Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/e09CYdzfJ8qw0kyrlwA1X-gnOuA.roa
File: e09CYdzfJ8qw0kyrlwA1X-gnOuA.roa (raw, json)
Hash identifier: MbLsvvH2nF30R4v3dwznCNAZOFFxkScW66Q51w0hS1I=
Subject key identifier: 7B:4F:42:61:DC:DF:27:CA:B0:D2:4C:AB:97:00:35:5F:E8:27:3A:E0
Certificate issuer: /CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Certificate serial: 018BD353F845637E75366A7317DA5A15E067
Authority key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/e09CYdzfJ8qw0kyrlwA1X-gnOuA.roa
Signing time: Wed 15 Nov 2023 14:12:57 +0000
ROA not before: Wed 15 Nov 2023 14:12:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 146.19.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d3:53:f8:45:63:7e:75:36:6a:73:17:da:5a:15:e0:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Validity
Not Before: Nov 15 14:12:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b4f4261dcdf27cab0d24cab9700355fe8273ae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:12:d5:39:bd:c4:cd:dc:ca:a5:04:95:97:bc:
21:98:7f:2a:b1:d1:a6:9a:d2:dc:8e:08:4d:23:2a:
77:38:e1:2e:d4:8d:31:e4:6b:b8:09:f3:ef:33:71:
f4:57:e0:3e:8a:e7:a8:28:8d:67:96:ef:5c:4c:5a:
ae:1e:89:f8:f3:cc:63:86:39:1e:b9:ec:52:d3:f0:
fa:5a:36:03:00:77:69:5c:be:8f:9b:3b:7d:89:07:
70:51:95:85:9b:27:7a:10:c2:6a:19:af:d7:08:33:
01:2e:f4:ae:62:a1:53:c9:fd:73:aa:cc:39:ff:67:
00:af:c7:f4:d6:ca:f7:c1:9f:40:cd:c2:20:21:1a:
c2:65:f5:e0:91:64:6f:9b:59:d2:d7:ab:e5:b1:a0:
2a:a0:08:84:50:c5:78:57:35:c6:81:95:04:c6:49:
5f:e2:46:a7:29:3b:fc:65:8c:85:ff:f3:c6:f4:f9:
a2:3b:c4:cd:47:6f:4f:bf:c3:de:39:03:36:f2:94:
57:73:49:3a:34:80:6c:25:be:f1:64:be:63:ae:7c:
ae:26:56:e3:83:4c:6b:e6:72:b6:2b:22:13:7f:57:
02:bc:cd:4a:c2:e4:eb:fc:f0:b8:82:5e:60:17:47:
57:b4:7f:60:e3:6d:8e:aa:27:ed:bb:eb:0d:7b:ec:
b1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:4F:42:61:DC:DF:27:CA:B0:D2:4C:AB:97:00:35:5F:E8:27:3A:E0
X509v3 Authority Key Identifier:
keyid:70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/e09CYdzfJ8qw0kyrlwA1X-gnOuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.29.0/24
Signature Algorithm: sha256WithRSAEncryption
89:80:24:01:70:29:ad:9b:ae:45:95:80:82:b8:ec:c6:62:15:
0f:97:a8:de:41:cf:4a:82:0f:6d:50:b1:f3:e5:42:16:0a:22:
94:75:26:81:ed:8b:31:0a:14:a6:2a:fe:d3:3a:53:ee:4b:42:
02:0e:b1:77:c1:4f:d9:2f:5b:bd:1e:47:2a:2c:d1:77:fe:5d:
0e:eb:e9:1e:f2:d6:c1:e2:6c:1e:c4:1d:6a:93:68:69:83:7a:
cb:21:0b:e5:a9:1b:ec:bb:61:86:cd:e1:ff:17:50:27:5d:bc:
f8:e0:2a:0f:74:9a:f7:83:a7:37:32:97:c0:9c:f6:26:16:08:
6f:29:31:42:e1:6b:c9:3c:2f:72:a4:54:9c:25:4a:31:9f:6d:
a5:39:34:2e:50:9f:cd:10:d1:4d:e6:3d:ef:d7:58:8d:fa:a3:
8c:a8:97:ac:7c:f1:16:10:35:7c:b3:e8:c2:31:0c:92:60:31:
d1:4c:60:f7:57:76:e0:01:9b:d4:ab:ca:2f:04:61:bc:cd:06:
94:4d:f2:40:ed:f7:62:b3:9b:88:2c:ca:5d:0e:55:2e:d8:a8:
56:8e:c7:e9:68:c4:11:b3:3b:41:97:f9:d7:30:f4:56:24:78:
b7:c6:df:83:0a:89:95:e7:a0:62:5e:d8:ce:47:ef:30:5e:b0:
04:a6:b4:56
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvTU/hFY351NmpzF9paFeBnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwNmQzYWJiYjQ3OGI3NGVmMmFkZWY5YmI3YzQzMzZlMzQx
MTFkNTEwHhcNMjMxMTE1MTQxMjU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjRmNDI2MWRjZGYyN2NhYjBkMjRjYWI5NzAwMzU1ZmU4MjczYWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkRLVOb3EzdzKpQSVl7whmH8qsdGm
mtLcjghNIyp3OOEu1I0x5Gu4CfPvM3H0V+A+iueoKI1nlu9cTFquHon488xjhjke
uexS0/D6WjYDAHdpXL6Pmzt9iQdwUZWFmyd6EMJqGa/XCDMBLvSuYqFTyf1zqsw5
/2cAr8f01sr3wZ9AzcIgIRrCZfXgkWRvm1nS16vlsaAqoAiEUMV4VzXGgZUExklf
4kanKTv8ZYyF//PG9PmiO8TNR29Pv8PeOQM28pRXc0k6NIBsJb7xZL5jrnyuJlbj
g0xr5nK2KyITf1cCvM1KwuTr/PC4gl5gF0dXtH9g422Oqiftu+sNe+yxsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHtPQmHc3yfKsNJMq5cANV/oJzrgMB8GA1UdIwQY
MBaAFHBtOru0eLdO8q3vm7fEM240ER1RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0cwNnU3UjR0MDd5cmUtYnQ4UXpialFSSFZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wYzZmNDctNDcxMy00NDcxLWIwOGYt
YTQyMTNjOTNmMWY3LzEvZTA5Q1lkemZKOHF3MGt5cmx3QTFYLWduT3VBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8wYzZmNDctNDcxMy00NDcxLWIwOGYtYTQyMTNjOTNmMWY3
LzEvY0cwNnU3UjR0MDd5cmUtYnQ4UXpialFSSFZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhMdMA0G
CSqGSIb3DQEBCwUAA4IBAQCJgCQBcCmtm65FlYCCuOzGYhUPl6jeQc9Kgg9tULHz
5UIWCiKUdSaB7YsxChSmKv7TOlPuS0ICDrF3wU/ZL1u9HkcqLNF3/l0O6+ke8tbB
4mwexB1qk2hpg3rLIQvlqRvsu2GGzeH/F1AnXbz44CoPdJr3g6c3MpfAnPYmFghv
KTFC4WvJPC9ypFScJUoxn22lOTQuUJ/NENFN5j3v11iN+qOMqJesfPEWEDV8s+jC
MQySYDHRTGD3V3bgAZvUq8ovBGG8zQaUTfJA7fdis5uILMpdDlUu2KhWjsfpaMQR
sztBl/nXMPRWJHi3xt+DComV56BiXtjOR+8wXrAEprRW
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:18 2025 by rpki-client