Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/0WeSN9oj1svHHSWjlR7umLo2MiA.roa
File: 0WeSN9oj1svHHSWjlR7umLo2MiA.roa (raw, json)
Hash identifier: DKWPuK+oZ8ZGulZum0xI/90R2giAOvogPOtDpZi3ucc=
Subject key identifier: D1:67:92:37:DA:23:D6:CB:C7:1D:25:A3:95:1E:EE:98:BA:36:32:20
Certificate issuer: /CN=614e10c5584ca6ffac82574ba34cf22bc030e1b4
Certificate serial: 0185708CB04555BCEED6AFA54F1D9FF5810A
Authority key identifier: 61:4E:10:C5:58:4C:A6:FF:AC:82:57:4B:A3:4C:F2:2B:C0:30:E1:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YU4QxVhMpv-sgldLo0zyK8Aw4bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/0WeSN9oj1svHHSWjlR7umLo2MiA.roa
Signing time: Mon 02 Jan 2023 03:35:46 +0000
ROA not before: Mon 02 Jan 2023 03:35:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17447
IP address blocks: 146.19.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:b0:45:55:bc:ee:d6:af:a5:4f:1d:9f:f5:81:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614e10c5584ca6ffac82574ba34cf22bc030e1b4
Validity
Not Before: Jan 2 03:35:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1679237da23d6cbc71d25a3951eee98ba363220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:4e:89:21:5a:78:27:b7:4d:40:ce:8f:bd:fe:
1a:27:20:2a:ec:17:27:6f:c8:79:9c:2c:2c:30:1b:
49:34:5e:b1:1d:47:f7:93:15:99:df:7f:51:1f:28:
80:cb:7c:c2:29:6e:90:1b:a4:71:44:80:53:b5:95:
6b:2b:a7:88:d4:67:b1:dd:7f:6a:18:1a:9c:bf:50:
cf:29:5c:0e:08:cb:9d:5e:4d:9f:60:87:b8:f7:84:
50:b6:9d:90:9f:80:e8:ad:79:a2:4d:2b:a3:95:48:
c6:46:8e:86:2d:88:8e:28:ba:6f:4f:ce:b2:08:24:
2b:af:6d:55:f0:76:b9:b2:36:18:d2:8b:20:06:d8:
ec:92:c3:71:40:e1:90:93:dd:78:78:83:76:6f:d9:
dd:4f:3e:60:b5:9c:39:dc:c5:46:7c:3f:ce:e5:fe:
1c:e4:de:b5:56:68:d4:e2:01:52:f4:85:31:37:79:
9e:6a:38:c2:d2:75:34:1d:fa:6a:1b:12:c0:8b:5a:
bf:b8:e5:53:11:c5:0a:e5:80:fd:33:2f:af:a1:c9:
ef:e0:a7:1b:b7:d9:96:69:8e:61:6b:f0:96:4c:01:
c1:98:bc:d7:82:17:8c:12:df:6b:fe:cc:6e:c6:20:
8a:32:26:ff:a0:74:79:0b:31:93:87:92:76:54:fb:
1f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:67:92:37:DA:23:D6:CB:C7:1D:25:A3:95:1E:EE:98:BA:36:32:20
X509v3 Authority Key Identifier:
keyid:61:4E:10:C5:58:4C:A6:FF:AC:82:57:4B:A3:4C:F2:2B:C0:30:E1:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YU4QxVhMpv-sgldLo0zyK8Aw4bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/0WeSN9oj1svHHSWjlR7umLo2MiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/YU4QxVhMpv-sgldLo0zyK8Aw4bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.154.0/24
Signature Algorithm: sha256WithRSAEncryption
