Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/dc2ed1-e167-4508-881a-22225c3b6ef0/1/G8o_AuAaWS5SqgN6-u3uizzFVWM.roa
File: G8o_AuAaWS5SqgN6-u3uizzFVWM.roa (raw, json)
Hash identifier: NexX0k/FYWTn2JqqCCTX6FJLbt3iK8gTA4KsrmfaEyQ=
Subject key identifier: 1B:CA:3F:02:E0:1A:59:2E:52:AA:03:7A:FA:ED:EE:8B:3C:C5:55:63
Certificate issuer: /CN=3a6c747d0a6e50fb9f79fc7f3a3d0b58b5ec3674
Certificate serial: 0147F3
Authority key identifier: 3A:6C:74:7D:0A:6E:50:FB:9F:79:FC:7F:3A:3D:0B:58:B5:EC:36:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Omx0fQpuUPufefx_Oj0LWLXsNnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/dc2ed1-e167-4508-881a-22225c3b6ef0/1/G8o_AuAaWS5SqgN6-u3uizzFVWM.roa
Signing time: Mon 31 Jan 2022 09:21:35 +0000
ROA not before: Mon 31 Jan 2022 09:21:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207937
IP address blocks: 146.19.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83955 (0x147f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a6c747d0a6e50fb9f79fc7f3a3d0b58b5ec3674
Validity
Not Before: Jan 31 09:21:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bca3f02e01a592e52aa037afaedee8b3cc55563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:01:6e:fe:b1:79:b1:33:9b:81:fa:f7:73:56:
e7:1e:71:2a:5a:57:8a:0a:a1:0c:e1:ea:49:d2:2e:
4a:d3:71:47:17:5a:df:5a:4c:9d:03:e7:c9:48:7b:
86:05:ad:c0:aa:15:5d:15:76:1b:5c:b4:ef:94:88:
96:79:19:21:ee:79:81:36:02:56:82:2c:13:67:9c:
2e:5e:71:e7:c8:c2:c3:c1:2a:39:b0:27:90:b3:16:
be:c0:50:41:86:9a:bf:41:62:2c:d2:9e:91:67:62:
48:83:16:22:9a:69:eb:e5:fb:81:ba:58:7b:d9:63:
af:04:cc:da:85:0c:d1:95:16:a7:29:e3:32:59:0f:
f2:a1:16:f0:82:19:45:fd:03:6b:44:51:92:9d:af:
da:83:d6:a9:17:e3:75:db:cc:f2:f4:4c:dc:a1:d2:
9e:29:86:0f:e5:f2:2f:4b:27:cc:11:42:4a:47:3c:
2b:d5:e8:c8:17:ff:04:77:63:9e:24:e2:f3:31:d6:
60:97:19:48:02:de:5f:8e:b3:8e:14:b5:a0:88:03:
7b:b5:89:8a:da:42:5f:88:ff:28:29:14:7c:31:17:
7b:09:c2:3d:7b:39:69:4a:ee:a3:c4:24:d5:a6:df:
db:61:65:1d:5e:ee:b2:fd:2e:0c:5d:0b:11:cc:f6:
5f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CA:3F:02:E0:1A:59:2E:52:AA:03:7A:FA:ED:EE:8B:3C:C5:55:63
X509v3 Authority Key Identifier:
keyid:3A:6C:74:7D:0A:6E:50:FB:9F:79:FC:7F:3A:3D:0B:58:B5:EC:36:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Omx0fQpuUPufefx_Oj0LWLXsNnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/dc2ed1-e167-4508-881a-22225c3b6ef0/1/G8o_AuAaWS5SqgN6-u3uizzFVWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/dc2ed1-e167-4508-881a-22225c3b6ef0/1/Omx0fQpuUPufefx_Oj0LWLXsNnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.222.0/24
