Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/gU_Pu7JESG_qSXm7v0TjgCjBWjs.roa
File: gU_Pu7JESG_qSXm7v0TjgCjBWjs.roa (raw, json)
Hash identifier: 1Fal5vbdV0fKQ8FqA5qMIvLS7mpbhPb0XBo/FazLLMc=
Subject key identifier: 81:4F:CF:BB:B2:44:48:6F:EA:49:79:BB:BF:44:E3:80:28:C1:5A:3B
Certificate issuer: /CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Certificate serial: 01856B9C6A7169ED3F51FC5AAB3258BF0DE4
Authority key identifier: F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/gU_Pu7JESG_qSXm7v0TjgCjBWjs.roa
Signing time: Sun 01 Jan 2023 04:34:51 +0000
ROA not before: Sun 01 Jan 2023 04:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:6a:71:69:ed:3f:51:fc:5a:ab:32:58:bf:0d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Validity
Not Before: Jan 1 04:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=814fcfbbb244486fea4979bbbf44e38028c15a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:79:2d:11:6c:69:11:de:b3:d5:1c:e8:52:0d:
b1:ea:21:26:5f:b1:9b:12:c7:8c:db:c2:19:74:40:
a2:77:c6:ee:4c:b0:d4:9f:8c:99:77:a3:d4:29:c4:
6e:cc:bb:e3:ef:67:93:19:6a:ae:60:42:b6:e6:86:
1a:16:e3:6b:fc:8f:57:3b:0d:c8:75:93:45:fd:61:
1a:8f:97:a7:1d:31:ab:54:bb:b2:0f:f3:d3:bc:4c:
c2:df:49:b3:1f:6d:88:91:64:d5:05:5b:00:83:03:
fa:cb:5b:a2:cb:82:5b:02:38:40:df:03:49:bf:62:
85:0c:7f:d7:8c:62:e4:ba:d5:1b:3b:82:91:70:8b:
8e:5a:35:6c:c1:23:e6:b6:ac:7e:04:a3:c7:bd:37:
ad:69:b8:63:66:62:8e:2e:0d:4c:fa:b8:a5:40:b5:
cd:ac:14:ca:2f:15:9d:a1:d9:58:c6:53:af:81:3b:
e6:19:92:a8:49:f4:34:32:b4:6f:3e:df:94:c4:d2:
f9:0b:a7:23:9f:3a:22:c9:bc:bc:f4:0a:53:cf:b0:
9f:06:7a:09:5e:7b:9d:ee:52:c4:2a:ed:4f:7a:e5:
77:87:f7:1c:1d:02:e3:ce:e3:ab:06:5a:df:a2:8a:
e1:86:fd:25:3e:13:69:f7:55:d2:af:a9:57:2b:a4:
74:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4F:CF:BB:B2:44:48:6F:EA:49:79:BB:BF:44:E3:80:28:C1:5A:3B
X509v3 Authority Key Identifier:
keyid:F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/gU_Pu7JESG_qSXm7v0TjgCjBWjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/1-YDJHr8QlkYqK3RGncYctKOsPTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
93:90:bc:92:82:38:31:3f:27:07:a9:4f:9f:5e:83:fd:3c:a8:
28:06:c2:6a:11:24:f8:1a:d0:7f:1e:91:61:c0:ca:f6:57:45:
5e:ce:a7:97:67:73:38:5d:8f:87:a9:78:b5:83:f8:64:b9:a8:
1f:69:26:a2:56:6a:59:dc:1e:8d:27:1b:71:74:49:a7:d4:64:
93:aa:2c:e1:d0:fc:8c:c5:0f:ba:f1:12:f0:32:34:6a:ea:ec:
cf:3b:90:c3:76:69:1d:cd:43:44:b7:0a:98:94:20:1c:8f:bd:
65:da:ed:b6:05:fd:5b:6e:42:25:e4:84:cf:b0:69:69:34:37:
3c:02:78:53:3a:ca:ff:93:00:a8:e6:4f:b3:4d:89:58:69:57:
af:c6:38:93:1f:43:cc:5e:d8:2a:ff:c5:c1:80:33:57:c2:57:
d1:86:42:92:ea:e4:9e:e5:e2:1e:97:83:6a:8e:97:92:cd:83:
7e:de:23:40:a6:a2:cc:6e:b5:71:7d:2d:05:c2:aa:0d:65:c2:
53:ce:b9:99:00:6c:5e:d1:13:26:3e:8b:38:94:b3:c4:85:8e:
a8:bc:47:bd:ce:f4:78:25:53:36:da:a8:e9:0f:a4:8f:ce:43:
ad:f2:28:3f:90:88:47:67:b7:e7:4a:38:bb:65:5f:51:91:1c:
0f:f1:39:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:33 2024 by rpki-client on console-ams.rpki-client.org