Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Pv5BxbdLe57TlYNiip0p-pU3xnQ.roa
File: Pv5BxbdLe57TlYNiip0p-pU3xnQ.roa (raw, json)
Hash identifier: mb36Qnf8x18Tt6jLkTf8WT4s5nyvFmcZqgbvr+ZRTkg=
Subject key identifier: 3E:FE:41:C5:B7:4B:7B:9E:D3:95:83:62:8A:9D:29:FA:95:37:C6:74
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0194258F9D8D4126076C59B6690B5B54C19A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Pv5BxbdLe57TlYNiip0p-pU3xnQ.roa
Signing time: Thu 02 Jan 2025 05:49:16 +0000
ROA not before: Thu 02 Jan 2025 05:49:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42782
IP address blocks: 146.120.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:9d:8d:41:26:07:6c:59:b6:69:0b:5b:54:c1:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 05:49:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3efe41c5b74b7b9ed39583628a9d29fa9537c674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7c:92:c6:b7:6b:c8:af:3a:8b:e6:74:a3:85:
7e:8e:fe:a1:cc:26:5b:e8:f1:a6:d0:64:4e:b4:53:
c6:03:3b:f5:7f:78:99:ae:d9:f4:9c:65:9e:70:6b:
ef:ba:9a:4d:c2:6b:98:4e:51:67:df:f2:f8:28:8a:
da:59:d9:ca:c7:bb:ad:b7:93:0f:53:38:6b:ca:f0:
dc:c4:8d:33:28:6b:b2:d2:c9:3d:6c:cc:84:2e:de:
60:40:6d:ce:70:b3:df:b9:2a:fa:c9:35:e3:b9:54:
d8:d2:24:9a:c3:5a:90:b4:c3:61:45:72:84:7e:02:
bb:86:ca:25:c8:34:85:cb:4b:25:87:58:2b:e2:ba:
43:83:99:34:f5:22:a2:8b:c9:14:f5:98:2b:85:37:
46:76:df:fc:ef:47:b9:89:ea:8c:47:4d:75:7e:f4:
5f:f5:04:1c:e5:82:ff:99:1c:d5:39:95:4b:88:7f:
6e:06:85:83:a1:f3:d8:4f:70:5f:78:8e:58:9b:b7:
ff:8b:2e:b1:e9:d9:8e:f9:6b:cb:b9:56:ae:cc:fa:
a7:5c:ee:8f:22:55:9c:e7:64:ea:97:cb:6e:4b:dd:
60:be:03:5b:c9:a3:e3:16:be:59:87:b6:d2:49:7c:
60:67:6a:4b:d0:f5:f5:a7:89:b6:bc:d4:ef:2b:d5:
56:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FE:41:C5:B7:4B:7B:9E:D3:95:83:62:8A:9D:29:FA:95:37:C6:74
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/Pv5BxbdLe57TlYNiip0p-pU3xnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.120.198.0/24
Signature Algorithm: sha256WithRSAEncryption
61:95:ab:52:0b:46:38:31:3e:06:31:7d:3b:7e:a4:14:f3:08:
f2:74:4d:90:e5:76:a1:d7:58:c3:ab:f3:9a:4c:3a:9d:74:80:
e4:7a:8c:6c:26:e1:7f:58:ea:b4:95:f3:dd:3a:03:dd:74:e5:
d3:c0:9b:3a:65:b7:3b:a9:3f:07:e8:7f:bc:0b:f4:85:97:4f:
8d:45:a4:af:f7:88:86:68:3d:d2:6b:1d:59:63:62:16:2f:2a:
6b:9a:6f:d8:c0:38:40:45:0f:fa:35:5a:36:dc:f0:e7:cd:4a:
fb:d7:15:ad:f5:b4:42:c5:53:11:52:4e:92:2a:7d:c4:44:98:
1c:cc:7f:e9:d3:03:23:f6:58:4b:d4:24:6a:ee:ab:0c:01:94:
8b:47:c1:53:cf:d0:f6:a6:e8:10:3e:a3:3a:bf:6e:ae:8d:26:
25:f0:e5:5a:33:06:14:10:ef:c9:f9:03:8f:9f:61:f3:1e:d4:
27:14:e1:9b:5b:ae:c2:12:64:70:c8:42:00:2e:01:a4:06:a2:
22:99:1b:74:7b:de:e9:09:9b:f8:74:99:1d:d8:ee:73:6c:2f:
ea:5b:0d:5b:10:bf:e2:e8:b3:18:1b:77:b4:95:56:6c:cb:97:
7a:13:50:0f:fe:ce:d7:ed:e7:4f:ed:04:8d:0b:8b:1e:87:ac:
10:f6:4d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:30 2025 by rpki-client