Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/525549-eeef-4df5-91d6-54ca30833dca/1/hMCeu3BjB4jGnul-muOmsJUZ0kw.roa
File: hMCeu3BjB4jGnul-muOmsJUZ0kw.roa (raw, json)
Hash identifier: KmPbJfBazXMQWjk4Gktu2KXbtd7Tuesqtl9cFc2CSJg=
Subject key identifier: 84:C0:9E:BB:70:63:07:88:C6:9E:E9:7E:9A:E3:A6:B0:95:19:D2:4C
Certificate issuer: /CN=e56485ea0013f03ac14a0b835992e0ab3ace36ef
Certificate serial: 01856F1D8746AA369CEBB02EBE968A97A0E3
Authority key identifier: E5:64:85:EA:00:13:F0:3A:C1:4A:0B:83:59:92:E0:AB:3A:CE:36:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5WSF6gAT8DrBSguDWZLgqzrONu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/525549-eeef-4df5-91d6-54ca30833dca/1/hMCeu3BjB4jGnul-muOmsJUZ0kw.roa
Signing time: Sun 01 Jan 2023 20:54:44 +0000
ROA not before: Sun 01 Jan 2023 20:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 146.19.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:87:46:aa:36:9c:eb:b0:2e:be:96:8a:97:a0:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e56485ea0013f03ac14a0b835992e0ab3ace36ef
Validity
Not Before: Jan 1 20:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84c09ebb70630788c69ee97e9ae3a6b09519d24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b0:cd:09:26:04:4d:88:a6:e2:f7:69:57:3d:
89:33:bd:57:cd:88:b5:bc:cd:0d:aa:fb:dd:ba:08:
bd:04:82:00:33:c6:95:cb:6a:dd:5b:68:fd:f3:bf:
46:57:59:2a:cf:c1:f6:12:31:8a:63:c0:3a:a1:df:
41:6a:08:b4:03:2d:9b:1b:f1:c5:72:c5:61:e7:2e:
05:51:e1:f6:5a:8a:3e:00:37:13:26:51:4c:c1:26:
eb:6f:36:9d:cb:e3:62:6c:30:4e:a9:eb:34:4f:e3:
d8:54:f6:19:dc:25:39:e8:da:5a:b8:9a:e9:fb:fb:
80:c6:be:53:77:04:03:77:4f:6b:16:1a:e9:03:9d:
c1:84:fd:52:b6:77:04:cb:5f:7c:88:d9:b9:3a:a1:
7d:ac:e8:15:ad:c2:9f:39:0a:51:a4:49:5f:cd:fc:
16:88:7e:6e:fe:a3:ef:36:3f:6e:12:7f:30:ae:cf:
70:08:8b:0e:1f:96:67:27:4b:e9:f6:54:f8:d6:0e:
88:ee:9c:c0:41:31:58:dd:3c:99:2a:fd:e4:91:0a:
4b:55:ac:de:88:fd:f6:01:3c:c2:cf:ce:2b:2c:03:
a1:8d:fe:d9:ac:5a:24:fb:eb:d2:e9:bc:51:63:0f:
8b:0d:ec:f0:77:f0:7b:68:1a:49:07:9a:ea:de:a3:
37:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C0:9E:BB:70:63:07:88:C6:9E:E9:7E:9A:E3:A6:B0:95:19:D2:4C
X509v3 Authority Key Identifier:
keyid:E5:64:85:EA:00:13:F0:3A:C1:4A:0B:83:59:92:E0:AB:3A:CE:36:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5WSF6gAT8DrBSguDWZLgqzrONu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/525549-eeef-4df5-91d6-54ca30833dca/1/hMCeu3BjB4jGnul-muOmsJUZ0kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/525549-eeef-4df5-91d6-54ca30833dca/1/5WSF6gAT8DrBSguDWZLgqzrONu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.137.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:8c:c4:bc:07:1b:5e:4a:00:81:d8:ef:d3:a9:14:8a:a0:37:
