Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/28Z5yBz9EmFgkhZl--w3hNzAyI8.roa
File: 28Z5yBz9EmFgkhZl--w3hNzAyI8.roa (raw, json)
Hash identifier: vOlJWvQ468HWwPhVQLHPIOvy9Bsi3/WIo2Dxf2xLXGg=
Subject key identifier: DB:C6:79:C8:1C:FD:12:61:60:92:16:65:FB:EC:37:84:DC:C0:C8:8F
Certificate issuer: /CN=614e10c5584ca6ffac82574ba34cf22bc030e1b4
Certificate serial: 0185708CAF8AFF8D5DDD46EBCE5655E17B3B
Authority key identifier: 61:4E:10:C5:58:4C:A6:FF:AC:82:57:4B:A3:4C:F2:2B:C0:30:E1:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YU4QxVhMpv-sgldLo0zyK8Aw4bQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/28Z5yBz9EmFgkhZl--w3hNzAyI8.roa
Signing time: Mon 02 Jan 2023 03:35:46 +0000
ROA not before: Mon 02 Jan 2023 03:35:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:af:8a:ff:8d:5d:dd:46:eb:ce:56:55:e1:7b:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614e10c5584ca6ffac82574ba34cf22bc030e1b4
Validity
Not Before: Jan 2 03:35:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbc679c81cfd126160921665fbec3784dcc0c88f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ac:55:d1:05:02:e2:d3:de:5d:b0:d5:52:79:
25:e9:a6:dd:85:98:c5:e4:0b:95:72:a4:35:b3:c3:
07:fb:11:70:0c:3f:9d:21:ca:f9:77:29:f1:c1:1c:
ef:48:a3:d0:5d:b5:84:d5:ac:94:3b:3c:3d:01:66:
d8:f1:97:6e:35:09:7f:98:25:cf:b5:93:68:b4:24:
5c:67:43:85:36:4d:d1:57:2e:fb:f2:18:43:7a:de:
56:2a:54:72:47:12:fc:47:7d:9e:6a:e7:71:96:ee:
23:09:af:52:ff:26:b9:b4:ba:4e:26:af:2b:2c:bb:
46:49:2a:e0:25:dd:1f:4a:59:08:22:e6:46:97:75:
1f:b2:ac:bc:85:c6:c8:bb:a4:d7:83:4a:4c:be:81:
49:f9:b7:98:36:51:51:43:ea:a5:a9:50:6e:9a:b0:
83:ee:80:28:0a:6b:cd:88:63:3d:64:00:22:c7:58:
67:45:f9:58:72:93:b3:c0:fc:18:49:e2:3f:a9:fa:
0c:16:0d:ca:8c:59:34:6c:73:2b:5c:4a:c9:13:92:
f2:9a:98:be:d4:29:26:83:52:d9:72:20:36:18:ac:
3b:b5:a1:d8:ae:e5:f8:8d:f1:a0:d0:6f:db:0a:6e:
cf:8d:d3:30:c6:59:a2:40:06:4d:8d:2c:e8:c8:f0:
4b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C6:79:C8:1C:FD:12:61:60:92:16:65:FB:EC:37:84:DC:C0:C8:8F
X509v3 Authority Key Identifier:
keyid:61:4E:10:C5:58:4C:A6:FF:AC:82:57:4B:A3:4C:F2:2B:C0:30:E1:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YU4QxVhMpv-sgldLo0zyK8Aw4bQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/28Z5yBz9EmFgkhZl--w3hNzAyI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/83c141-6c08-4635-9306-f21de4ee10f2/1/YU4QxVhMpv-sgldLo0zyK8Aw4bQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.154.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:14:5f:69:24:69:80:a8:17:b1:87:2e:b0:7b:e6:9f:1f:9b:
51:e3:03:70:fb:0c:65:e9:59:37:0f:c0:d8:0b:8a:24:ff:4e:
13:ba:15:36:2c:f3:ae:1f:e6:05:aa:76:53:e5:44:3a:26:45:
d3:4f:9b:d2:5f:dd:fc:75:8b:5d:ea:d8:c4:8c:d4:65:ce:94:
35:c4:27:67:d9:5b:18:0a:3f:4c:20:26:74:f9:03:f9:9c:f1:
df:08:4e:0e:c4:e6:18:0d:c8:dc:94:aa:5a:9b:ee:de:55:b3:
06:12:11:0b:2d:a8:75:40:3c:61:dd:1a:99:bf:1a:5b:89:db:
35:2f:f5:f5:17:fb:94:ae:03:aa:28:58:1a:c2:42:91:a2:a4:
5a:fc:ac:bd:8d:69:27:95:a0:98:e4:22:95:4f:b1:ab:fe:22:
5c:7b:6b:0e:d1:2f:dc:0c:d8:4a:81:2e:46:df:bb:64:78:70:
6e:c5:ef:be:65:18:be:3b:1f:54:05:61:f3:cb:d8:1e:42:c2:
8d:a3:b5:cd:e9:d4:08:6e:16:fc:8f:09:f0:64:b3:e7:47:59:
2d:c4:b6:04:fd:bc:7c:ba:80:cb:08:a3:40:fa:03:2e:bd:bf:
90:52:f3:bf:db:67:c6:5f:1d:da:9d:a1:3a:ca:a1:26:bc:8e:
16:5c:89:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:05 2024 by rpki-client on console-ams.rpki-client.org