Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d354b5-9031-45ef-8b4f-02d1f71208d0/1/N3kbuAx4swBMpANkAzKMEKOG4JQ.roa
File: N3kbuAx4swBMpANkAzKMEKOG4JQ.roa (raw, json)
Hash identifier: p90/MqUXm/tzVnGXzNbaTwK1tnPWFaGTiV81EmBdRFw=
Subject key identifier: 37:79:1B:B8:0C:78:B3:00:4C:A4:03:64:03:32:8C:10:A3:86:E0:94
Certificate issuer: /CN=f5f6a2ccd3b2e51d19cf38fc141ec9425d77cf2a
Certificate serial: 0182B4F118DECD0B21420468C509D201275D
Authority key identifier: F5:F6:A2:CC:D3:B2:E5:1D:19:CF:38:FC:14:1E:C9:42:5D:77:CF:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9faizNOy5R0Zzzj8FB7JQl13zyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d354b5-9031-45ef-8b4f-02d1f71208d0/1/N3kbuAx4swBMpANkAzKMEKOG4JQ.roa
Signing time: Fri 19 Aug 2022 07:11:15 +0000
ROA not before: Fri 19 Aug 2022 07:11:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 146.19.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b4:f1:18:de:cd:0b:21:42:04:68:c5:09:d2:01:27:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5f6a2ccd3b2e51d19cf38fc141ec9425d77cf2a
Validity
Not Before: Aug 19 07:11:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37791bb80c78b3004ca4036403328c10a386e094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:24:dd:d1:79:1c:18:2d:04:6d:94:9f:0a:a7:
24:8f:1f:01:18:63:52:a1:76:11:16:e7:fa:df:9b:
43:2f:1e:df:43:8a:e0:55:18:36:51:ae:cf:ca:ac:
4e:5e:4c:b1:72:60:34:c3:e3:8a:e9:de:04:4f:93:
8d:f1:f0:6e:37:d4:9b:09:df:9f:be:f8:95:11:1a:
1d:cc:ef:0b:53:70:29:c2:92:b8:bb:83:2e:c3:65:
da:a2:54:0f:27:1e:3f:e9:12:a3:83:ac:45:98:42:
26:41:a0:e4:f1:07:1c:22:d3:1b:3e:10:52:13:da:
58:17:6f:40:dd:db:86:03:7a:99:25:8a:02:a3:da:
39:54:47:dd:e3:37:25:f6:c7:c1:d0:0b:07:0e:42:
25:21:85:2c:42:9f:0f:bc:6d:f6:86:70:97:c9:e7:
09:67:6d:a0:85:c2:02:da:4b:66:c6:17:fc:b6:64:
2d:c3:05:31:f5:26:a1:3e:c5:93:bf:8a:45:af:9d:
da:62:50:42:e4:95:0a:71:57:0b:d0:84:ab:bf:70:
84:96:1f:e3:4b:6f:8b:9b:2e:ae:ea:91:0c:76:24:
e8:7a:7c:a5:1f:73:af:d8:61:f6:16:75:d1:1d:75:
40:b0:f9:7c:b5:85:ae:be:17:de:5b:52:a9:58:42:
58:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:79:1B:B8:0C:78:B3:00:4C:A4:03:64:03:32:8C:10:A3:86:E0:94
X509v3 Authority Key Identifier:
keyid:F5:F6:A2:CC:D3:B2:E5:1D:19:CF:38:FC:14:1E:C9:42:5D:77:CF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9faizNOy5R0Zzzj8FB7JQl13zyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d354b5-9031-45ef-8b4f-02d1f71208d0/1/N3kbuAx4swBMpANkAzKMEKOG4JQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d354b5-9031-45ef-8b4f-02d1f71208d0/1/9faizNOy5R0Zzzj8FB7JQl13zyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.39.0/24
