Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AdTKx-X0qOPI1M2zng5v5yUJxDs.roa
File: AdTKx-X0qOPI1M2zng5v5yUJxDs.roa (raw, json)
Hash identifier: WN+SG3tU6gjXXxXN52ioNkvSNrblu0fipH50pwfdmLQ=
Subject key identifier: 01:D4:CA:C7:E5:F4:A8:E3:C8:D4:CD:B3:9E:0E:6F:E7:25:09:C4:3B
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 282324BE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AdTKx-X0qOPI1M2zng5v5yUJxDs.roa
Signing time: Sat 01 Jan 2022 16:09:41 +0000
ROA not before: Sat 01 Jan 2022 16:09:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201224
IP address blocks: 146.120.196.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 673391806 (0x282324be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01d4cac7e5f4a8e3c8d4cdb39e0e6fe72509c43b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:13:1f:90:e9:29:62:3c:e6:73:05:bd:dc:5a:
6b:e3:a8:7e:25:73:a0:a1:ba:2c:b5:c5:c7:fa:11:
f6:38:b3:93:72:da:00:ea:ab:4f:68:76:79:bf:8c:
83:b7:be:13:53:88:a7:c9:55:25:9a:ac:23:ea:e1:
1b:f4:1b:14:72:ad:21:1c:c5:57:fd:97:cf:f6:98:
93:f1:c0:71:93:14:ce:a4:6e:26:26:15:d2:89:fb:
d0:ac:30:95:12:40:61:d9:68:33:14:c7:c0:0e:ff:
0e:43:d0:dc:80:94:c5:9c:68:70:37:35:b5:5c:78:
7a:2b:f9:54:53:bf:34:b8:9d:de:b4:52:48:65:b3:
72:c9:f6:9a:17:01:40:0b:9c:a5:9c:79:90:47:d2:
12:b2:eb:97:79:e7:fe:25:30:d5:ad:6c:53:07:09:
86:d0:2b:4d:da:de:8f:27:27:e8:90:de:ed:06:cc:
a2:43:33:c3:bc:f4:92:dc:e5:d2:d5:12:77:1b:63:
c1:56:f5:86:9d:47:8d:05:d6:ff:a2:eb:e8:7a:9c:
4f:90:2b:6c:c4:9b:d2:1c:1c:0c:a2:2c:17:6c:03:
0f:58:96:ea:40:e5:5f:78:ba:9e:6f:d1:eb:77:7d:
29:30:82:8b:d1:b9:ad:ea:78:dd:d8:e6:7c:c2:f4:
62:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:D4:CA:C7:E5:F4:A8:E3:C8:D4:CD:B3:9E:0E:6F:E7:25:09:C4:3B
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AdTKx-X0qOPI1M2zng5v5yUJxDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.196.0/23
Signature Algorithm: sha256WithRSAEncryption
77:17:c5:9c:01:de:3b:19:1b:2a:9e:68:fd:7c:d4:88:8a:ab:
d9:55:31:8b:ae:1f:f5:dc:df:45:f7:7e:b3:bf:7c:e4:0d:11:
67:aa:56:46:49:38:af:30:96:bd:82:91:59:e3:96:7b:fa:8e:
dc:9d:79:8e:5e:36:79:f6:32:f0:33:55:e7:59:dc:58:2b:8a:
a8:78:c9:1e:ee:92:d8:a2:53:5d:de:2b:af:ca:30:c5:5e:6b:
46:93:c4:dc:37:71:04:b1:68:b1:a1:35:e5:8b:7e:a7:bb:5b:
02:3e:7b:02:68:96:22:35:ef:c3:d6:0a:7c:30:27:48:7b:fa:
e9:43:8c:c1:d6:e1:d3:60:02:b7:b4:8a:51:14:d8:43:10:36:
d5:94:87:7b:30:bf:a0:6b:8d:a1:54:13:da:70:84:cc:75:6d:
a0:ec:ef:8d:7c:96:c4:3e:86:c7:63:0a:db:0a:64:e1:31:1a:
46:b3:23:8a:92:b2:24:dd:24:67:81:af:6f:47:63:e3:9c:50:
65:42:a4:46:5d:73:58:8a:2f:77:5c:b6:78:25:97:d4:29:6e:
9c:44:1b:14:b3:58:87:bc:13:36:4c:75:fa:e9:03:95:5e:35:
00:59:8c:df:b1:83:94:96:ac:17:8d:d6:34:8a:d9:cd:7e:7f:
81:35:da:1f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEKCMkvjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
NDkxMjJjMzU0MzhhNGViMjYyMzNmZGM2ZTRiYjFkZjJkYWFlZjQyMB4XDTIyMDEw
MTE2MDk0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDFkNGNhYzdlNWY0
YThlM2M4ZDRjZGIzOWUwZTZmZTcyNTA5YzQzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMATH5DpKWI85nMFvdxaa+OofiVzoKG6LLXFx/oR9jizk3La
AOqrT2h2eb+Mg7e+E1OIp8lVJZqsI+rhG/QbFHKtIRzFV/2Xz/aYk/HAcZMUzqRu
JiYV0on70KwwlRJAYdloMxTHwA7/DkPQ3ICUxZxocDc1tVx4eiv5VFO/NLid3rRS
SGWzcsn2mhcBQAucpZx5kEfSErLrl3nn/iUw1a1sUwcJhtArTdrejycn6JDe7QbM
okMzw7z0ktzl0tUSdxtjwVb1hp1HjQXW/6Lr6HqcT5ArbMSb0hwcDKIsF2wDD1iW
6kDlX3i6nm/R63d9KTCCi9G5rep43djmfML0YmsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQB1MrH5fSo48jUzbOeDm/nJQnEOzAfBgNVHSMEGDAWgBR0kSLDVDik6yYj
P9xuS7HfLarvQjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2RKRWl3MVE0cE9zbUl6X2Nia3V4M3kycTcwSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTgvMThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8x
L0FkVEt4LVgwcU9QSTFNMnpuZzV2NXlVSnhEcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgv
MThhOTFjLTBlNzctNDVjOS04Y2M0LTA2MmM2OTMzYWJlZC8xL2RKRWl3MVE0cE9z
bUl6X2Nia3V4M3kycTcwSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAZJ4xDANBgkqhkiG9w0BAQsFAAOC
AQEAdxfFnAHeOxkbKp5o/XzUiIqr2VUxi64f9dzfRfd+s7985A0RZ6pWRkk4rzCW
vYKRWeOWe/qO3J15jl42efYy8DNV51ncWCuKqHjJHu6S2KJTXd4rr8owxV5rRpPE
3DdxBLFosaE15Yt+p7tbAj57AmiWIjXvw9YKfDAnSHv66UOMwdbh02ACt7SKURTY
QxA21ZSHezC/oGuNoVQT2nCEzHVtoOzvjXyWxD6Gx2MK2wpk4TEaRrMjipKyJN0k
Z4Gvb0dj45xQZUKkRl1zWIovd1y2eCWX1ClunEQbFLNYh7wTNkx1+ukDlV41AFmM
37GDlJasF43WNIrZzX5/gTXaHw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:34 2025 by rpki-client