ca:
5a:1d:3f:f0:ce:6c:2b:8e:3b:33:b4:18:cd:62:15:32:66:8d:
c2:49:7e:2f:ef:5c:43:19:b4:f1:6a:52:02:8e:a6:15:c2:a5:
ea:99:62:a2:bf:79:39:26:f7:49:b4:d8:c6:ac:81:4e:ae:de:
b4:86:f4:b4:ce:94:ba:cb:59:f0:58:d6:2b:9a:cc:7b:c4:2a:
66:e2:f8:92:02:5d:cb:73:33:b1:f1:65:43:6b:df:8a:ff:a3:
c7:15:3a:ca:1b:a6:41:3b:9f:ee:fe:ed:96:2d:40:29:05:ad:
e1:38:02:f0:26:08:c9:c6:da:5c:60:b4:12:e4:04:61:70:8a:
c2:81:5a:cb:fc:61:90:57:10:30:1f:27:19:7e:e9:f8:9e:ea:
78:e3:a9:41:f1:06:07:2e:ee:6e:09:43:36:e0:19:58:ec:bb:
77:f0:1c:e3:d7:c9:e3:7e:cf:28:f8:6a:a7:41:39:6a:43:9f:
e7:53:97:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:20:23 2025 by rpki-client