Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2zvIjqDqjySwz_-1Jm8aPIfiKF8.roa
File: 2zvIjqDqjySwz_-1Jm8aPIfiKF8.roa (raw, json)
Hash identifier: BamduPr17BOI8ZwW3NW+NOkLcecTNug+XP0E1NxKYp4=
Subject key identifier: DB:3B:C8:8E:A0:EA:8F:24:B0:CF:FF:B5:26:6F:1A:3C:87:E2:28:5F
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2818C14B
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2zvIjqDqjySwz_-1Jm8aPIfiKF8.roa
Signing time: Sat 01 Jan 2022 16:09:37 +0000
ROA not before: Sat 01 Jan 2022 16:09:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197433
IP address blocks: 146.120.124.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 672710987 (0x2818c14b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db3bc88ea0ea8f24b0cfffb5266f1a3c87e2285f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:4c:ea:63:7c:4e:02:7d:a1:e5:ae:31:6b:3a:
ef:22:bf:43:3c:54:00:d8:ef:89:76:c8:a6:b4:49:
e9:00:f0:9e:5d:29:b3:12:26:63:a0:74:e5:16:37:
17:65:12:ac:08:70:32:0d:cc:75:42:d6:56:f5:15:
74:4f:ef:b5:2e:47:58:a8:70:f6:ed:63:26:5d:1a:
ce:6d:63:ed:d6:28:16:b2:3b:67:24:7c:a8:07:49:
19:47:c2:b2:71:84:c7:37:48:5e:ff:26:f2:08:f2:
24:7b:22:af:c3:00:75:1f:ee:ed:3e:8a:b6:07:fa:
65:8c:d0:d0:3d:5b:ac:31:1c:c5:7d:b5:5c:71:fa:
6e:51:af:8b:c0:89:46:53:7f:84:76:2d:db:ce:1f:
65:a0:25:35:c2:c0:aa:d5:8d:a2:4f:c8:70:58:16:
f5:18:ec:2c:ba:30:54:66:5d:d9:88:fd:03:f9:f1:
24:88:97:04:66:1b:e5:b7:2d:1e:57:5f:38:b0:8f:
11:6b:c2:b4:9e:94:28:a4:4b:f2:78:63:8f:53:f2:
16:a5:72:04:78:b2:58:aa:f3:59:dd:ed:1e:47:03:
f7:92:98:e2:46:e0:38:85:08:ee:f4:6f:dd:0a:3a:
94:49:05:30:f4:85:22:fb:af:b7:fc:d5:0c:3e:35:
f9:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:3B:C8:8E:A0:EA:8F:24:B0:CF:FF:B5:26:6F:1A:3C:87:E2:28:5F
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/2zvIjqDqjySwz_-1Jm8aPIfiKF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.124.0/22
Signature Algorithm: sha256WithRSAEncryption
64:4d:21:a1:2a:8e:d5:e5:3d:1c:3e:27:ce:9d:ea:92:0e:fd:
39:c0:56:df:48:c9:a7:5b:ff:ad:4f:4a:27:b1:11:fc:2e:b4:
cd:46:06:4a:9b:34:54:9d:9e:ac:3c:01:ea:a4:eb:7c:9e:a1:
a2:98:14:99:63:ce:4b:0b:dd:4c:0c:9a:fc:38:90:b0:66:5c:
3f:1b:76:3e:1a:17:25:01:6c:cd:0b:19:5e:8f:d7:c5:82:ba:
6f:f1:ad:75:82:56:b2:4b:ed:40:a6:3a:b9:e6:5c:cd:9d:e8:
9a:a1:89:86:79:68:73:f4:e6:f9:43:88:99:f2:55:2b:82:26:
13:7e:80:fd:c4:d8:e7:33:a8:41:58:35:d9:61:18:d4:4c:c4:
2f:a8:bf:9c:21:25:6d:25:dc:71:d5:a1:2e:9d:f4:88:e8:57:
48:55:9e:a9:aa:da:88:97:5f:60:1f:57:ee:0a:fe:5e:29:2b:
83:ed:69:e2:6c:fe:00:f1:0d:47:f0:3b:c7:9e:4c:a6:39:c6:
49:2b:15:86:f1:1c:be:69:ef:3d:13:9d:0c:8f:f6:53:d2:93:
94:9d:01:df:99:5a:c0:c0:2e:28:6d:4a:a2:52:67:bd:ba:96:
68:63:53:82:76:7c:5b:12:cb:ff:c6:e3:b2:da:d6:c5:8c:dc:
00:fd:a5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:27:08 2025 by rpki-client