Signature Algorithm: sha256WithRSAEncryption
42:b9:87:58:48:79:72:2f:c0:90:94:a4:93:92:1a:65:f6:c1:
e9:55:ac:2a:8f:dd:f3:0a:70:1d:cf:c9:c8:c6:70:c7:f7:a0:
a4:0a:dd:8a:aa:b7:ad:e3:18:fb:c1:c9:fd:01:29:85:79:a7:
d8:8f:46:57:52:2e:4e:3b:d0:10:aa:23:82:66:1e:30:2d:c1:
6a:cc:01:33:84:52:f8:d5:5f:e0:45:45:ba:3c:16:42:dc:33:
0f:0a:5b:c1:91:23:2e:e8:57:3b:42:28:f4:c9:45:58:dd:b4:
62:8e:49:34:16:7f:ae:6d:19:39:26:5d:02:e6:d6:fa:7d:07:
f0:18:f7:21:a4:1c:47:9d:37:aa:e1:ba:ac:ab:21:77:67:bd:
0e:a1:56:6f:97:26:db:d0:aa:3f:f3:c5:db:b2:0a:44:b4:15:
15:a3:92:8e:49:44:5f:05:a4:04:15:31:8a:73:e8:44:e9:2a:
17:12:09:2c:71:8f:94:e5:aa:7e:9f:68:36:23:b0:14:06:b3:
69:27:b1:f5:16:bd:97:55:12:6a:28:c9:86:a6:27:65:6d:d8:
83:82:87:79:26:46:80:c0:6a:94:e3:92:b2:78:ab:47:80:35:
03:5c:50:2a:02:54:d6:3e:5c:8b:26:b5:f8:6e:02:e2:b6:05:
22:58:ae:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYK08RjezQshQgRoxQnSASddMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1ZjZhMmNjZDNiMmU1MWQxOWNmMzhmYzE0MWVjOTQyNWQ3
N2NmMmEwHhcNMjIwODE5MDcxMTE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNzc5MWJiODBjNzhiMzAwNGNhNDAzNjQwMzMyOGMxMGEzODZlMDk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniTd0XkcGC0EbZSfCqckjx8BGGNS
oXYRFuf635tDLx7fQ4rgVRg2Ua7PyqxOXkyxcmA0w+OK6d4ET5ON8fBuN9SbCd+f
vviVERodzO8LU3ApwpK4u4Muw2XaolQPJx4/6RKjg6xFmEImQaDk8QccItMbPhBS
E9pYF29A3duGA3qZJYoCo9o5VEfd4zcl9sfB0AsHDkIlIYUsQp8PvG32hnCXyecJ
Z22ghcIC2ktmxhf8tmQtwwUx9SahPsWTv4pFr53aYlBC5JUKcVcL0ISrv3CElh/j
S2+Lmy6u6pEMdiToenylH3Ov2GH2FnXRHXVAsPl8tYWuvhfeW1KpWEJYYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDd5G7gMeLMATKQDZAMyjBCjhuCUMB8GA1UdIwQY
MBaAFPX2oszTsuUdGc84/BQeyUJdd88qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWZhaXpOT3k1UjBaenpqOEZCN0pRbDEzenlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9kMzU0YjUtOTAzMS00NWVmLThiNGYt
MDJkMWY3MTIwOGQwLzEvTjNrYnVBeDRzd0JNcEFOa0F6S01FS09HNEpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9kMzU0YjUtOTAzMS00NWVmLThiNGYtMDJkMWY3MTIwOGQw
LzEvOWZhaXpOT3k1UjBaenpqOEZCN0pRbDEzenlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhMnMA0G
CSqGSIb3DQEBCwUAA4IBAQBCuYdYSHlyL8CQlKSTkhpl9sHpVawqj93zCnAdz8nI
xnDH96CkCt2Kqret4xj7wcn9ASmFeafYj0ZXUi5OO9AQqiOCZh4wLcFqzAEzhFL4
1V/gRUW6PBZC3DMPClvBkSMu6Fc7Qij0yUVY3bRijkk0Fn+ubRk5Jl0C5tb6fQfw
GPchpBxHnTeq4bqsqyF3Z70OoVZvlybb0Ko/88XbsgpEtBUVo5KOSURfBaQEFTGK
c+hE6SoXEgkscY+U5ap+n2g2I7AUBrNpJ7H1Fr2XVRJqKMmGpidlbdiDgod5JkaA
wGqU45KyeKtHgDUDXFAqAlTWPlyLJrX4bgLitgUiWK6E
-----END CERTIFICATE-----
Generated at Tue Apr 8 11:03:52 2025 by rpki-client