80:4a:35:ad:69:7f:bc:13:df:42:88:1e:e8:af:6e:2f:de:88:
e0:9c:b6:59:27:e1:e4:75:25:3c:49:9f:f0:a9:d3:3e:60:ee:
2d:0c:57:9e:cd:4d:52:17:99:93:64:50:09:9a:8d:ed:dc:8a:
0c:f7:fb:de:3a:ea:e4:27:eb:e6:5f:7a:8c:dc:36:7d:5b:12:
e0:e8:a6:50:ed:dc:ab:6f:ff:13:07:fb:da:41:fc:83:6a:c1:
d1:42:f0:fc:00:55:f5:93:99:48:a3:d9:39:57:b6:42:e3:46:
f0:10:01:e1:71:e1:8d:f7:8e:0d:46:a0:a4:4f:09:61:ef:3c:
75:2a:30:08:76:2c:11:5a:ad:1b:55:52:5f:27:82:85:d6:f7:
af:e3:d4:e3:4e:f2:7f:a1:67:7d:ae:1c:eb:c7:83:c9:53:67:
59:93:94:48:fa:46:57:d2:1c:df:ef:a8:f7:25:fd:9a:80:e8:
83:33:65:63:3f:96:66:6d:ce:6a:03:74:21:b1:dd:45:7c:8a:
dc:c2:c4:f2:da:54:95:1c:9a:9f:74:43:5f:ba:bc:ce:c0:bd:
6e:19:ff:93:87:b3:59:62:3e:a8:74:a5:e6:30:4c:d1:3f:3d:
0c:3c:cd:e3:88:52:b9:71:5e:c7:36:55:43:17:b7:0c:e5:11:
28:ce:a3:39
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwjLBFVbzu1q+lTx2f9YEKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxNGUxMGM1NTg0Y2E2ZmZhYzgyNTc0YmEzNGNmMjJiYzAz
MGUxYjQwHhcNMjMwMTAyMDMzNTQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTY3OTIzN2RhMjNkNmNiYzcxZDI1YTM5NTFlZWU5OGJhMzYzMjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm06JIVp4J7dNQM6Pvf4aJyAq7Bcn
b8h5nCwsMBtJNF6xHUf3kxWZ339RHyiAy3zCKW6QG6RxRIBTtZVrK6eI1Gex3X9q
GBqcv1DPKVwOCMudXk2fYIe494RQtp2Qn4DorXmiTSujlUjGRo6GLYiOKLpvT86y
CCQrr21V8Ha5sjYY0osgBtjsksNxQOGQk914eIN2b9ndTz5gtZw53MVGfD/O5f4c
5N61VmjU4gFS9IUxN3meajjC0nU0HfpqGxLAi1q/uOVTEcUK5YD9My+vocnv4Kcb
t9mWaY5ha/CWTAHBmLzXgheMEt9r/sxuxiCKMib/oHR5CzGTh5J2VPsfHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNFnkjfaI9bLxx0lo5Ue7pi6NjIgMB8GA1UdIwQY
MBaAFGFOEMVYTKb/rIJXS6NM8ivAMOG0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVU0UXhWaE1wdi1zZ2xkTG8wenlLOEF3NGJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC84M2MxNDEtNmMwOC00NjM1LTkzMDYt
ZjIxZGU0ZWUxMGYyLzEvMFdlU045b2oxc3ZISFNXamxSN3VtTG8yTWlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC84M2MxNDEtNmMwOC00NjM1LTkzMDYtZjIxZGU0ZWUxMGYy
LzEvWVU0UXhWaE1wdi1zZ2xkTG8wenlLOEF3NGJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhOaMA0G
CSqGSIb3DQEBCwUAA4IBAQCASjWtaX+8E99CiB7or24v3ojgnLZZJ+HkdSU8SZ/w
qdM+YO4tDFeezU1SF5mTZFAJmo3t3IoM9/veOurkJ+vmX3qM3DZ9WxLg6KZQ7dyr
b/8TB/vaQfyDasHRQvD8AFX1k5lIo9k5V7ZC40bwEAHhceGN944NRqCkTwlh7zx1
KjAIdiwRWq0bVVJfJ4KF1vev49TjTvJ/oWd9rhzrx4PJU2dZk5RI+kZX0hzf76j3
Jf2agOiDM2VjP5Zmbc5qA3Qhsd1FfIrcwsTy2lSVHJqfdENfurzOwL1uGf+Th7NZ
Yj6odKXmMEzRPz0MPM3jiFK5cV7HNlVDF7cM5REozqM5
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:30 2025 by rpki-client