Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/N8yIGkN8PK69TIPgyl7q6dUSEbQ.roa
File: N8yIGkN8PK69TIPgyl7q6dUSEbQ.roa (raw, json)
Hash identifier: uHM3AGLsAWKQ/bsGnhDYPWpNZT6RAXVGtxJeOa4qSco=
Subject key identifier: 37:CC:88:1A:43:7C:3C:AE:BD:4C:83:E0:CA:5E:EA:E9:D5:12:11:B4
Certificate issuer: /CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Certificate serial: 018A87F98117249094612B72D9DC256233C9
Authority key identifier: F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/N8yIGkN8PK69TIPgyl7q6dUSEbQ.roa
Signing time: Tue 12 Sep 2023 05:59:50 +0000
ROA not before: Tue 12 Sep 2023 05:59:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22653
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:87:f9:81:17:24:90:94:61:2b:72:d9:dc:25:62:33:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Validity
Not Before: Sep 12 05:59:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37cc881a437c3caebd4c83e0ca5eeae9d51211b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:8f:b6:5c:3f:80:f2:bd:ca:68:c8:3d:3c:6b:
00:29:0d:0c:f5:1c:9c:67:94:ff:63:2e:4c:8e:43:
44:06:b2:9c:6f:6e:9a:c9:1e:96:f7:e1:e9:9e:ff:
cc:ac:f1:c5:e4:2c:3f:cc:e8:52:72:58:b2:a6:7f:
1a:71:74:de:8e:32:b4:a6:22:16:b7:dc:08:38:91:
0b:69:9a:bd:56:a5:f4:4a:09:9d:21:51:ea:17:b5:
f6:19:bb:d5:7a:9b:b8:36:bb:0d:b4:8b:eb:4b:fc:
dd:83:fb:44:41:33:33:74:ed:d4:34:53:2c:66:33:
79:aa:25:fa:29:3d:2b:dd:73:9a:ae:a5:46:a5:f1:
6b:0c:ba:75:c7:cb:2e:36:17:7d:43:2c:68:0c:13:
b5:01:2c:2b:e9:95:ca:d1:85:47:7e:85:fe:d5:bc:
3f:c6:0e:89:0a:4c:d2:e7:98:aa:53:aa:de:92:a0:
41:49:8d:c3:98:55:23:c4:d7:7d:65:c4:de:8c:e0:
06:61:37:9a:8c:a1:10:77:12:de:10:d2:4e:45:26:
39:40:16:ba:94:4a:0a:4e:9a:20:43:81:49:f7:22:
8f:01:04:00:54:a8:dd:5a:e8:e4:93:37:5e:f1:29:
55:b6:00:b0:5c:e8:66:74:c9:70:07:e5:2f:66:73:
6c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:CC:88:1A:43:7C:3C:AE:BD:4C:83:E0:CA:5E:EA:E9:D5:12:11:B4
X509v3 Authority Key Identifier:
keyid:F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/N8yIGkN8PK69TIPgyl7q6dUSEbQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/1-YDJHr8QlkYqK3RGncYctKOsPTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ec:62:2e:8f:2d:53:f7:38:7d:e5:9c:b9:66:c9:5c:33:56:
43:cc:66:05:e0:3b:f7:eb:33:0f:ce:61:5c:66:41:86:2e:43:
ad:26:1f:87:8e:47:8b:bc:ef:d4:74:fa:ca:54:61:aa:7a:63:
a6:94:81:04:f3:57:71:56:35:db:49:0a:b0:3f:ea:ce:85:6c:
c4:95:e3:91:12:80:4f:7a:0c:72:1e:23:3b:d8:ab:1e:5f:08:
ef:0e:d9:23:09:05:73:3a:59:bc:a0:ec:38:a4:22:56:c4:a7:
1d:7b:aa:7c:21:a5:36:59:9b:ad:2d:6b:be:68:ab:93:64:82:
11:28:09:ef:ba:1f:09:f1:9e:d4:c0:8e:a0:41:37:3a:69:48:
e5:cf:ca:53:1e:c5:58:52:24:84:c1:b9:0c:cb:08:92:96:69:
83:2d:2e:16:76:a2:1f:2e:71:6b:89:fb:65:de:b2:85:ab:8c:
04:62:7f:a6:da:4f:6c:ee:bd:fa:63:a7:d8:6e:3a:dc:ca:16:
cf:8a:fa:56:f7:8e:4e:64:08:c1:a4:7a:ca:a4:52:aa:a4:58:
01:21:b3:5d:e0:c4:ae:61:2e:6d:22:89:e9:aa:41:d1:cc:4b:
5a:59:ca:48:86:85:61:56:77:20:00:94:d6:2d:58:3e:33:07:
e7:c0:1c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:53 2024 by rpki-client on console-fra.rpki-client.org