Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/xFJnTxmzVaTD0P_GkYAbzteP8YU.roa
File: xFJnTxmzVaTD0P_GkYAbzteP8YU.roa (raw, json)
Hash identifier: f8AmloJyUE/GcAL0cPGcx0/jeinBVGmrUR5ZKfR+91g=
Subject key identifier: C4:52:67:4F:19:B3:55:A4:C3:D0:FF:C6:91:80:1B:CE:D7:8F:F1:85
Certificate issuer: /CN=a2dbf3dece882fad8a237468e08fd7beb1cafa39
Certificate serial: 018A9111AFC7B8F8DF37F2E61ABAE6D3934B
Authority key identifier: A2:DB:F3:DE:CE:88:2F:AD:8A:23:74:68:E0:8F:D7:BE:B1:CA:FA:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otvz3s6IL62KI3Ro4I_XvrHK-jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/xFJnTxmzVaTD0P_GkYAbzteP8YU.roa
Signing time: Thu 14 Sep 2023 00:22:49 +0000
ROA not before: Thu 14 Sep 2023 00:22:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205733
IP address blocks: 146.19.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:91:11:af:c7:b8:f8:df:37:f2:e6:1a:ba:e6:d3:93:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2dbf3dece882fad8a237468e08fd7beb1cafa39
Validity
Not Before: Sep 14 00:22:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c452674f19b355a4c3d0ffc691801bced78ff185
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:53:d1:e3:5c:63:4c:5b:f8:74:7d:97:a6:5d:
a7:b7:2d:55:de:cd:a4:76:19:0d:0d:fd:06:0d:ad:
b4:ec:53:08:97:ca:e5:bd:66:71:1a:17:fe:8e:bb:
47:93:a6:09:1c:0d:0f:99:36:2a:eb:2b:68:6e:47:
61:44:ea:6b:c1:8d:95:ec:6b:05:60:f6:f2:70:02:
d1:40:6c:92:6b:df:c6:0e:1b:ad:3f:5c:2e:35:c7:
93:ff:bc:a6:9d:9d:a6:c6:7f:e5:c3:d2:83:c6:f5:
3c:ae:b8:ff:d0:71:25:6f:42:bf:b0:a0:91:c0:44:
4a:6f:2c:59:38:9c:13:8b:08:4a:57:21:95:6e:bd:
d4:ea:9a:ad:32:2e:44:f1:e3:c4:34:56:f6:e9:46:
84:f3:e1:9c:5f:a5:a3:9f:15:d5:06:06:80:ef:0d:
d5:76:f4:a5:9e:23:84:7b:ff:3f:97:92:57:e5:20:
5b:9e:7e:10:20:69:46:5a:f2:d9:c0:d6:21:d0:6c:
d4:e5:cd:01:e8:2e:46:95:12:94:59:5e:b9:d2:63:
60:4d:72:81:20:cb:7e:f9:37:bd:42:37:ec:fa:72:
63:c3:1a:87:1f:e0:1e:16:40:97:52:c2:b5:a3:28:
bd:37:b6:87:70:29:0b:e4:e8:49:51:f1:46:e9:cc:
7c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:52:67:4F:19:B3:55:A4:C3:D0:FF:C6:91:80:1B:CE:D7:8F:F1:85
X509v3 Authority Key Identifier:
keyid:A2:DB:F3:DE:CE:88:2F:AD:8A:23:74:68:E0:8F:D7:BE:B1:CA:FA:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otvz3s6IL62KI3Ro4I_XvrHK-jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/xFJnTxmzVaTD0P_GkYAbzteP8YU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c87266-0d64-449c-ba46-0b617fe7c123/1/otvz3s6IL62KI3Ro4I_XvrHK-jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.9.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:2c:ae:ce:ca:2d:df:64:d9:1f:05:6b:f0:16:4a:ac:f8:9c:
