Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1a529e-0050-4637-9820-55eb114866c0/1/dULCdhFvn1MlYnIJDn4GUR99iYE.roa
File: dULCdhFvn1MlYnIJDn4GUR99iYE.roa (raw, json)
Hash identifier: w56W0gVA4701OUQv+JRipZbcGHxi6nEj+LE5NgPxxVQ=
Subject key identifier: 75:42:C2:76:11:6F:9F:53:25:62:72:09:0E:7E:06:51:1F:7D:89:81
Certificate issuer: /CN=009421965995af1d65e8e9a98a21dc2681d989f1
Certificate serial: 709613
Authority key identifier: 00:94:21:96:59:95:AF:1D:65:E8:E9:A9:8A:21:DC:26:81:D9:89:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJQhllmVrx1l6OmpiiHcJoHZifE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1a529e-0050-4637-9820-55eb114866c0/1/dULCdhFvn1MlYnIJDn4GUR99iYE.roa
Signing time: Sat 01 Jan 2022 01:57:58 +0000
ROA not before: Sat 01 Jan 2022 01:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 146.19.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7378451 (0x709613)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=009421965995af1d65e8e9a98a21dc2681d989f1
Validity
Not Before: Jan 1 01:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7542c276116f9f53256272090e7e06511f7d8981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7c:00:07:96:63:44:f3:10:73:22:0c:3d:b4:
5f:d7:72:c0:bc:f0:22:f9:05:f1:17:ec:e0:4b:70:
fb:a0:2b:40:e4:ba:e9:08:f2:51:b7:04:c3:65:3e:
82:45:50:a5:1f:e5:4a:65:ba:19:29:ee:30:7d:1f:
f7:72:67:a8:11:3a:bd:ac:ef:e0:97:a1:0f:45:66:
12:94:8b:dc:e0:6a:1e:df:07:67:e3:85:cd:46:52:
0d:93:c8:92:61:79:58:fa:59:4f:6e:1d:3e:52:e1:
6d:54:56:c9:63:89:2a:c1:f8:c2:f4:15:70:b4:39:
c0:00:6d:22:e1:9a:b4:1f:f5:d0:11:cf:22:45:49:
d9:02:1d:8a:fb:fb:e0:16:6b:59:11:d4:da:ef:dc:
94:3e:fa:92:5a:fa:c4:df:5a:a5:f5:6e:f9:ad:a9:
96:23:7b:18:45:31:c3:f9:34:9a:4f:03:56:49:de:
58:a4:8a:27:6a:1b:b2:bb:72:ae:d0:45:a0:e5:3e:
8b:70:db:6e:ac:74:aa:06:7c:0d:2c:72:20:49:dd:
0c:9e:59:50:5a:36:eb:75:f1:7a:8b:6c:a5:9f:02:
44:e3:49:60:63:ad:51:3e:bc:60:0b:b2:e6:b6:b4:
4c:39:f8:01:8b:01:78:65:45:d1:20:7a:d2:29:19:
04:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:42:C2:76:11:6F:9F:53:25:62:72:09:0E:7E:06:51:1F:7D:89:81
X509v3 Authority Key Identifier:
keyid:00:94:21:96:59:95:AF:1D:65:E8:E9:A9:8A:21:DC:26:81:D9:89:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJQhllmVrx1l6OmpiiHcJoHZifE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a529e-0050-4637-9820-55eb114866c0/1/dULCdhFvn1MlYnIJDn4GUR99iYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a529e-0050-4637-9820-55eb114866c0/1/AJQhllmVrx1l6OmpiiHcJoHZifE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.74.0/24
Signature Algorithm: sha256WithRSAEncryption
85:ef:2e:41:3a:a7:0f:11:92:6a:79:8e:e6:15:7f:ed:9a:d4:
e1:72:c0:d1:b4:c4:fc:cf:2b:fb:0f:8f:38:31:44:63:8d:cc:
28:87:f1:61:ae:b8:69:62:a5:04:07:65:a6:d9:03:56:71:28:
0a:55:c4:7f:a4:e9:9b:b2:e0:86:cb:0a:f6:bb:d7:10:fa:9f:
17:1a:01:12:2b:7b:3e:46:d3:9e:2c:35:b0:38:e8:7a:af:d3:
2a:1c:9e:86:22:48:31:96:2e:3d:05:2a:5d:e3:6a:df:66:f2:
0b:ef:c5:8e:56:e7:b7:20:51:82:84:17:16:e5:24:79:d4:81:
78:d5:eb:10:1f:b1:ea:df:60:ef:64:78:6f:b5:74:be:7a:46:
25:9e:d6:e3:e5:8b:0e:09:96:07:82:01:76:25:0e:c3:8e:1e:
1c:45:02:06:0c:44:e0:71:f0:17:a0:36:a2:e2:4a:ff:02:34:
52:a7:ad:99:21:a3:97:6d:b9:0e:6f:fa:e9:02:de:d8:06:8e:
82:40:6e:b8:b9:cd:5a:50:c0:e1:a8:7a:05:d1:e9:7f:6a:5d:
fe:d0:7d:89:28:a9:91:fe:51:c5:43:70:aa:9a:ce:a0:f5:3e:
d9:f0:35:f4:f2:ac:a4:04:e8:c1:58:2e:a9:64:1c:d1:2c:ed:
7c:56:2f:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:59 2024 by rpki-client on console-ams.rpki-client.org