Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AxY0VcVy2gi4vTDlBWSr9wEfxXM.roa
File: AxY0VcVy2gi4vTDlBWSr9wEfxXM.roa (raw, json)
Hash identifier: +4XhJNg3ivZpV/2rxUkaDt9p+nwBJWPqlJxKHuupXcQ=
Subject key identifier: 03:16:34:55:C5:72:DA:08:B8:BD:30:E5:05:64:AB:F7:01:1F:C5:73
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709594E8F0F35E1DD1DEC0178D66F62E
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AxY0VcVy2gi4vTDlBWSr9wEfxXM.roa
Signing time: Mon 02 Jan 2023 03:45:29 +0000
ROA not before: Mon 02 Jan 2023 03:45:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203781
IP address blocks: 146.120.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:94:e8:f0:f3:5e:1d:d1:de:c0:17:8d:66:f6:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03163455c572da08b8bd30e50564abf7011fc573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b5:ba:ee:5f:60:86:84:6f:c1:4e:2b:76:fe:
fd:84:0e:71:49:2c:28:aa:ba:be:30:4e:0e:2d:e7:
24:54:b5:9a:ad:3c:2a:b4:01:e6:90:7a:b3:f9:07:
d0:5e:ba:aa:52:70:a6:c1:5c:6f:0a:d3:a3:e6:74:
f6:10:7f:84:71:8f:87:2f:ea:19:82:75:80:73:93:
06:26:1a:4a:33:b8:08:a5:ce:de:d5:bc:25:7a:52:
be:0b:9a:ab:ce:12:79:d8:29:dd:50:d7:38:e3:a6:
ed:f5:22:bb:d9:4b:5b:3b:f2:73:61:4d:97:75:02:
e8:fe:9d:12:9a:32:04:11:df:7a:3a:e8:0f:7f:04:
06:52:79:c0:a3:31:a3:22:4f:6d:13:94:f7:d6:3a:
4e:05:2f:70:15:f2:48:7b:0a:2f:f0:88:b4:4a:ea:
56:2b:75:1d:ae:8e:f1:94:01:22:19:ac:47:c0:e0:
34:41:bf:50:fc:91:a4:17:1b:af:54:90:ee:83:ec:
b0:36:ed:7e:5e:1e:17:58:01:e2:67:8e:a4:25:d2:
d4:9e:b2:70:74:0e:4c:90:fc:bf:81:ec:b9:86:c0:
50:ad:e5:9a:fb:2d:fe:94:21:51:59:78:f6:64:33:
9c:a7:e7:f1:0e:d7:e2:2c:2c:a8:30:91:f9:46:ba:
fb:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:16:34:55:C5:72:DA:08:B8:BD:30:E5:05:64:AB:F7:01:1F:C5:73
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/AxY0VcVy2gi4vTDlBWSr9wEfxXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.243.0/24
Signature Algorithm: sha256WithRSAEncryption
73:62:ab:19:aa:5b:1c:c7:90:d3:2c:0a:68:1e:8e:7d:b3:9d:
a0:ab:09:49:1d:e1:4b:89:6d:6d:04:c6:dc:a9:2c:8d:c6:07:
bf:a2:ea:d4:01:83:cb:29:b5:56:e5:dd:9a:10:fc:fa:de:6b:
80:34:f6:9d:49:b9:81:66:96:af:0b:69:74:79:43:d6:ca:62:
1e:ed:8c:8f:f9:44:26:1c:f1:0e:4c:28:a2:b6:e0:9a:39:30:
c1:37:82:08:83:65:42:d8:1c:ac:ca:cd:a7:06:42:89:7d:f8:
68:22:43:4e:14:68:33:ed:a2:38:4a:37:27:5f:3f:d9:8b:49:
3b:da:5a:b4:7e:31:2f:fe:89:de:dc:14:94:02:37:7d:fb:4b:
f8:70:64:a6:f2:68:80:af:98:2d:d3:5e:50:f9:f7:c2:36:3a:
91:fe:33:36:7d:88:17:b2:b1:31:71:d0:dc:a8:7a:ae:4f:bf:
e7:8e:aa:93:de:00:7e:46:2f:4c:eb:98:ed:41:24:3e:75:9e:
15:aa:81:21:39:3c:98:6a:ae:09:d9:b5:5c:3b:43:52:8d:26:
af:f5:67:19:2a:d7:77:5b:ea:b0:be:ab:45:c1:a4:fe:e6:f1:
7a:d7:73:50:fb:c9:26:86:51:7f:56:03:f4:39:68:ee:69:d5:
ec:08:ea:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:44:06 2025 by rpki-client