99:82:96:96:14:83:eb:ed:75:db:b2:f2:a7:56:43:b9:52:17:
d6:83:7c:b8:2d:f9:bd:2d:79:5f:a3:15:19:0a:7f:1a:1b:61:
e8:18:88:dc:72:bb:85:25:26:76:aa:88:18:18:71:2e:15:ee:
29:7c:b5:f1:e2:e9:2c:9f:6d:87:f3:cf:64:2a:7d:1d:27:9b:
55:7c:e2:a0:01:c2:2d:12:f2:88:7c:a6:08:f4:75:a2:a0:7b:
45:48:6b:fb:9c:98:d2:63:81:f6:b6:58:17:40:df:92:af:19:
24:20:bf:8c:fc:db:4a:af:b8:e2:ae:65:57:98:4f:d4:19:10:
d4:99:4e:89:a6:51:7f:24:2c:02:3f:f5:2d:b2:fc:b3:ee:ba:
87:ef:1a:2e:84:fb:d9:a7:5e:46:43:d7:f0:f4:27:a1:fe:e8:
45:50:06:df:d4:aa:0b:72:50:b1:ba:80:09:97:f7:3b:d2:a3:
79:46:e8:26:c1:92:a6:7f:37:08:04:88:64:34:c3:f4:2f:25:
d6:31:b1:e0:56:1d:e7:29:19:03:f8:b0:61:f8:55:ad:ba:ba:
43:7d:ac:06:72:e3:47:95:7b:07:1f:7c:9f:5a:b1:6b:b0:af:
2a:1f:90:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvHYdGqjac67AuvpaKl6DjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1NjQ4NWVhMDAxM2YwM2FjMTRhMGI4MzU5OTJlMGFiM2Fj
ZTM2ZWYwHhcNMjMwMTAxMjA1NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NGMwOWViYjcwNjMwNzg4YzY5ZWU5N2U5YWUzYTZiMDk1MTlkMjRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiLDNCSYETYim4vdpVz2JM71XzYi1
vM0Nqvvdugi9BIIAM8aVy2rdW2j9879GV1kqz8H2EjGKY8A6od9Bagi0Ay2bG/HF
csVh5y4FUeH2Woo+ADcTJlFMwSbrbzady+NibDBOqes0T+PYVPYZ3CU56NpauJrp
+/uAxr5TdwQDd09rFhrpA53BhP1StncEy198iNm5OqF9rOgVrcKfOQpRpElfzfwW
iH5u/qPvNj9uEn8wrs9wCIsOH5ZnJ0vp9lT41g6I7pzAQTFY3TyZKv3kkQpLVaze
iP32ATzCz84rLAOhjf7ZrFok++vS6bxRYw+LDezwd/B7aBpJB5rq3qM38QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFITAnrtwYweIxp7pfprjprCVGdJMMB8GA1UdIwQY
MBaAFOVkheoAE/A6wUoLg1mS4Ks6zjbvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVdTRjZnQVQ4RHJCU2d1RFdaTGdxenJPTnU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81MjU1NDktZWVlZi00ZGY1LTkxZDYt
NTRjYTMwODMzZGNhLzEvaE1DZXUzQmpCNGpHbnVsLW11T21zSlVaMGt3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi81MjU1NDktZWVlZi00ZGY1LTkxZDYtNTRjYTMwODMzZGNh
LzEvNVdTRjZnQVQ4RHJCU2d1RFdaTGdxenJPTnU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhOJMA0G
CSqGSIb3DQEBCwUAA4IBAQAtjMS8BxteSgCB2O/TqRSKoDeZgpaWFIPr7XXbsvKn
VkO5UhfWg3y4Lfm9LXlfoxUZCn8aG2HoGIjccruFJSZ2qogYGHEuFe4pfLXx4uks
n22H889kKn0dJ5tVfOKgAcItEvKIfKYI9HWioHtFSGv7nJjSY4H2tlgXQN+Srxkk
IL+M/NtKr7jirmVXmE/UGRDUmU6JplF/JCwCP/Utsvyz7rqH7xouhPvZp15GQ9fw
9Ceh/uhFUAbf1KoLclCxuoAJl/c70qN5RugmwZKmfzcIBIhkNMP0LyXWMbHgVh3n
KRkD+LBh+FWturpDfawGcuNHlXsHH3yfWrFrsK8qH5Dd
-----END CERTIFICATE-----
Generated at Thu Nov 16 11:22:34 2023 by rpki-client on console-ams.rpki-client.org