Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/a66b3b-8c3a-4446-810e-067aec85ca67/1/dl_cwcn7Xvp1-2ue_X9FEx4d5Ds.roa
File: dl_cwcn7Xvp1-2ue_X9FEx4d5Ds.roa (raw, json)
Hash identifier: MvdgBYhAQ/Aq3jtq9ctZg2kquwJRSIgKqpluSD2Gtg4=
Subject key identifier: 76:5F:DC:C1:C9:FB:5E:FA:75:FB:6B:9E:FD:7F:45:13:1E:1D:E4:3B
Certificate issuer: /CN=817f8e8f31a03389b3d691ef5a00e82e989e350f
Certificate serial: 6A835D
Authority key identifier: 81:7F:8E:8F:31:A0:33:89:B3:D6:91:EF:5A:00:E8:2E:98:9E:35:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gX-OjzGgM4mz1pHvWgDoLpieNQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/a66b3b-8c3a-4446-810e-067aec85ca67/1/dl_cwcn7Xvp1-2ue_X9FEx4d5Ds.roa
Signing time: Sat 01 Jan 2022 01:03:10 +0000
ROA not before: Sat 01 Jan 2022 01:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 146.19.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6980445 (0x6a835d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=817f8e8f31a03389b3d691ef5a00e82e989e350f
Validity
Not Before: Jan 1 01:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=765fdcc1c9fb5efa75fb6b9efd7f45131e1de43b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b8:24:11:c3:24:a6:51:c0:4c:a9:c1:a9:69:
be:80:2f:31:d5:ea:57:c6:ad:d0:d3:b1:92:ea:86:
49:6c:1f:78:6d:3a:83:f2:12:34:3f:2d:c7:50:a3:
2a:0b:8d:e9:51:48:35:cc:be:e9:e5:c2:7f:4a:01:
79:c1:cf:b4:23:ec:7d:f2:82:3e:33:2d:58:0e:56:
10:ab:18:a8:02:34:58:d5:71:f7:04:75:5a:f2:87:
79:d0:a8:9f:0d:f1:e6:65:8c:a7:c1:23:93:80:2e:
d6:2d:a9:e5:05:ce:ac:42:a1:c3:11:f5:d7:b7:11:
bc:58:b6:58:21:39:cd:07:d6:5d:14:d9:76:2c:7a:
b3:ab:af:d8:24:26:e2:39:a5:11:e3:51:0c:f6:04:
01:68:22:f5:41:11:39:a4:bc:53:62:bc:65:b0:18:
4f:29:a7:7d:60:fc:ab:c5:d8:ad:ad:f0:7a:92:26:
30:4b:05:cf:ae:6b:f0:f8:db:4d:a1:7c:2f:a9:85:
2d:0d:d8:f8:ad:4f:a4:f1:a7:9d:b0:b1:ea:fd:2d:
1c:21:72:43:94:0c:ed:b7:00:ed:93:74:2e:0a:56:
b9:90:37:e0:9d:24:6e:1a:a4:e3:a7:91:b9:fe:47:
3e:a6:91:0f:78:45:25:0f:2c:01:93:ac:d3:40:21:
77:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5F:DC:C1:C9:FB:5E:FA:75:FB:6B:9E:FD:7F:45:13:1E:1D:E4:3B
X509v3 Authority Key Identifier:
keyid:81:7F:8E:8F:31:A0:33:89:B3:D6:91:EF:5A:00:E8:2E:98:9E:35:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gX-OjzGgM4mz1pHvWgDoLpieNQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/a66b3b-8c3a-4446-810e-067aec85ca67/1/dl_cwcn7Xvp1-2ue_X9FEx4d5Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/a66b3b-8c3a-4446-810e-067aec85ca67/1/gX-OjzGgM4mz1pHvWgDoLpieNQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.208.0/24
Signature Algorithm: sha256WithRSAEncryption
30:a7:2d:73:81:c4:4a:49:75:de:86:fc:02:75:02:02:4f:ab:
0e:92:b3:22:c5:7a:e1:44:3e:76:2a:29:17:1f:19:5d:cc:08:
b6:41:a0:a7:29:9c:44:8b:60:23:2f:f0:ff:9e:76:11:3e:45:
76:b4:e4:ba:4b:44:7f:d2:40:55:19:3f:6d:52:3d:5e:9d:43:
14:60:fd:0f:82:b0:45:23:25:da:10:84:01:85:84:8d:f4:74:
d8:05:09:9f:98:c8:8b:eb:02:96:2e:e2:da:1f:18:1a:ca:29:
14:1c:2c:2d:a2:05:79:09:9f:a8:86:72:a8:2b:73:ed:37:21:
d9:00:e1:e6:33:cb:43:3f:03:95:40:b3:97:10:49:6c:ef:e2:
29:fe:9e:f2:cb:93:c6:81:cf:57:1f:98:90:b3:c7:db:17:d7:
3c:6c:d7:99:70:6e:38:da:d5:e4:c5:e1:60:6b:32:bb:ce:4e:
ea:a7:86:fb:da:6d:c9:08:65:72:f1:9c:ba:ee:f6:ac:9f:7e:
58:0b:3a:43:ac:52:25:8b:15:2c:56:a3:a5:32:65:48:aa:4c:
db:58:3c:3b:06:21:ae:ed:8a:15:da:44:8e:8a:bc:2d:fe:6c:
06:07:1e:2e:34:c4:3d:cb:f3:53:a5:04:37:5e:1f:1b:a6:22:
4b:62:39:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:01 2024 by rpki-client on console-fra.rpki-client.org