38:f0:ff:00:23:32:c0:98:f2:2e:10:d4:45:fa:b8:81:c4:10:
34:8c:9c:00:81:b5:dd:77:45:7f:52:83:19:b2:da:b1:fe:f2:
e8:16:9e:b5:44:f6:43:59:1b:ff:cc:fd:42:14:5b:48:45:1f:
2e:8c:05:02:5e:f6:9b:c4:63:50:52:71:d8:1f:fc:aa:42:48:
26:13:d2:8f:fe:23:1c:2b:24:3f:0e:0f:fd:2d:30:7d:fc:9f:
b8:27:91:30:4e:af:3b:2a:d4:0a:9c:99:5d:59:6c:d9:31:6a:
fa:c4:9e:35:af:19:3f:35:1a:89:fc:10:04:f5:cf:93:e3:c4:
09:94:56:3e:99:3a:7a:05:82:19:2e:02:44:40:5a:f0:74:ab:
b6:62:ea:f3:c0:15:ef:a5:7e:98:3a:f1:55:e2:56:53:33:b1:
0c:92:d8:c9:63:12:72:e6:62:9c:c2:6b:fe:19:94:9e:55:b1:
c5:e5:66:25:e4:75:88:64:b8:9c:d1:f2:50:6c:04:f9:8d:8f:
6d:b4:d5:a8:25:7d:59:64:dc:69:07:31:f8:1e:5e:ab:36:9f:
77:91:ff:ab:47:3c:3e:54:dd:07:c6:f4:79:13:97:af:00:9e:
97:42:f7:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqREa/HuPjfN/LmGrrm05NLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZGJmM2RlY2U4ODJmYWQ4YTIzNzQ2OGUwOGZkN2JlYjFj
YWZhMzkwHhcNMjMwOTE0MDAyMjQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDUyNjc0ZjE5YjM1NWE0YzNkMGZmYzY5MTgwMWJjZWQ3OGZmMTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1PR41xjTFv4dH2Xpl2nty1V3s2k
dhkNDf0GDa207FMIl8rlvWZxGhf+jrtHk6YJHA0PmTYq6ytobkdhROprwY2V7GsF
YPbycALRQGySa9/GDhutP1wuNceT/7ymnZ2mxn/lw9KDxvU8rrj/0HElb0K/sKCR
wERKbyxZOJwTiwhKVyGVbr3U6pqtMi5E8ePENFb26UaE8+GcX6WjnxXVBgaA7w3V
dvSlniOEe/8/l5JX5SBbnn4QIGlGWvLZwNYh0GzU5c0B6C5GlRKUWV650mNgTXKB
IMt++Te9Qjfs+nJjwxqHH+AeFkCXUsK1oyi9N7aHcCkL5OhJUfFG6cx8XwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMRSZ08Zs1Wkw9D/xpGAG87Xj/GFMB8GA1UdIwQY
MBaAFKLb897OiC+tiiN0aOCP176xyvo5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3R2ejNzNklMNjJLSTNSbzRJX1h2ckhLLWprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9jODcyNjYtMGQ2NC00NDljLWJhNDYt
MGI2MTdmZTdjMTIzLzEveEZKblR4bXpWYVREMFBfR2tZQWJ6dGVQOFlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC9jODcyNjYtMGQ2NC00NDljLWJhNDYtMGI2MTdmZTdjMTIz
LzEvb3R2ejNzNklMNjJLSTNSbzRJX1h2ckhLLWprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhMJMA0G
CSqGSIb3DQEBCwUAA4IBAQA9LK7Oyi3fZNkfBWvwFkqs+Jw48P8AIzLAmPIuENRF
+riBxBA0jJwAgbXdd0V/UoMZstqx/vLoFp61RPZDWRv/zP1CFFtIRR8ujAUCXvab
xGNQUnHYH/yqQkgmE9KP/iMcKyQ/Dg/9LTB9/J+4J5EwTq87KtQKnJldWWzZMWr6
xJ41rxk/NRqJ/BAE9c+T48QJlFY+mTp6BYIZLgJEQFrwdKu2YurzwBXvpX6YOvFV
4lZTM7EMktjJYxJy5mKcwmv+GZSeVbHF5WYl5HWIZLic0fJQbAT5jY9ttNWoJX1Z
ZNxpBzH4Hl6rNp93kf+rRzw+VN0HxvR5E5evAJ6XQvcL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:41 2024 by rpki-client on console-fra.rpki-client.org