Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/7f55fd-df97-4564-9a4a-f5138d5d753f/1/N76gQL3NtPX2uf2u2bqTL6qYtkI.roa
File: N76gQL3NtPX2uf2u2bqTL6qYtkI.roa (raw, json)
Hash identifier: x1jSRJFbBl/pGAe7r+MohbvOg0ZGbpKO09WTOkKQV3k=
Subject key identifier: 37:BE:A0:40:BD:CD:B4:F5:F6:B9:FD:AE:D9:BA:93:2F:AA:98:B6:42
Certificate issuer: /CN=74fc64a06ee6ae25c2d23d6255ed2542bf51d8ae
Certificate serial: 01870E550A23FC77604B9C260F3B9C5C372B
Authority key identifier: 74:FC:64:A0:6E:E6:AE:25:C2:D2:3D:62:55:ED:25:42:BF:51:D8:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dPxkoG7mriXC0j1iVe0lQr9R2K4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/7f55fd-df97-4564-9a4a-f5138d5d753f/1/N76gQL3NtPX2uf2u2bqTL6qYtkI.roa
Signing time: Thu 23 Mar 2023 11:57:46 +0000
ROA not before: Thu 23 Mar 2023 11:57:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 146.19.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0e:55:0a:23:fc:77:60:4b:9c:26:0f:3b:9c:5c:37:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74fc64a06ee6ae25c2d23d6255ed2542bf51d8ae
Validity
Not Before: Mar 23 11:57:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37bea040bdcdb4f5f6b9fdaed9ba932faa98b642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:1a:cf:12:ad:d2:2c:a7:80:a2:7b:df:71:
08:09:e6:d7:27:58:67:42:49:65:29:d7:08:ff:3b:
6a:bb:72:5c:66:94:fd:7f:f8:e6:1c:f5:ae:c4:32:
df:e5:9f:99:7f:4c:a9:ad:dd:6c:7a:1f:1a:fd:d8:
29:26:d3:89:98:41:d7:f8:95:d2:b0:00:e6:04:86:
30:d9:80:6a:33:ef:96:73:34:f4:67:e1:d6:31:0c:
dd:b3:3a:45:d7:b7:76:91:9e:f7:b4:89:3c:03:b5:
35:a5:33:ea:03:d7:ae:0f:eb:22:29:0f:1e:8c:e5:
68:8b:17:af:50:2c:4f:07:c7:d4:7c:b1:47:95:8c:
34:c9:60:95:39:2e:f6:07:4d:25:49:dd:fc:e4:c9:
5d:f5:10:c0:ef:91:e0:cd:bb:5b:53:8d:6a:70:d2:
94:ac:88:12:ad:00:4f:fd:86:a1:18:28:1f:d2:a1:
70:43:dc:5b:c1:9a:db:62:8f:1d:b3:bd:27:71:33:
ab:67:10:47:84:7d:1d:8b:88:5a:a1:4e:cb:c0:71:
90:01:5e:90:50:6e:17:7c:8d:14:ef:d3:91:7b:da:
fe:0d:ea:2f:cb:f2:79:59:20:b3:e3:f3:b4:7a:a6:
c1:d1:cf:0a:84:7e:fe:e1:71:97:41:a1:02:14:08:
a5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:BE:A0:40:BD:CD:B4:F5:F6:B9:FD:AE:D9:BA:93:2F:AA:98:B6:42
X509v3 Authority Key Identifier:
keyid:74:FC:64:A0:6E:E6:AE:25:C2:D2:3D:62:55:ED:25:42:BF:51:D8:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dPxkoG7mriXC0j1iVe0lQr9R2K4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/7f55fd-df97-4564-9a4a-f5138d5d753f/1/N76gQL3NtPX2uf2u2bqTL6qYtkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/7f55fd-df97-4564-9a4a-f5138d5d753f/1/dPxkoG7mriXC0j1iVe0lQr9R2K4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.233.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:c9:e2:0f:ec:cf:92:ea:14:95:e7:2e:c9:c1:03:ed:d3:a5:
85:4b:e3:da:ff:5b:6f:6c:bc:cd:b9:9b:73:31:45:8f:b6:f0:
9f:be:8d:4c:d3:0a:39:1c:40:84:6a:a6:09:f3:83:33:4e:b2:
94:a1:4a:74:18:5e:47:16:4b:7a:50:83:ff:7f:44:b5:55:db:
10:27:5c:63:89:1d:2b:8b:be:8b:2a:af:ac:89:6d:a0:13:d3:
08:39:ca:59:c9:20:23:2f:b2:25:71:4f:14:28:7a:35:ca:5b:
a1:41:41:54:00:99:74:fb:9a:04:26:fa:9e:21:4b:7e:71:bb:
77:a9:40:74:fc:e3:d5:d8:55:e8:00:43:c9:35:0e:2c:53:1f:
ed:31:cf:55:7e:8e:14:7b:c6:31:21:99:f4:40:3f:90:c9:9d:
5c:2c:3e:a3:44:0f:c9:e3:68:ed:6b:17:c5:f5:0c:2b:5f:2a:
f9:6f:fe:2b:ca:de:71:ff:36:44:e9:ab:42:97:3d:c5:10:3a:
af:5f:b1:5a:b6:fa:63:ec:f2:78:75:28:22:f3:6a:6f:41:3f:
83:99:38:f0:7b:3f:23:e8:f3:30:24:a1:df:0f:50:2b:40:f1:
b1:ec:57:70:73:d9:65:49:18:27:1d:24:02:df:20:ea:f1:7e:
bd:ae:84:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 11 16:00:40 2023 by rpki-client on console-fra.rpki-client.org