Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/825e53-8c10-409c-8feb-6fd345e6dd36/1/AOKf5fAOrp2Wl5sCa6gvHNfOOnI.roa
File: AOKf5fAOrp2Wl5sCa6gvHNfOOnI.roa (raw, json)
Hash identifier: 5ibGu4sNAnJ+YNW2mSLR5zTqh4PdCVcxdjkiy1Q/0bs=
Subject key identifier: 00:E2:9F:E5:F0:0E:AE:9D:96:97:9B:02:6B:A8:2F:1C:D7:CE:3A:72
Certificate issuer: /CN=b1df841f521236e2a0dd71b28d27964966039adc
Certificate serial: 01856DDD2636A3425898B8FE43FD35123A88
Authority key identifier: B1:DF:84:1F:52:12:36:E2:A0:DD:71:B2:8D:27:96:49:66:03:9A:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-EH1ISNuKg3XGyjSeWSWYDmtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/825e53-8c10-409c-8feb-6fd345e6dd36/1/AOKf5fAOrp2Wl5sCa6gvHNfOOnI.roa
Signing time: Sun 01 Jan 2023 15:04:47 +0000
ROA not before: Sun 01 Jan 2023 15:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:26:36:a3:42:58:98:b8:fe:43:fd:35:12:3a:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df841f521236e2a0dd71b28d27964966039adc
Validity
Not Before: Jan 1 15:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00e29fe5f00eae9d96979b026ba82f1cd7ce3a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:26:9c:ed:d7:ab:33:f4:18:71:96:e5:d2:68:
4c:55:a9:dd:6a:7e:a5:2a:ef:4b:62:4c:cf:97:e5:
0c:44:34:8b:cb:dc:4b:de:3b:76:81:ca:42:7a:ab:
00:99:18:e7:88:b7:c1:9e:ac:af:41:d1:fa:32:61:
4c:d7:d9:01:6f:00:30:46:9e:77:2d:e7:0e:12:62:
0f:14:ab:be:54:9f:b9:93:e8:d5:96:26:64:31:82:
5f:d1:97:32:5d:66:ca:fb:6a:12:e0:5b:d7:3f:57:
d9:a9:43:41:bc:e3:af:c6:e9:30:e9:56:d1:90:51:
20:2a:7a:2b:ef:3b:c3:1b:56:16:ef:ea:8b:00:86:
2b:56:2e:bc:38:62:37:36:32:9d:a7:cf:0e:4f:0a:
c5:95:50:e6:06:bc:6c:33:86:14:52:71:a6:1c:69:
47:63:22:64:1b:3f:29:88:4e:30:07:80:a9:ab:6e:
28:53:39:0d:a0:e1:cb:bb:50:7c:42:cf:0e:e5:f9:
8d:d1:fa:e9:9e:a1:de:19:0b:5b:0c:5a:bb:a7:a6:
14:ff:37:37:18:4e:55:0f:d0:ac:1b:0d:a9:cb:4e:
78:1f:a4:d8:3b:10:fe:3c:85:ff:09:5d:2b:68:f0:
9b:f0:52:8a:9d:d7:19:80:40:bf:5f:d7:23:49:e5:
2d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E2:9F:E5:F0:0E:AE:9D:96:97:9B:02:6B:A8:2F:1C:D7:CE:3A:72
X509v3 Authority Key Identifier:
keyid:B1:DF:84:1F:52:12:36:E2:A0:DD:71:B2:8D:27:96:49:66:03:9A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-EH1ISNuKg3XGyjSeWSWYDmtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/825e53-8c10-409c-8feb-6fd345e6dd36/1/AOKf5fAOrp2Wl5sCa6gvHNfOOnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/825e53-8c10-409c-8feb-6fd345e6dd36/1/sd-EH1ISNuKg3XGyjSeWSWYDmtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.153.0/24
Signature Algorithm: sha256WithRSAEncryption
45:0e:93:71:c3:90:76:39:6b:11:a1:fe:9b:f4:a8:11:c9:71:
98:22:69:d0:2b:d2:ff:87:b5:86:1c:75:c8:59:dc:6e:6f:ca:
b5:d6:a8:7e:17:ca:e3:78:ce:02:df:70:6d:84:30:67:32:16:
d4:9c:8e:a1:4c:b1:51:ea:d1:95:c7:d2:67:b3:96:98:04:50:
0b:34:8f:82:14:90:33:b8:15:ba:0e:f2:8b:cb:17:b2:b4:96:
69:f4:b4:03:58:e3:d3:d8:58:29:19:24:29:19:5c:b1:27:d1:
9c:f1:95:0b:86:c4:9c:76:72:c3:20:fa:4d:91:15:23:4a:eb:
c3:ae:8a:10:ef:9c:c2:27:f4:a7:1f:6f:ab:1e:7b:c7:f4:17:
43:f3:c3:ab:e3:9f:d2:cf:4b:1d:4e:69:b6:55:aa:33:39:e4:
10:e3:28:c9:b6:c8:32:2f:14:3b:dc:4c:1f:02:c3:59:ec:79:
b5:99:0d:58:ca:50:f7:37:b1:8a:27:19:2f:e9:a7:9e:dd:6b:
dd:e0:ad:9c:1c:3e:c2:9d:b1:56:77:a7:72:57:49:ec:85:60:
bf:37:13:64:00:a2:a8:62:e5:50:9d:c9:97:77:ca:bd:a4:52:
93:2e:19:93:09:10:95:19:8c:ee:59:0d:80:6d:13:30:6c:b4:
c0:4f:a7:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:53 2024 by rpki-client on console-fra.rpki-client.org