Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/53jCSpOpRwz0zFQSg0VxgZAXIGA.roa
File: 53jCSpOpRwz0zFQSg0VxgZAXIGA.roa (raw, json)
Hash identifier: rCAt5OEOUligyFId2d0c/F3NKJBZl3ZLj/Di7LSjDgs=
Subject key identifier: E7:78:C2:4A:93:A9:47:0C:F4:CC:54:12:83:45:71:81:90:17:20:60
Certificate issuer: /CN=a2dbf3dece882fad8a237468e08fd7beb1cafa39
Certificate serial: 018B32B4DD1D177E06FCB0F7C68B999EB2C7
Authority key identifier: A2:DB:F3:DE:CE:88:2F:AD:8A:23:74:68:E0:8F:D7:BE:B1:CA:FA:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otvz3s6IL62KI3Ro4I_XvrHK-jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/53jCSpOpRwz0zFQSg0VxgZAXIGA.roa
Signing time: Sun 15 Oct 2023 09:39:55 +0000
ROA not before: Sun 15 Oct 2023 09:39:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:32:b4:dd:1d:17:7e:06:fc:b0:f7:c6:8b:99:9e:b2:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2dbf3dece882fad8a237468e08fd7beb1cafa39
Validity
Not Before: Oct 15 09:39:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e778c24a93a9470cf4cc54128345718190172060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0f:5c:82:a5:db:2e:a0:dc:54:34:62:16:57:
d4:98:ad:3b:fd:1c:7f:e8:3b:5b:87:8d:54:af:50:
a8:b9:30:d8:97:83:63:c0:81:21:e9:73:de:b0:86:
61:9d:fc:06:1b:93:f3:9f:39:a0:33:85:b5:dc:b0:
9c:c8:53:15:b3:9b:40:44:6b:09:d6:66:cf:ec:09:
30:7f:ea:ad:74:1c:3a:cb:ea:5d:17:15:3e:b6:e2:
af:fa:43:c9:c5:b0:0f:0b:84:f3:93:01:a4:92:34:
98:e9:38:5e:67:1f:b9:53:38:23:ca:02:98:e3:26:
8e:58:23:7f:bc:0f:2e:78:e5:74:bb:7f:2e:ed:27:
fc:a8:97:29:a5:63:da:82:fc:2d:77:d7:e4:4c:69:
86:2e:2a:36:87:95:a7:c7:1b:c6:e7:9a:c0:76:cb:
1b:7d:a4:f2:e0:3d:bd:cd:a7:0e:1d:03:4f:cc:1c:
c2:28:ab:1a:4c:f3:72:6c:98:d4:cb:b0:e4:81:6f:
87:e1:22:ad:d3:9c:ea:e1:81:31:dd:39:74:f3:92:
0a:3a:47:1a:09:bb:a3:b5:48:a1:48:bb:58:3d:ac:
27:0f:ba:9a:03:f0:87:bb:42:27:10:17:2e:13:c7:
bc:34:75:96:9e:d5:59:c5:d0:dd:57:c0:5c:86:2c:
42:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:78:C2:4A:93:A9:47:0C:F4:CC:54:12:83:45:71:81:90:17:20:60
X509v3 Authority Key Identifier:
keyid:A2:DB:F3:DE:CE:88:2F:AD:8A:23:74:68:E0:8F:D7:BE:B1:CA:FA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otvz3s6IL62KI3Ro4I_XvrHK-jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/53jCSpOpRwz0zFQSg0VxgZAXIGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/otvz3s6IL62KI3Ro4I_XvrHK-jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.9.0/24
Signature Algorithm: sha256WithRSAEncryption
80:47:98:43:58:b8:ba:4b:a7:a6:f3:7f:00:9a:45:c5:d9:90:
4d:8e:c1:19:fe:a4:0f:3a:64:51:99:34:7f:67:69:c7:ef:49:
1e:ac:95:ee:71:08:24:c3:33:61:35:60:93:e3:91:d9:01:19:
1f:ae:a6:1c:7a:00:3f:b9:0e:45:51:71:34:a4:7a:7f:d9:30:
2e:06:0e:67:bc:91:23:46:86:b3:16:df:29:a5:9f:23:39:68:
80:1e:14:21:4c:95:94:f6:7c:99:2d:66:a9:de:60:a3:e0:37:
b5:f1:c9:e5:ab:79:2c:58:7b:7e:89:c1:64:77:bb:33:0d:a7:
30:00:79:51:72:4e:0f:ef:14:48:cc:d0:3d:45:5b:bc:36:75:
c4:9c:40:02:73:1f:20:69:2c:78:50:20:75:93:1c:16:f8:87:
87:5a:83:b4:14:0e:26:d4:8d:b7:bf:97:ca:94:96:6d:a1:f1:
de:1a:22:1c:16:b8:53:9e:7c:18:a9:53:ba:ce:c9:5a:56:be:
c7:c2:bb:de:e1:26:db:4e:ad:55:4d:8a:5f:29:0e:36:37:bc:
78:67:f5:c5:5c:8e:1d:f3:bf:f7:95:22:6d:1e:2c:43:c4:1e:
bc:eb:20:3f:cb:53:54:19:47:0b:2e:94:25:d9:61:f6:40:f7:
6c:a2:76:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:04 2025 by rpki-client