Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/mXQjxOwWbLN5lYGBMqj4PRUvKCk.roa
File: mXQjxOwWbLN5lYGBMqj4PRUvKCk.roa (raw, json)
Hash identifier: cTCarw3idTt500cTZj+PmRDKs6Jc6qpiTUFS02OQcuk=
Subject key identifier: 99:74:23:C4:EC:16:6C:B3:79:95:81:81:32:A8:F8:3D:15:2F:28:29
Certificate issuer: /CN=36d00eb75b61dd2c040cc200a023e375d12e9af4
Certificate serial: E70056
Authority key identifier: 36:D0:0E:B7:5B:61:DD:2C:04:0C:C2:00:A0:23:E3:75:D1:2E:9A:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NtAOt1th3SwEDMIAoCPjddEumvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/mXQjxOwWbLN5lYGBMqj4PRUvKCk.roa
Signing time: Fri 18 Feb 2022 09:43:16 +0000
ROA not before: Fri 18 Feb 2022 09:43:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210538
IP address blocks: 146.19.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15138902 (0xe70056)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36d00eb75b61dd2c040cc200a023e375d12e9af4
Validity
Not Before: Feb 18 09:43:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=997423c4ec166cb37995818132a8f83d152f2829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:72:5e:d2:c2:fc:50:32:7c:11:00:61:81:
fb:b0:e0:b3:21:30:95:bd:a0:e8:91:74:b8:96:67:
ce:b8:23:9a:07:90:a7:35:e3:1d:d8:5f:3b:f4:74:
b3:41:6d:cb:03:20:d2:5c:f4:99:80:28:c3:35:6a:
5a:cd:eb:6e:9b:c3:19:81:7e:81:ce:40:c2:85:2f:
0a:b3:d6:63:a1:13:2c:79:79:99:ed:b8:77:91:0e:
95:a5:d3:12:fd:94:88:f3:5e:46:28:85:25:ab:c9:
88:ad:74:9e:52:2a:2f:4a:db:da:70:bb:09:90:19:
68:ee:68:b4:ac:24:9d:56:49:0c:ce:2d:4e:4f:d4:
95:4b:e9:bc:1f:07:cc:dc:0d:f2:18:fb:93:1d:82:
16:eb:87:97:65:10:17:33:4c:98:62:7a:48:31:0f:
2a:c1:68:93:af:49:14:55:85:a3:2d:fa:15:9f:76:
db:4d:ee:65:71:ff:eb:f5:a1:f1:4a:71:c2:d0:62:
3c:9b:3d:ad:0b:a2:0c:6c:88:b4:27:4c:93:32:51:
b7:04:23:e0:0b:85:8f:b5:d5:15:8f:1e:03:ce:7d:
cf:b1:ea:87:c7:55:39:d5:55:62:bd:dc:aa:78:c5:
a7:52:d6:f3:39:73:bb:81:e6:0e:3b:56:c1:20:c0:
35:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:74:23:C4:EC:16:6C:B3:79:95:81:81:32:A8:F8:3D:15:2F:28:29
X509v3 Authority Key Identifier:
keyid:36:D0:0E:B7:5B:61:DD:2C:04:0C:C2:00:A0:23:E3:75:D1:2E:9A:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NtAOt1th3SwEDMIAoCPjddEumvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/mXQjxOwWbLN5lYGBMqj4PRUvKCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9d3e62-588a-4067-84e3-f036b62c965f/1/NtAOt1th3SwEDMIAoCPjddEumvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.53.0/24
Signature Algorithm: sha256WithRSAEncryption
16:2e:35:37:a6:6d:56:26:9d:4d:bf:a9:8d:dc:40:b0:74:d6:
2b:8a:06:c0:b9:1c:dd:00:81:8e:46:c6:07:07:8d:19:8e:4c:
ce:a8:b1:2c:80:a7:07:94:0d:94:e6:28:44:13:fa:32:49:f1:
96:b9:6b:d6:2e:67:b2:59:95:3b:ff:aa:ca:2c:5e:fc:c7:e8:
50:ee:18:91:71:24:b3:51:1e:71:fe:8e:e7:4e:d3:33:32:ff:
3d:0b:99:71:ab:61:dd:f9:06:1a:c0:69:e5:38:fb:f5:39:db:
cc:c9:b6:00:6b:ec:88:d9:22:63:61:e8:fd:af:de:cd:89:01:
90:59:0c:20:e7:be:5f:a8:45:26:36:a9:ec:c3:18:1c:7e:21:
b5:6a:e0:a4:93:06:cb:03:df:d6:a6:51:ee:d2:16:8a:4e:10:
89:ed:b3:9e:26:c8:44:7b:c2:91:83:88:eb:92:e2:39:aa:ef:
7f:c9:ac:18:ab:b5:4e:1b:bf:df:69:db:95:4c:d6:b0:ae:3f:
b2:33:32:63:60:e5:73:49:31:5d:9a:d5:53:08:46:b3:4c:6a:
a3:20:d8:5d:16:76:61:66:ad:4f:25:61:7c:53:d5:50:a2:79:
e1:9e:d6:db:9d:90:05:31:fc:83:f0:d9:59:12:05:3c:95:9b:
67:cd:7f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:03 2024 by rpki-client on console-fra.rpki-client.org