Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/DaflifduOvx8XnynsSC18Ns2FDk.roa
File: DaflifduOvx8XnynsSC18Ns2FDk.roa (raw, json)
Hash identifier: NVb26ZMrRnESth466UkBvPDKrFy7xZoa4FK3FPbQQy0=
Subject key identifier: 0D:A7:E5:89:F7:6E:3A:FC:7C:5E:7C:A7:B1:20:B5:F0:DB:36:14:39
Certificate issuer: /CN=3a178048d127af3433f17bccda5d07d657eca688
Certificate serial: 018CC870870396F533C1D6814EA340F60D2D
Authority key identifier: 3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/DaflifduOvx8XnynsSC18Ns2FDk.roa
Signing time: Tue 02 Jan 2024 04:31:06 +0000
ROA not before: Tue 02 Jan 2024 04:31:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:87:03:96:f5:33:c1:d6:81:4e:a3:40:f6:0d:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a178048d127af3433f17bccda5d07d657eca688
Validity
Not Before: Jan 2 04:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0da7e589f76e3afc7c5e7ca7b120b5f0db361439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:99:4b:3f:44:1d:79:65:e7:ca:c0:ee:d4:fd:
95:3a:2d:bc:29:f6:14:7b:24:f5:9e:a4:17:00:11:
2a:a8:a1:34:a0:b5:56:21:95:99:1b:3a:43:59:37:
ad:28:8a:9d:8b:84:a4:66:d2:e6:ef:2d:37:68:5b:
fd:a4:11:79:dd:90:ae:7c:90:1d:93:4f:80:60:65:
aa:ff:59:6e:fe:08:7c:5a:59:e5:dd:35:97:40:58:
85:05:36:5c:7d:6e:d2:b9:b7:0b:5e:e2:68:04:f7:
a8:a9:c7:b8:93:dd:2c:bd:70:99:78:74:8b:bf:a6:
73:6b:d4:a4:62:ee:ab:99:25:61:f2:15:38:97:5b:
55:48:8a:85:1b:b7:ca:6c:62:2c:20:00:00:6b:0c:
a0:4a:54:72:67:7b:a0:00:b5:56:2c:61:67:2f:71:
29:02:b6:81:21:52:b2:b2:2b:a3:e2:10:b4:06:5e:
0e:d9:20:c8:54:20:ce:64:c7:2a:f7:42:ed:8c:6d:
31:19:32:1e:e4:4a:57:84:88:8c:65:29:77:6a:4b:
1b:dc:5a:da:16:62:df:82:ca:f1:a4:18:7a:27:3c:
78:68:64:97:27:72:6b:e4:9a:2a:c8:f4:8c:73:6a:
de:12:96:c8:b3:93:2b:0e:af:eb:26:88:e8:ef:e7:
a2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A7:E5:89:F7:6E:3A:FC:7C:5E:7C:A7:B1:20:B5:F0:DB:36:14:39
X509v3 Authority Key Identifier:
keyid:3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/DaflifduOvx8XnynsSC18Ns2FDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/OheASNEnrzQz8XvM2l0H1lfspog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.142.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ee:6e:cf:91:1b:9e:3f:a1:c1:c4:01:e8:10:ef:7c:f8:b3:
fc:d2:b7:56:b6:db:ea:c9:e0:3a:1b:c1:09:be:aa:6e:8d:7d:
6d:55:5a:bf:30:85:cf:4d:75:6f:eb:43:a8:1d:01:fb:47:cc:
7a:b0:2e:59:22:5d:f0:a8:88:8e:cf:d7:2f:18:7f:e4:e2:87:
00:2e:d2:1d:3b:e4:8a:32:2f:0b:67:f3:c7:de:48:35:bf:53:
9c:20:e4:4a:6d:53:9d:53:f6:c1:da:ba:c4:1e:8a:60:16:03:
4e:ae:c2:02:91:81:58:e6:65:68:b4:89:77:00:40:c9:47:bd:
07:f3:3c:c2:fe:1f:3e:86:11:71:ba:86:27:ae:3b:9b:be:7a:
e2:25:d1:2c:cf:0b:db:00:93:f1:2b:ed:aa:24:a8:99:28:db:
9f:da:44:cc:78:3b:bf:1d:04:c3:e4:7c:5e:06:61:13:dd:7d:
6d:d4:48:37:50:d2:29:3e:de:a7:4d:d4:42:ab:b9:84:35:1e:
53:f4:a2:07:cc:bc:4a:81:ce:be:f2:d3:2b:fc:7f:e3:20:29:
c3:4c:9c:a7:45:f1:e8:27:f1:d2:d2:ca:b9:05:6a:96:7b:d7:
4c:6d:a3:f8:a4:07:4e:b4:59:59:09:82:7e:48:8d:ed:7f:23:
4b:03:e7:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:02 2024 by rpki-client on console-ams.rpki-client.org