Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b7515f-7ecf-40b0-b26a-661acc4845e4/1/EkChom2y6QKkBeEw9M0bYkvmSzA.roa
File: EkChom2y6QKkBeEw9M0bYkvmSzA.roa (raw, json)
Hash identifier: BfLKyO2qbCzAYePNP8MFRUh1jE0CQPxZ1vS65JdWV9g=
Subject key identifier: 12:40:A1:A2:6D:B2:E9:02:A4:05:E1:30:F4:CD:1B:62:4B:E6:4B:30
Certificate issuer: /CN=759a67a63db091baf950d51ccd20827db8125b13
Certificate serial: 018572DEDEBB20F97780D0E9CD2B05B5D460
Authority key identifier: 75:9A:67:A6:3D:B0:91:BA:F9:50:D5:1C:CD:20:82:7D:B8:12:5B:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZpnpj2wkbr5UNUczSCCfbgSWxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b7515f-7ecf-40b0-b26a-661acc4845e4/1/EkChom2y6QKkBeEw9M0bYkvmSzA.roa
Signing time: Mon 02 Jan 2023 14:24:46 +0000
ROA not before: Mon 02 Jan 2023 14:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59253
IP address blocks: 146.19.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:de:de:bb:20:f9:77:80:d0:e9:cd:2b:05:b5:d4:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759a67a63db091baf950d51ccd20827db8125b13
Validity
Not Before: Jan 2 14:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1240a1a26db2e902a405e130f4cd1b624be64b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:73:1d:5a:ec:6e:8a:9b:5d:eb:b8:66:ff:25:
85:f9:a6:f3:04:52:94:9e:e2:99:1b:e5:3e:45:33:
fd:a8:8b:c3:1e:ec:5c:07:f5:b2:61:1c:aa:38:35:
54:2e:a2:5c:e8:ae:79:26:1b:55:2b:f6:40:61:98:
2d:e0:2c:ef:a4:da:b2:c1:91:bf:d0:91:c0:1f:c6:
e2:97:9e:bf:29:ea:c4:ea:ac:84:24:f6:4a:d8:28:
ca:24:01:61:20:8e:c6:29:66:22:8f:fc:6a:31:c1:
74:c8:ee:db:84:7f:e3:ff:90:70:99:e4:50:b2:02:
12:3e:b1:f1:34:e7:f2:2b:b4:40:59:21:be:53:9a:
31:2b:ec:da:07:16:ed:fa:1d:a1:6e:7a:0b:8b:ed:
a4:14:f1:e5:1d:55:60:fb:71:32:c7:4a:e0:a8:74:
e8:c7:dd:dd:87:e6:74:c3:0b:fa:33:99:b9:e0:41:
20:10:b1:e2:7a:f2:cd:10:25:58:a5:50:14:84:21:
7e:69:39:d2:1e:bc:5f:8b:77:86:e2:d7:57:1c:0a:
c8:5a:04:52:82:e6:45:2e:9f:26:4a:e3:a6:41:25:
1d:17:d6:b7:46:08:d6:80:94:e0:b0:bd:92:c7:3d:
36:ce:a2:a4:a0:38:aa:e2:07:38:d3:2c:81:74:7c:
ca:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:40:A1:A2:6D:B2:E9:02:A4:05:E1:30:F4:CD:1B:62:4B:E6:4B:30
X509v3 Authority Key Identifier:
keyid:75:9A:67:A6:3D:B0:91:BA:F9:50:D5:1C:CD:20:82:7D:B8:12:5B:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZpnpj2wkbr5UNUczSCCfbgSWxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b7515f-7ecf-40b0-b26a-661acc4845e4/1/EkChom2y6QKkBeEw9M0bYkvmSzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b7515f-7ecf-40b0-b26a-661acc4845e4/1/dZpnpj2wkbr5UNUczSCCfbgSWxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.46.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:3f:5f:26:cc:63:0f:0f:44:71:6a:1f:74:3b:cb:74:ba:cc:
5b:12:ec:9d:20:7b:d0:69:2c:18:98:eb:3a:3d:d3:b3:5a:ed:
81:4a:2d:56:b2:1c:b4:d8:6e:d5:9c:44:2b:e5:98:ec:fb:7b:
5f:ba:46:2c:da:13:41:c6:28:b4:87:fc:a8:31:52:75:65:f1:
53:b3:5a:50:6c:a2:94:ed:6d:97:2b:f3:6b:f5:39:94:03:d2:
52:e9:a8:60:dc:71:ec:1b:f6:c6:49:b9:2f:85:16:92:e9:8c:
1f:a6:75:19:57:bd:cf:37:4b:86:ad:4c:69:38:ef:09:2f:8a:
cc:75:99:6a:9f:33:dc:77:00:d7:b9:5b:6d:c4:0b:f7:9d:b7:
b9:4c:87:e3:2c:ba:94:c0:d7:3a:6e:b9:eb:e7:2a:df:94:70:
61:e6:f0:c4:29:a9:ac:77:fd:b8:e9:d5:9e:c1:7a:cd:41:75:
ab:9d:00:71:00:2b:14:36:ba:53:46:6e:41:32:df:2e:f8:84:
af:4c:c6:40:5d:5c:67:87:8a:51:51:68:e1:4c:9f:c5:e9:aa:
34:97:ac:43:6c:93:62:9b:b3:21:62:ab:21:8f:fa:d4:e1:8b:
08:16:08:36:df:39:69:b4:95:ef:a1:48:c3:5f:c1:6e:9d:b8:
51:c4:e8:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:06 2025 by rpki-client