Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3ea867-df9a-48e0-b8e3-5559915f3759/1/g0bJIcVymIU-r_JE7BNshyxBT5E.roa
File: g0bJIcVymIU-r_JE7BNshyxBT5E.roa (raw, json)
Hash identifier: LVnJoNd1KAiPGyGMqB/c+s4TBKnC43K7ZgwXaPmyW3w=
Subject key identifier: 83:46:C9:21:C5:72:98:85:3E:AF:F2:44:EC:13:6C:87:2C:41:4F:91
Certificate issuer: /CN=60f66e54f694bce7e32c8a326136e5c283a38498
Certificate serial: 0185714C3445FAA98EC8F18869F0200C748A
Authority key identifier: 60:F6:6E:54:F6:94:BC:E7:E3:2C:8A:32:61:36:E5:C2:83:A3:84:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPZuVPaUvOfjLIoyYTblwoOjhJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3ea867-df9a-48e0-b8e3-5559915f3759/1/g0bJIcVymIU-r_JE7BNshyxBT5E.roa
Signing time: Mon 02 Jan 2023 07:04:57 +0000
ROA not before: Mon 02 Jan 2023 07:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:34:45:fa:a9:8e:c8:f1:88:69:f0:20:0c:74:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f66e54f694bce7e32c8a326136e5c283a38498
Validity
Not Before: Jan 2 07:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8346c921c57298853eaff244ec136c872c414f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f2:aa:5a:f2:c1:93:c6:f7:f0:43:6c:ff:ef:
66:99:c0:f2:08:13:e9:f5:dc:83:c2:a9:30:7f:0a:
05:2d:69:89:98:5d:22:5e:84:08:f9:99:a9:86:10:
51:71:0f:f1:01:ab:9b:58:b5:b1:39:79:f3:5a:38:
ff:3a:c5:c1:26:31:b6:6f:58:af:0a:e9:8b:30:80:
e1:06:ab:0d:75:90:51:12:b2:77:4a:9c:81:42:29:
8e:7e:49:a3:5c:3d:46:7e:fd:dc:92:2d:7b:0c:43:
97:50:bb:08:c5:90:c9:27:84:71:41:96:a1:9f:51:
63:c1:67:c6:22:b5:2e:48:c7:51:f4:74:a8:c6:65:
06:a1:ad:d6:72:55:6d:57:96:07:87:25:70:07:0c:
b3:53:64:4d:74:25:4e:e0:66:97:7a:cb:f9:24:74:
13:36:4a:9e:9c:59:d4:3c:d1:0a:35:32:fe:78:0a:
9d:26:da:94:b6:55:3b:96:77:2d:d6:be:46:bd:64:
fc:d0:73:92:6f:38:a8:ad:0d:ae:4c:ad:ff:af:e7:
ea:6b:4f:3c:94:37:9a:71:a5:8c:23:28:25:fc:01:
92:96:21:16:a4:f2:dd:f3:f7:4c:4d:c3:f3:71:55:
4b:4f:3e:c2:94:0b:f7:0e:14:e6:bd:63:d5:00:ac:
33:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:46:C9:21:C5:72:98:85:3E:AF:F2:44:EC:13:6C:87:2C:41:4F:91
X509v3 Authority Key Identifier:
keyid:60:F6:6E:54:F6:94:BC:E7:E3:2C:8A:32:61:36:E5:C2:83:A3:84:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPZuVPaUvOfjLIoyYTblwoOjhJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3ea867-df9a-48e0-b8e3-5559915f3759/1/g0bJIcVymIU-r_JE7BNshyxBT5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3ea867-df9a-48e0-b8e3-5559915f3759/1/YPZuVPaUvOfjLIoyYTblwoOjhJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.132.0/24
Signature Algorithm: sha256WithRSAEncryption
91:3e:23:5f:c3:08:e5:72:f1:31:74:b2:6d:6e:5b:18:73:45:
94:6d:41:29:c9:9a:b0:df:b7:63:8b:ee:83:59:2c:67:8c:05:
dc:21:a9:77:48:bf:b1:ab:aa:69:f8:52:3c:71:af:ec:20:00:
10:c0:da:c7:9f:1d:6e:57:a9:2c:c1:85:38:b3:bf:eb:53:d7:
ba:93:e9:2f:36:10:ec:41:ec:ce:70:25:94:43:05:11:96:bd:
9d:14:a3:65:2c:5f:a3:6e:06:c7:3f:ae:1f:90:f8:55:45:24:
ba:02:8a:6f:bb:b2:ff:77:ad:38:ae:32:3d:ed:1c:c0:6b:cb:
ee:a4:25:a4:ca:f9:2b:09:0c:59:7f:50:9b:07:d2:9e:2b:bc:
6f:3d:57:9e:91:4e:d1:35:f5:71:03:60:b2:97:72:6b:81:91:
a9:c2:c9:a8:c8:83:0a:4f:7d:d4:12:ac:2d:b6:85:6a:c3:fb:
c3:83:33:b5:b3:5e:0d:fe:ee:b6:c6:19:c1:90:e3:04:7a:20:
89:68:bc:02:ce:a8:df:5d:ce:05:e2:c1:f4:04:19:99:ff:dc:
58:16:ee:a3:b6:0c:f6:10:b1:c9:3c:75:1d:97:db:e8:39:1b:
7f:b4:f1:21:9e:c9:3e:3b:20:d7:4c:ea:96:9f:82:5f:b4:fc:
54:0b:43:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:55 2024 by rpki-client on console-fra.rpki-client.org