Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/36137c-64fc-4e19-aa1a-adb73d1365a8/1/PXaPKVgdBr1J6iMlJR2Ypzy9vj4.roa
File: PXaPKVgdBr1J6iMlJR2Ypzy9vj4.roa (raw, json)
Hash identifier: xVgbTcyOQ45KS+iiqsv5v/VzHxRMCU977CRgaHxFyss=
Subject key identifier: 3D:76:8F:29:58:1D:06:BD:49:EA:23:25:25:1D:98:A7:3C:BD:BE:3E
Certificate issuer: /CN=749a1c5869ae0b1b0faabd026acfcb47324c1624
Certificate serial: 9E7A67
Authority key identifier: 74:9A:1C:58:69:AE:0B:1B:0F:AA:BD:02:6A:CF:CB:47:32:4C:16:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJocWGmuCxsPqr0Cas_LRzJMFiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/36137c-64fc-4e19-aa1a-adb73d1365a8/1/PXaPKVgdBr1J6iMlJR2Ypzy9vj4.roa
Signing time: Sat 26 Mar 2022 07:59:32 +0000
ROA not before: Sat 26 Mar 2022 07:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 146.19.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10386023 (0x9e7a67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749a1c5869ae0b1b0faabd026acfcb47324c1624
Validity
Not Before: Mar 26 07:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d768f29581d06bd49ea2325251d98a73cbdbe3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:83:d6:1f:37:97:7d:ac:39:76:12:8d:e2:e0:
be:93:6d:b7:b2:d1:91:c3:25:7d:97:25:3f:cb:1b:
78:3a:46:59:05:d7:a6:62:a4:c7:89:2b:75:f8:55:
f9:ae:fc:c9:d4:8a:fe:97:c1:ce:a9:41:34:6d:7c:
7a:40:58:90:b1:17:2c:e3:a5:10:64:a1:2e:a1:d5:
40:da:e9:c9:bb:5e:dc:d8:77:4a:f3:4a:85:1f:cf:
f7:06:5a:a1:f5:2a:e1:a0:13:aa:cf:af:0d:14:e9:
77:19:19:f6:b9:ca:cb:0b:b5:83:cd:41:ac:d7:4b:
22:e1:a6:1c:ab:75:ac:48:ae:34:01:57:95:cb:d9:
2f:b9:e7:77:74:63:ea:66:c3:a0:45:af:2f:bc:ac:
c6:59:09:e0:c1:d2:46:68:d0:c4:9f:61:83:cb:39:
9d:5d:90:ce:28:8d:61:5a:f4:00:78:82:5d:31:e1:
3f:a1:83:43:6e:15:41:b2:63:a7:27:f1:93:57:e5:
31:bc:ec:4f:a8:86:98:ea:14:d2:e5:18:3d:d8:04:
d8:0e:77:a4:54:94:90:e0:2b:b5:6b:66:21:9d:1c:
fd:e4:63:e0:52:3f:b3:10:a7:a0:67:0f:c1:ac:bf:
ab:ad:43:4b:22:ad:ee:04:02:41:90:b5:43:87:07:
6b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:76:8F:29:58:1D:06:BD:49:EA:23:25:25:1D:98:A7:3C:BD:BE:3E
X509v3 Authority Key Identifier:
keyid:74:9A:1C:58:69:AE:0B:1B:0F:AA:BD:02:6A:CF:CB:47:32:4C:16:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJocWGmuCxsPqr0Cas_LRzJMFiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/36137c-64fc-4e19-aa1a-adb73d1365a8/1/PXaPKVgdBr1J6iMlJR2Ypzy9vj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/36137c-64fc-4e19-aa1a-adb73d1365a8/1/dJocWGmuCxsPqr0Cas_LRzJMFiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.213.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:e5:81:83:b5:46:34:c8:62:bf:8f:59:06:29:ad:b4:0f:33:
2a:33:35:3d:5b:c9:8c:0d:3f:fd:41:74:3a:71:a1:16:02:1b:
ad:6d:6a:78:71:f0:80:3b:b7:11:4a:b1:86:66:a5:80:58:7c:
38:f1:1c:45:04:56:db:c4:1e:89:90:57:57:9f:2d:f2:98:9f:
ab:00:4c:71:d0:69:4d:33:ab:c9:43:06:ef:a0:24:2b:61:77:
da:d2:10:1a:01:77:14:f5:e2:c4:fd:bd:ce:e9:04:6f:b4:65:
b3:79:8f:c2:ca:36:10:9e:c7:66:62:81:17:7b:f7:97:50:75:
d9:01:53:19:8a:e4:a1:b4:90:3d:38:5a:0c:9a:8d:26:30:d8:
55:02:98:39:30:52:fe:97:29:e7:33:01:79:57:45:03:91:de:
c0:a7:d7:be:bc:4b:39:be:47:97:a7:db:48:0d:66:c1:7c:52:
b8:40:13:8e:a7:4d:5e:dd:ec:86:05:24:9a:c5:42:e2:a3:85:
4b:89:2f:14:ac:65:03:04:53:d9:95:6e:55:1d:92:bf:2a:fe:
7e:93:9a:85:04:19:b7:99:10:8b:6c:ed:d8:b0:d3:92:ed:fc:
4c:fc:06:ee:0d:11:0a:e3:6c:c9:8a:8d:c8:3b:59:84:cb:76:
f3:00:58:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:20 2025 by rpki-client