Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/Ue4k6qt2olnkMkmsRlpmwQ-TJgQ.roa
File: Ue4k6qt2olnkMkmsRlpmwQ-TJgQ.roa (raw, json)
Hash identifier: KluUnYk8zvtBeBUJmdBVDslt32VZLItKx8LtvXBQsIM=
Subject key identifier: 51:EE:24:EA:AB:76:A2:59:E4:32:49:AC:46:5A:66:C1:0F:93:26:04
Certificate issuer: /CN=36d00eb75b61dd2c040cc200a023e375d12e9af4
Certificate serial: 01857295CFB1A4DAFDF1A0D4C4D4DDF73276
Authority key identifier: 36:D0:0E:B7:5B:61:DD:2C:04:0C:C2:00:A0:23:E3:75:D1:2E:9A:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NtAOt1th3SwEDMIAoCPjddEumvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/Ue4k6qt2olnkMkmsRlpmwQ-TJgQ.roa
Signing time: Mon 02 Jan 2023 13:04:58 +0000
ROA not before: Mon 02 Jan 2023 13:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 146.19.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:cf:b1:a4:da:fd:f1:a0:d4:c4:d4:dd:f7:32:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36d00eb75b61dd2c040cc200a023e375d12e9af4
Validity
Not Before: Jan 2 13:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51ee24eaab76a259e43249ac465a66c10f932604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:de:8a:1b:2b:0f:9c:18:60:ad:c0:db:9a:22:
3b:91:44:6e:cb:94:8b:be:4f:e1:be:3e:04:e8:c5:
48:aa:02:33:0d:5f:e6:5b:78:12:f2:32:8a:08:6b:
0f:ab:d0:7e:ea:dc:52:28:96:ee:13:ba:90:99:26:
21:1c:38:ce:e1:c4:68:eb:2e:48:23:4f:c1:e9:53:
13:e8:60:6f:85:8e:6b:4e:ef:31:1f:fb:ef:20:87:
7d:51:9b:21:a4:a9:2d:b8:ee:40:3b:18:5d:24:f7:
64:5e:4d:44:ce:8f:7b:5b:65:11:f0:80:b0:3d:75:
51:65:d4:6c:02:ae:98:57:2d:a7:a6:e6:2f:77:d8:
b7:53:c6:fd:d5:51:d8:ca:0c:71:61:a9:16:1b:7d:
eb:3d:0a:c6:b7:93:2b:df:79:f0:10:8b:73:3f:28:
64:a3:bd:0f:c0:95:0c:f8:fc:f3:d0:86:bd:88:b2:
7f:fe:11:f5:8f:29:ef:e5:f8:4b:61:9f:3c:e5:f8:
1b:e7:4f:87:4b:f0:25:25:1d:45:9b:1a:6b:ca:7c:
d8:e1:cd:c0:3a:f5:07:aa:6b:20:c9:13:38:0e:b9:
fd:ab:0b:5f:b7:77:0c:b0:8b:9c:42:76:86:c5:a3:
49:f2:c0:f7:3a:7a:36:47:44:88:a6:a6:23:a9:c0:
eb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:EE:24:EA:AB:76:A2:59:E4:32:49:AC:46:5A:66:C1:0F:93:26:04
X509v3 Authority Key Identifier:
keyid:36:D0:0E:B7:5B:61:DD:2C:04:0C:C2:00:A0:23:E3:75:D1:2E:9A:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NtAOt1th3SwEDMIAoCPjddEumvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/Ue4k6qt2olnkMkmsRlpmwQ-TJgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/NtAOt1th3SwEDMIAoCPjddEumvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.53.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:26:57:21:aa:81:d9:df:ff:e8:2e:a1:70:8e:29:2a:c6:1b:
64:7b:75:e1:ce:6a:b4:94:b8:d2:6e:d1:be:80:8e:c4:1f:9c:
0f:9f:6e:b5:05:42:25:f5:bc:e6:75:0a:28:94:53:56:fc:61:
ee:d8:6a:1f:e4:3c:b2:80:f4:2b:0f:dc:30:6c:e4:55:e2:80:
57:85:0c:88:7f:72:fa:2c:84:f3:71:75:6e:f5:ca:f1:b6:73:
f0:ee:48:aa:8a:e2:d2:af:71:92:53:2e:2c:d5:be:a5:88:b5:
5a:94:e9:d1:96:56:de:70:03:5d:5a:ea:14:6e:8d:29:17:b9:
6b:60:e0:9c:c5:fe:fb:b8:b5:20:1f:c3:56:f6:4f:bc:f8:1f:
75:00:a4:31:ef:9d:48:a7:69:89:e4:32:9c:83:23:85:c6:e9:
a8:cb:d3:e1:71:14:0f:71:80:e2:8c:c6:c0:13:66:45:0a:bd:
ba:68:d0:0d:18:b0:e6:19:eb:98:27:33:9e:f3:91:7e:23:93:
f5:29:da:e5:50:98:11:df:82:98:a8:87:29:64:dd:d7:34:5f:
4d:d4:00:a9:af:e6:c9:3c:71:27:8d:83:46:03:69:62:55:79:
b7:2f:94:d9:52:b4:a6:98:16:42:87:e2:d0:23:c8:99:64:47:
3a:b6:a6:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:26 2024 by rpki-client on console-ams.rpki-client.org