Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/idSBxcoi7-FG7NsccJIrQxWKGdA.roa
File: idSBxcoi7-FG7NsccJIrQxWKGdA.roa (raw, json)
Hash identifier: I/9zy9J2CRGXmT3OLEuBntpxlwDLA2r8Znk1e09RIFc=
Subject key identifier: 89:D4:81:C5:CA:22:EF:E1:46:EC:DB:1C:70:92:2B:43:15:8A:19:D0
Certificate issuer: /CN=36d00eb75b61dd2c040cc200a023e375d12e9af4
Certificate serial: F382B2
Authority key identifier: 36:D0:0E:B7:5B:61:DD:2C:04:0C:C2:00:A0:23:E3:75:D1:2E:9A:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NtAOt1th3SwEDMIAoCPjddEumvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/idSBxcoi7-FG7NsccJIrQxWKGdA.roa
Signing time: Tue 22 Feb 2022 09:09:01 +0000
ROA not before: Tue 22 Feb 2022 09:09:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 146.19.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15958706 (0xf382b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36d00eb75b61dd2c040cc200a023e375d12e9af4
Validity
Not Before: Feb 22 09:09:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89d481c5ca22efe146ecdb1c70922b43158a19d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6d:0c:4f:e0:11:55:f7:1d:5a:cd:43:ae:93:
d0:a6:f5:51:45:65:24:28:05:4e:83:6b:dd:96:7d:
19:bc:fe:0f:c2:3d:f9:f9:cc:31:b5:c4:75:af:b7:
a6:a4:69:88:d1:96:ba:02:7a:8b:d6:e7:14:79:c9:
57:5b:d6:73:9e:76:4b:cd:8b:fc:8e:ba:3e:e1:0f:
cd:69:d5:7c:ac:ed:d3:ff:7d:ca:1e:dc:94:34:4b:
74:d2:ed:18:38:7f:9f:d5:c4:2e:c5:6d:8b:c1:dc:
87:01:a5:58:24:5a:d0:a4:31:18:99:37:32:07:ee:
98:fd:55:b8:da:c0:8c:14:20:06:11:da:86:9c:7c:
e5:06:0e:6b:20:97:f4:e0:93:2a:9b:c9:25:6b:b4:
66:c1:4e:23:86:b7:fe:de:93:c6:13:00:19:c5:67:
5b:99:f3:5a:85:f4:73:35:4a:04:79:b0:4e:ee:0a:
42:71:68:de:44:be:46:2d:7d:1f:44:8f:d6:c7:5e:
36:5b:e0:ed:86:6b:84:1f:44:33:d5:af:66:ba:ef:
71:c0:ca:a0:24:c8:81:19:d8:78:41:cf:cd:78:a1:
87:fb:63:4a:3a:f4:df:ae:46:82:71:f1:02:6d:32:
2f:c0:44:00:56:a0:cc:64:bd:2a:b9:10:06:f5:2f:
7f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D4:81:C5:CA:22:EF:E1:46:EC:DB:1C:70:92:2B:43:15:8A:19:D0
X509v3 Authority Key Identifier:
keyid:36:D0:0E:B7:5B:61:DD:2C:04:0C:C2:00:A0:23:E3:75:D1:2E:9A:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NtAOt1th3SwEDMIAoCPjddEumvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/idSBxcoi7-FG7NsccJIrQxWKGdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/NtAOt1th3SwEDMIAoCPjddEumvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.53.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:49:15:60:2b:9a:24:65:85:69:2b:76:68:a7:f7:b4:82:31:
53:9b:79:05:3a:59:fe:f8:02:90:e5:fd:71:2c:57:dd:b3:74:
c8:7b:eb:10:1d:69:5d:89:12:60:5d:00:fe:1b:ad:85:2e:c3:
23:3b:a0:e7:33:f2:71:65:db:7b:c1:80:4f:8e:e9:bc:af:15:
7f:69:56:45:87:68:e8:3d:0f:b6:ab:d3:46:45:7f:1e:d9:b4:
e4:81:c0:9a:49:ee:e5:6d:4d:02:b9:48:98:f3:ee:a0:38:21:
59:1d:9a:89:5c:51:31:ec:4c:de:45:31:e2:a5:d7:eb:02:5f:
7a:5a:02:2a:3b:eb:cc:55:70:3a:cb:55:a8:b0:fe:20:ea:3b:
03:42:52:a5:4f:21:db:18:32:f8:1f:69:32:13:e2:68:3e:70:
3c:f6:6a:bf:a7:fa:8f:3c:b5:f8:5f:51:3a:7f:2a:f1:7c:7d:
80:a2:84:5a:46:d7:9a:90:a8:9a:25:8e:9d:ef:75:6d:8d:66:
00:9c:a5:37:95:46:ac:93:0c:b5:36:f3:66:9f:7d:1b:5f:4b:
93:cb:a1:33:11:b6:69:56:04:a1:24:1e:ec:ea:1c:3d:ba:e7:
d6:0c:e1:3a:09:3e:c6:d4:b6:20:23:42:b8:95:a6:a0:b0:75:
d2:9a:39:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:48 2023 by rpki-client on console-ams.rpki-client.org