Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/SKHbhVIhT19fKAkl823YbSDc6uA.roa
File: SKHbhVIhT19fKAkl823YbSDc6uA.roa (raw, json)
Hash identifier: 3xT4/C5x6GIalTwDsIN5kN+IWLCN1l0VyyPgNCa8a3c=
Subject key identifier: 48:A1:DB:85:52:21:4F:5F:5F:28:09:25:F3:6D:D8:6D:20:DC:EA:E0
Certificate issuer: /CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Certificate serial: 01882088B6F10E004E2FDB54C38C0535E527
Authority key identifier: F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/SKHbhVIhT19fKAkl823YbSDc6uA.roa
Signing time: Mon 15 May 2023 17:50:10 +0000
ROA not before: Mon 15 May 2023 17:50:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:88:b6:f1:0e:00:4e:2f:db:54:c3:8c:05:35:e5:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Validity
Not Before: May 15 17:50:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48a1db8552214f5f5f280925f36dd86d20dceae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:31:66:9a:0f:6e:f9:e8:ed:cd:1b:96:eb:1b:
1e:9d:0c:4c:85:c0:80:ff:35:7e:89:51:3e:0c:c1:
41:ae:6d:04:46:8b:2b:e1:3b:9f:eb:4d:ed:ac:36:
a8:11:2c:0d:1c:6f:1b:5b:af:9f:ad:5b:ca:ec:2a:
39:6c:01:77:13:0f:7f:92:75:19:22:7e:aa:cd:c4:
9b:56:a1:56:91:e2:0f:41:a3:61:b4:42:2c:f1:d6:
d1:16:ba:7d:1c:52:96:d8:04:8b:22:ed:6a:98:95:
a2:01:d1:38:0f:fb:3b:ff:6e:74:5c:d7:1c:ac:89:
d2:d3:d1:c1:e5:12:7b:32:87:24:6b:67:2f:fa:d7:
f4:fb:53:f6:a9:01:a0:ea:ce:65:0a:b6:6b:6c:ff:
0e:31:70:4e:f6:01:d6:09:24:5b:5f:0f:7c:df:13:
e8:51:ae:8e:28:d4:4d:23:de:d7:40:73:81:4f:d6:
cd:43:5b:c1:c9:98:4c:45:c5:fd:54:51:a4:56:7f:
2e:b6:13:b5:f7:86:3a:ce:e5:4f:15:a6:90:8e:e7:
ec:65:30:f9:0c:f7:f9:d4:57:7f:1e:1c:67:ca:f3:
4c:54:70:24:4d:97:39:46:2a:0a:79:fa:22:4b:c3:
19:e1:89:51:16:32:81:8b:df:ee:71:ef:55:0f:ec:
3d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A1:DB:85:52:21:4F:5F:5F:28:09:25:F3:6D:D8:6D:20:DC:EA:E0
X509v3 Authority Key Identifier:
keyid:F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/SKHbhVIhT19fKAkl823YbSDc6uA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/1-YDJHr8QlkYqK3RGncYctKOsPTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:28:ad:7a:92:f4:56:35:07:b4:4f:18:f8:07:0c:be:52:9f:
ed:2a:b5:aa:37:58:01:87:bb:ec:44:0d:33:ee:32:05:74:c8:
7a:05:19:14:35:85:a5:42:8f:b2:52:62:6b:5f:e9:cb:13:a4:
07:98:d7:83:7e:8a:85:cc:9a:af:b8:52:aa:99:77:37:b6:95:
f4:e5:60:85:25:f1:c0:bc:a0:24:42:9c:68:e5:e1:c5:9b:e7:
02:7c:11:3f:f0:b4:f5:68:79:a6:e1:34:06:02:c0:0c:9e:8e:
8b:cd:41:fe:60:0c:68:5f:e4:9c:ba:bc:c5:0d:68:1f:7f:34:
d4:cc:b6:73:d1:87:02:f3:3a:d5:6b:37:cf:16:da:2a:ef:d8:
6d:f1:81:0e:ee:17:d6:83:ad:ee:87:4c:f1:2c:52:aa:c1:25:
1c:58:4e:fb:7e:5f:6f:c2:44:f5:ee:d9:f1:b3:ba:b3:36:ea:
c1:49:d0:c8:04:51:5d:c1:f5:ef:64:46:77:93:91:bb:3b:73:
19:60:1c:34:a3:23:9c:96:46:42:d8:31:7f:8b:ba:15:74:e5:
85:92:30:d6:07:6d:35:ef:e1:5f:32:f5:12:09:3c:c5:d6:92:
55:29:75:3f:67:d4:84:63:95:7b:03:24:6f:d6:a1:ab:91:0a:
00:48:c9:fb
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYggiLbxDgBOL9tUw4wFNeUnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5ODBjOTFlYmYxMDk2NDYyYTJiNzQ0NjlkYzYxY2I0YTNh
YzNkMzIwHhcNMjMwNTE1MTc1MDEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OGExZGI4NTUyMjE0ZjVmNWYyODA5MjVmMzZkZDg2ZDIwZGNlYWUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTFmmg9u+ejtzRuW6xsenQxMhcCA
/zV+iVE+DMFBrm0ERosr4Tuf603trDaoESwNHG8bW6+frVvK7Co5bAF3Ew9/knUZ
In6qzcSbVqFWkeIPQaNhtEIs8dbRFrp9HFKW2ASLIu1qmJWiAdE4D/s7/250XNcc
rInS09HB5RJ7Mocka2cv+tf0+1P2qQGg6s5lCrZrbP8OMXBO9gHWCSRbXw983xPo
Ua6OKNRNI97XQHOBT9bNQ1vByZhMRcX9VFGkVn8uthO194Y6zuVPFaaQjufsZTD5
DPf51Fd/HhxnyvNMVHAkTZc5RioKefoiS8MZ4YlRFjKBi9/uce9VD+w9BwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFEih24VSIU9fXygJJfNt2G0g3OrgMB8GA1UdIwQY
MBaAFPmAyR6/EJZGKit0Rp3GHLSjrD0yMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1ZREpIcjhRbGtZcUszUkduY1ljdEtPc1BUSS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAvZTBhOGY0LTg2NGYtNGNhZS1iNGE4
LWExZTVjYTE3OWE3NS8xL1NLSGJoVkloVDE5ZktBa2w4MjNZYlNEYzZ1QS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvODAvZTBhOGY0LTg2NGYtNGNhZS1iNGE4LWExZTVjYTE3OWE3
NS8xLzEtWURKSHI4UWxrWXFLM1JHbmNZY3RLT3NQVEkuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACSExQw
DQYJKoZIhvcNAQELBQADggEBAHsorXqS9FY1B7RPGPgHDL5Sn+0qtao3WAGHu+xE
DTPuMgV0yHoFGRQ1haVCj7JSYmtf6csTpAeY14N+ioXMmq+4UqqZdze2lfTlYIUl
8cC8oCRCnGjl4cWb5wJ8ET/wtPVoeabhNAYCwAyejovNQf5gDGhf5Jy6vMUNaB9/
NNTMtnPRhwLzOtVrN88W2irv2G3xgQ7uF9aDre6HTPEsUqrBJRxYTvt+X2/CRPXu
2fGzurM26sFJ0MgEUV3B9e9kRneTkbs7cxlgHDSjI5yWRkLYMX+LuhV05YWSMNYH
bTXv4V8y9RIJPMXWklUpdT9n1IRjlXsDJG/WoauRCgBIyfs=
-----END CERTIFICATE-----
Generated at Sat Apr 19 00:44:52 2025 by rpki-client