Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/hvhqUhTz67fDoCy0uDEL2m06Sq4.roa
File: hvhqUhTz67fDoCy0uDEL2m06Sq4.roa (raw, json)
Hash identifier: LvmxVhwuQLi6cavkDM45F1sKuZFObGZE9Qo+Od1Su50=
Subject key identifier: 86:F8:6A:52:14:F3:EB:B7:C3:A0:2C:B4:B8:31:0B:DA:6D:3A:4A:AE
Certificate issuer: /CN=3a178048d127af3433f17bccda5d07d657eca688
Certificate serial: 018CC870875D478D1ED9428CF37F19ED0883
Authority key identifier: 3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/hvhqUhTz67fDoCy0uDEL2m06Sq4.roa
Signing time: Tue 02 Jan 2024 04:31:07 +0000
ROA not before: Tue 02 Jan 2024 04:31:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 146.19.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:87:5d:47:8d:1e:d9:42:8c:f3:7f:19:ed:08:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a178048d127af3433f17bccda5d07d657eca688
Validity
Not Before: Jan 2 04:31:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86f86a5214f3ebb7c3a02cb4b8310bda6d3a4aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ad:7c:ec:12:b0:e8:b8:9e:9f:ce:d3:a1:96:
b2:5f:fb:de:ad:36:d4:f5:03:cf:8f:84:08:5a:6f:
76:d3:ca:43:ae:d1:83:07:42:c6:d8:c9:61:0b:f3:
87:b6:11:4c:0d:a4:0a:28:5b:27:bb:76:04:d2:bc:
d3:c5:70:c0:d0:a7:71:8a:99:3d:5d:01:00:7c:fe:
13:00:6f:f0:4b:90:eb:10:cf:39:58:7a:78:04:7e:
73:9a:a3:f3:42:3d:10:1f:a0:a6:be:66:06:83:20:
f1:89:f7:03:8f:b3:b9:40:95:84:9c:8e:99:df:be:
54:4e:62:e2:79:24:21:16:78:7c:52:0f:a6:ae:1c:
f3:b8:53:21:e2:79:8e:df:df:39:de:18:96:b5:65:
d5:79:4a:0f:31:ef:fa:36:96:ea:e5:4b:78:f4:c2:
70:94:36:bc:c9:2f:12:4c:4a:b8:f7:84:2c:d0:e3:
48:cf:cf:ca:4f:17:80:5f:f0:6b:45:02:fe:6e:40:
4f:67:23:cd:f3:9c:67:76:19:91:ab:be:38:41:9f:
7f:e8:44:e5:02:7a:e0:2b:f7:9a:65:46:e1:c4:46:
34:2b:ab:e4:6a:f5:63:6c:5c:11:e2:cd:83:5c:57:
6a:b6:58:f3:fb:d8:8d:14:aa:40:d0:63:0c:fb:fd:
e5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F8:6A:52:14:F3:EB:B7:C3:A0:2C:B4:B8:31:0B:DA:6D:3A:4A:AE
X509v3 Authority Key Identifier:
keyid:3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/hvhqUhTz67fDoCy0uDEL2m06Sq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/OheASNEnrzQz8XvM2l0H1lfspog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.142.0/24
Signature Algorithm: sha256WithRSAEncryption
67:75:cd:ad:8e:c2:74:58:81:1e:33:90:3b:ff:7f:c5:58:f7:
d3:12:b8:e3:da:76:ca:50:77:b7:d3:17:dd:b9:37:48:54:76:
da:54:cd:d4:3b:fd:e2:e9:96:71:85:8e:30:0d:1b:90:29:a7:
96:ce:58:8b:d9:4f:2a:6a:98:d6:7b:30:b4:11:0e:a2:24:8e:
fa:7f:1f:30:c3:f9:17:61:e4:f8:79:e3:41:7c:a0:67:6a:5a:
8f:05:79:98:28:5c:d2:21:88:30:6e:b3:06:7d:91:43:41:e1:
a2:67:71:53:69:2d:dd:ff:16:f9:87:ce:89:85:5f:44:6a:0e:
f9:b4:0a:0c:2e:b8:8e:13:1b:b4:ba:38:d3:a5:98:b4:7c:64:
fa:cc:22:d7:bc:d9:29:c3:2b:1b:be:c1:f2:59:eb:60:2e:06:
b0:40:3f:d5:b1:1e:3c:2c:90:5a:2b:82:3f:d5:55:85:92:05:
1d:8b:55:b4:eb:e4:0d:85:26:26:fe:c3:bc:e3:ac:f4:f9:42:
4b:c4:d9:a5:ae:7a:0d:47:b7:d6:54:b8:50:9f:b2:49:d3:52:
22:47:a7:ea:01:8d:0c:a2:46:ee:99:3b:06:5b:74:79:c2:ec:
68:3a:2e:64:2f:c1:c8:8d:71:89:cd:24:00:e0:b2:b3:88:37:
d8:bf:87:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIcIddR40e2UKM838Z7QiDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhMTc4MDQ4ZDEyN2FmMzQzM2YxN2JjY2RhNWQwN2Q2NTdl
Y2E2ODgwHhcNMjQwMTAyMDQzMTA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmY4NmE1MjE0ZjNlYmI3YzNhMDJjYjRiODMxMGJkYTZkM2E0YWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmq187BKw6Lien87ToZayX/verTbU
9QPPj4QIWm9208pDrtGDB0LG2MlhC/OHthFMDaQKKFsnu3YE0rzTxXDA0Kdxipk9
XQEAfP4TAG/wS5DrEM85WHp4BH5zmqPzQj0QH6CmvmYGgyDxifcDj7O5QJWEnI6Z
375UTmLieSQhFnh8Ug+mrhzzuFMh4nmO39853hiWtWXVeUoPMe/6Npbq5Ut49MJw
lDa8yS8STEq494Qs0ONIz8/KTxeAX/BrRQL+bkBPZyPN85xndhmRq744QZ9/6ETl
AnrgK/eaZUbhxEY0K6vkavVjbFwR4s2DXFdqtljz+9iNFKpA0GMM+/3lnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIb4alIU8+u3w6AstLgxC9ptOkquMB8GA1UdIwQY
MBaAFDoXgEjRJ680M/F7zNpdB9ZX7KaIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2hlQVNORW5yelF6OFh2TTJsMEgxbGZzcG9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wMmFjMmQtMGU4Yi00Yjc3LThkMjkt
NDg2MzM0ZGU3MTI3LzEvaHZocVVoVHo2N2ZEb0N5MHVERUwybTA2U3E0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wMmFjMmQtMGU4Yi00Yjc3LThkMjktNDg2MzM0ZGU3MTI3
LzEvT2hlQVNORW5yelF6OFh2TTJsMEgxbGZzcG9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhOOMA0G
CSqGSIb3DQEBCwUAA4IBAQBndc2tjsJ0WIEeM5A7/3/FWPfTErjj2nbKUHe30xfd
uTdIVHbaVM3UO/3i6ZZxhY4wDRuQKaeWzliL2U8qapjWezC0EQ6iJI76fx8ww/kX
YeT4eeNBfKBnalqPBXmYKFzSIYgwbrMGfZFDQeGiZ3FTaS3d/xb5h86JhV9Eag75
tAoMLriOExu0ujjTpZi0fGT6zCLXvNkpwysbvsHyWetgLgawQD/VsR48LJBaK4I/
1VWFkgUdi1W06+QNhSYm/sO846z0+UJLxNmlrnoNR7fWVLhQn7JJ01IiR6fqAY0M
okbumTsGW3R5wuxoOi5kL8HIjXGJzSQA4LKziDfYv4cG
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:02 2024 by rpki-client on console-ams.rpki-client.org