Signature Algorithm: sha256WithRSAEncryption
39:1a:6c:16:5d:84:d6:64:58:37:0a:be:2b:2f:56:ce:a3:a0:
45:a7:2d:79:91:99:5b:30:9c:13:8c:f7:c5:d0:39:13:3c:62:
30:73:15:56:fd:34:33:4a:81:32:db:00:d4:e9:c0:3a:1a:0b:
a5:20:4d:75:68:b0:f9:22:3d:fc:f5:b8:fa:29:be:66:e9:d3:
70:ba:18:1b:c3:c6:f3:61:9b:c9:a4:7a:c4:a7:b7:75:3e:b5:
38:2f:0c:e0:af:38:bc:1a:81:7c:5e:07:98:30:c6:56:1a:52:
0e:a3:03:d5:00:8d:18:bc:69:9d:65:f0:c0:0e:2d:8f:18:fb:
4b:fe:85:28:12:2a:27:c1:f4:89:11:83:07:27:0a:0d:04:6d:
90:f0:4a:13:36:8f:8a:8b:52:e9:3f:69:91:98:6e:b9:2c:e2:
2f:dc:7b:ce:96:44:04:c1:0b:4e:1b:36:7d:6c:d9:a3:c7:3c:
bb:fa:6e:82:72:72:5d:6e:b3:38:ef:52:ea:1d:21:5e:dc:54:
d7:18:e4:79:9f:5a:29:12:2c:bf:64:02:b6:11:99:62:c2:2c:
fc:a5:d0:87:ec:bf:8c:6a:7d:bc:11:4b:45:7c:80:62:6d:f0:
e9:68:86:a1:29:26:1a:db:9d:b2:6d:99:e8:a9:b5:27:3f:62:
97:e8:9e:3e
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAUfzMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDNh
NmM3NDdkMGE2ZTUwZmI5Zjc5ZmM3ZjNhM2QwYjU4YjVlYzM2NzQwHhcNMjIwMTMx
MDkyMTM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygxYmNhM2YwMmUwMWE1
OTJlNTJhYTAzN2FmYWVkZWU4YjNjYzU1NTYzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArgFu/rF5sTObgfr3c1bnHnEqWleKCqEM4epJ0i5K03FHF1rf
WkydA+fJSHuGBa3AqhVdFXYbXLTvlIiWeRkh7nmBNgJWgiwTZ5wuXnHnyMLDwSo5
sCeQsxa+wFBBhpq/QWIs0p6RZ2JIgxYimmnr5fuBulh72WOvBMzahQzRlRanKeMy
WQ/yoRbwghlF/QNrRFGSna/ag9apF+N128zy9EzcodKeKYYP5fIvSyfMEUJKRzwr
1ejIF/8Ed2OeJOLzMdZglxlIAt5fjrOOFLWgiAN7tYmK2kJfiP8oKRR8MRd7CcI9
ezlpSu6jxCTVpt/bYWUdXu6y/S4MXQsRzPZfPQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFBvKPwLgGlkuUqoDevrt7os8xVVjMB8GA1UdIwQYMBaAFDpsdH0KblD7n3n8
fzo9C1i17DZ0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
T214MGZRcHVVUHVmZWZ4X09qMExXTFhzTm5RLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83NC9kYzJlZDEtZTE2Ny00NTA4LTg4MWEtMjIyMjVjM2I2ZWYwLzEv
RzhvX0F1QWFXUzVTcWdONi11M3VpenpGVldNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9k
YzJlZDEtZTE2Ny00NTA4LTg4MWEtMjIyMjVjM2I2ZWYwLzEvT214MGZRcHVVUHVm
ZWZ4X09qMExXTFhzTm5RLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhPeMA0GCSqGSIb3DQEBCwUAA4IB
AQA5GmwWXYTWZFg3Cr4rL1bOo6BFpy15kZlbMJwTjPfF0DkTPGIwcxVW/TQzSoEy
2wDU6cA6GgulIE11aLD5Ij389bj6Kb5m6dNwuhgbw8bzYZvJpHrEp7d1PrU4Lwzg
rzi8GoF8XgeYMMZWGlIOowPVAI0YvGmdZfDADi2PGPtL/oUoEionwfSJEYMHJwoN
BG2Q8EoTNo+Ki1LpP2mRmG65LOIv3HvOlkQEwQtOGzZ9bNmjxzy7+m6CcnJdbrM4
71LqHSFe3FTXGOR5n1opEiy/ZAK2EZliwiz8pdCH7L+Man28EUtFfIBibfDpaIah
KSYa252ybZnoqbUnP2KX6J4+
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:49 2025 by rpki-client