Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/pWgXMg0WeniP4BAwveHEJNkqAL4.roa
File: pWgXMg0WeniP4BAwveHEJNkqAL4.roa (raw, json)
Hash identifier: S6I8GBZNTgc1UuCFAnHUG02m0xYFmX2sohsEhbah7cI=
Subject key identifier: A5:68:17:32:0D:16:7A:78:8F:E0:10:30:BD:E1:C4:24:D9:2A:00:BE
Certificate issuer: /CN=3a178048d127af3433f17bccda5d07d657eca688
Certificate serial: 018CC87087959E8A98779AF1C50C6A895FBC
Authority key identifier: 3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/pWgXMg0WeniP4BAwveHEJNkqAL4.roa
Signing time: Tue 02 Jan 2024 04:31:07 +0000
ROA not before: Tue 02 Jan 2024 04:31:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41171
IP address blocks: 146.19.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:87:95:9e:8a:98:77:9a:f1:c5:0c:6a:89:5f:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a178048d127af3433f17bccda5d07d657eca688
Validity
Not Before: Jan 2 04:31:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a56817320d167a788fe01030bde1c424d92a00be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3a:10:f2:09:c6:83:3d:58:e1:6b:69:41:44:
81:38:70:6f:1c:a3:d0:d8:69:55:24:26:85:a3:02:
58:07:d6:76:fe:60:6b:e2:01:ce:59:f6:91:65:fb:
7c:dc:67:2c:07:7b:0f:50:46:1f:df:d7:ed:c6:03:
bb:91:65:19:d2:49:a5:7d:aa:c7:f7:f4:f6:72:e0:
ff:ac:5a:a2:a2:61:53:11:ab:b9:ba:ec:d2:e8:61:
92:49:99:8d:f2:39:30:12:29:0c:fa:16:e2:48:10:
08:6e:2f:94:78:57:9b:8d:f0:18:e8:bf:2e:80:9b:
fd:07:90:1c:58:e3:3d:c3:fa:bf:2d:d5:1a:6e:b0:
3c:10:f7:74:ed:a6:ba:42:1c:7f:ef:b3:f4:0d:4c:
24:61:ea:f0:11:97:95:6a:8c:62:6b:15:17:4e:e4:
8e:63:2f:21:d6:b3:32:1a:0c:33:c9:42:b1:35:3a:
1a:fb:04:3a:64:d7:e2:b4:54:6a:b7:31:29:b6:94:
c6:a2:5c:bf:8d:73:8c:49:06:92:af:91:e9:66:c3:
42:07:4b:6c:cb:e8:f1:fe:20:a4:2a:83:4d:15:36:
6c:3a:fa:e1:b9:a0:ea:77:b3:fe:5b:0d:34:70:3a:
d1:a4:63:41:f2:70:cb:6b:c3:39:8e:60:f5:56:95:
23:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:68:17:32:0D:16:7A:78:8F:E0:10:30:BD:E1:C4:24:D9:2A:00:BE
X509v3 Authority Key Identifier:
keyid:3A:17:80:48:D1:27:AF:34:33:F1:7B:CC:DA:5D:07:D6:57:EC:A6:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OheASNEnrzQz8XvM2l0H1lfspog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/pWgXMg0WeniP4BAwveHEJNkqAL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/02ac2d-0e8b-4b77-8d29-486334de7127/1/OheASNEnrzQz8XvM2l0H1lfspog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.142.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:95:cf:ad:49:fa:ef:4d:eb:bf:ce:43:65:1c:50:cf:12:15:
02:68:bd:0a:31:42:3c:eb:c3:50:e1:9f:f7:a7:4c:8b:aa:a3:
4c:5d:1c:65:d0:be:f3:75:32:b5:e0:b7:50:44:9e:4b:3e:4e:
d7:07:43:a9:41:37:5b:34:85:d4:cc:d6:b0:e2:49:00:b5:08:
d8:ab:a9:62:6c:2f:1c:af:07:f4:27:a4:ff:ca:5e:51:6a:f0:
4c:81:8c:02:c6:81:66:a1:29:52:0b:12:66:e4:27:37:ae:38:
1e:e0:ff:b7:ac:25:76:27:17:86:24:8a:22:05:6f:1a:87:67:
67:88:ba:8e:4b:1b:14:a3:8f:e1:38:07:56:72:52:aa:72:dd:
f9:0f:b7:32:14:80:e7:f9:44:91:46:90:69:2c:74:1d:64:b1:
74:ec:fd:e4:22:86:ef:fd:dd:6c:45:01:d4:49:4e:3f:ae:cd:
3d:de:fc:52:24:a2:89:0b:b7:e4:35:16:f4:2b:aa:bf:80:ad:
b4:c9:8b:c1:b1:9e:b1:cc:b0:39:8a:8b:ce:96:95:7b:75:da:
bc:4a:27:f3:09:de:c4:59:88:49:9b:d7:18:5b:59:ac:30:3a:
a5:33:bc:6b:f8:ba:ab:fb:1a:06:25:bf:e2:c6:8e:23:cc:9e:
f6:3a:c0:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:02 2024 by rpki-client on console-ams.rpki-client.org