Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/6NHqSrdTAzROpIaLwh8zM5u_ois.roa
File: 6NHqSrdTAzROpIaLwh8zM5u_ois.roa (raw, json)
Hash identifier: UPGyUnrhOEZh+ITBN3H2lgY9N623dH867E77Hc+GhQ4=
Subject key identifier: E8:D1:EA:4A:B7:53:03:34:4E:A4:86:8B:C2:1F:33:33:9B:BF:A2:2B
Certificate issuer: /CN=2307e7974fb8312a2e6aaa996f5ef8474a53107c
Certificate serial: 018A5EF58AB251C8727400EC178FE883ACC8
Authority key identifier: 23:07:E7:97:4F:B8:31:2A:2E:6A:AA:99:6F:5E:F8:47:4A:53:10:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iwfnl0-4MSouaqqZb174R0pTEHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/6NHqSrdTAzROpIaLwh8zM5u_ois.roa
Signing time: Mon 04 Sep 2023 06:51:04 +0000
ROA not before: Mon 04 Sep 2023 06:51:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5e:f5:8a:b2:51:c8:72:74:00:ec:17:8f:e8:83:ac:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2307e7974fb8312a2e6aaa996f5ef8474a53107c
Validity
Not Before: Sep 4 06:51:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8d1ea4ab75303344ea4868bc21f33339bbfa22b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3e:54:6e:18:e9:82:4c:04:dd:bd:43:a7:6c:
49:00:c5:fd:72:6f:6a:2a:8f:41:ee:f2:88:cf:71:
1b:8f:1e:25:d8:ca:27:6e:72:95:3a:db:3b:50:9a:
31:0a:d9:a9:b8:04:29:d3:11:4c:73:08:37:4e:da:
50:a1:e0:17:59:c6:cd:3d:a8:87:90:7a:5b:2f:e0:
50:f4:9d:85:b9:e1:ce:ef:c2:98:be:42:5b:1c:e4:
57:1b:06:36:2f:0d:90:aa:a2:3b:27:e8:cc:90:22:
eb:4c:70:9b:40:20:bd:3c:6e:da:88:9d:3c:c6:be:
88:79:f3:9d:1e:ab:60:41:cb:19:c3:69:13:fc:5a:
8e:68:0b:26:a5:7a:43:8a:5f:21:b6:b8:2b:ef:10:
d5:d0:7f:94:d1:dc:75:3b:bb:10:b7:08:d3:78:a1:
07:98:81:77:7c:46:18:03:b3:0c:d1:c7:46:65:5a:
58:36:0d:0f:6b:0a:13:2e:66:4c:a2:31:e5:3e:52:
ff:79:66:32:1f:e7:d1:cc:f1:71:4c:d1:c5:b0:ca:
97:f4:fa:9d:98:ab:2d:4d:e9:3b:ee:50:b6:e1:22:
16:b7:9f:49:2b:99:6e:5f:82:ae:c9:c4:f6:81:1c:
e9:de:6e:14:1e:db:1d:b5:b3:d0:79:74:e8:33:5c:
69:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D1:EA:4A:B7:53:03:34:4E:A4:86:8B:C2:1F:33:33:9B:BF:A2:2B
X509v3 Authority Key Identifier:
keyid:23:07:E7:97:4F:B8:31:2A:2E:6A:AA:99:6F:5E:F8:47:4A:53:10:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iwfnl0-4MSouaqqZb174R0pTEHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/6NHqSrdTAzROpIaLwh8zM5u_ois.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37cde7-e98c-4f26-9dd3-434f74d499d7/1/Iwfnl0-4MSouaqqZb174R0pTEHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.189.0/24
Signature Algorithm: sha256WithRSAEncryption
75:18:b0:ee:9e:cc:8c:02:12:3a:36:bc:e2:a2:67:32:a4:dc:
73:f1:20:f9:0d:9b:50:44:1f:88:c4:43:b2:38:5b:c7:16:5d:
31:bc:1e:b4:96:8e:99:a4:ee:6c:f6:07:af:37:bb:ee:b5:a0:
da:8c:af:6a:f4:ed:6b:33:f1:17:e0:b5:0f:11:91:3b:de:d2:
73:f6:0f:78:bd:df:dc:e9:24:09:90:6a:96:8f:59:05:58:12:
49:6e:24:b8:22:f4:5b:db:0e:a7:d2:7d:97:64:01:2c:21:d5:
61:6b:d4:08:95:b3:7d:af:83:36:75:f9:4f:32:d8:07:ef:2b:
d9:d9:bb:a5:2a:3b:3c:88:3f:3e:63:0b:fe:d3:8d:8d:c3:ab:
68:4a:4a:77:46:b8:4f:df:3e:20:7d:df:f8:ee:f1:f3:88:5e:
a0:75:f1:5d:8e:f2:b4:7b:69:3b:c9:88:b1:ff:17:ec:e7:d1:
d2:d2:47:69:17:d2:39:27:6d:61:6b:ce:d1:17:b4:48:b2:ed:
5d:67:fc:11:7b:c2:91:58:28:46:b8:af:0b:a4:6f:29:36:e2:
a6:5a:69:ea:05:c3:9b:38:39:33:c2:90:47:13:76:5d:a1:f3:
f6:f4:75:26:9c:70:53:da:44:a3:40:6d:97:9c:70:68:75:70:
45:ef:f6:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 20 10:47:55 2023 by rpki-client on console-ams.rpki-client.org