Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/hFVLid7UxLegXaKH8b8s1K4O4xs.roa
File: hFVLid7UxLegXaKH8b8s1K4O4xs.roa (raw, json)
Hash identifier: puqUE8CSa6iD6F/wRBmqED2KgOfLdYCeua9PX3aYumk=
Subject key identifier: 84:55:4B:89:DE:D4:C4:B7:A0:5D:A2:87:F1:BF:2C:D4:AE:0E:E3:1B
Certificate issuer: /CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Certificate serial: 0187813F98F7607ECFBE5B150BEE5BD7522D
Authority key identifier: F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/hFVLid7UxLegXaKH8b8s1K4O4xs.roa
Signing time: Fri 14 Apr 2023 19:30:41 +0000
ROA not before: Fri 14 Apr 2023 19:30:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:81:3f:98:f7:60:7e:cf:be:5b:15:0b:ee:5b:d7:52:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Validity
Not Before: Apr 14 19:30:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84554b89ded4c4b7a05da287f1bf2cd4ae0ee31b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d0:b0:9e:c4:8b:a1:72:f7:1c:57:7d:06:ce:
e6:20:2c:c3:56:1a:19:04:20:a4:b5:fd:2b:2c:2a:
df:5b:58:d2:d9:74:64:5b:43:19:dd:a6:38:b2:23:
8c:a2:80:39:20:ae:9f:3c:8f:2a:8b:90:09:92:e8:
54:dc:24:54:1d:70:26:52:1a:3c:56:ae:63:15:c7:
71:a6:dc:67:92:41:b8:d7:98:66:ff:a1:df:c3:fc:
3a:a6:4c:20:8d:54:e5:af:b8:54:85:1b:38:ad:59:
eb:80:7d:0a:e3:ce:a8:8f:25:ff:70:6e:28:37:80:
29:c4:14:12:93:21:9d:2e:3e:7a:90:ac:ed:a1:cd:
5e:37:bc:9a:2a:db:c0:a0:e9:41:cb:0c:d4:2f:62:
97:23:7d:05:56:cf:24:60:8d:9f:01:dd:2d:29:c9:
4c:50:28:65:6a:cd:5f:e0:cf:5f:f3:df:75:23:07:
7a:9f:85:f8:b9:87:6e:54:70:57:1f:e4:3e:91:f4:
2a:14:db:6b:62:2b:65:98:70:66:4c:12:25:94:88:
8b:d3:88:14:27:67:10:ba:53:8b:49:eb:b2:27:4f:
ed:c4:06:c0:7e:df:e1:ba:3b:d8:3c:c7:53:aa:5f:
8c:8c:39:0e:35:73:25:25:c9:4d:ba:0e:fe:60:38:
cb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:55:4B:89:DE:D4:C4:B7:A0:5D:A2:87:F1:BF:2C:D4:AE:0E:E3:1B
X509v3 Authority Key Identifier:
keyid:F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/hFVLid7UxLegXaKH8b8s1K4O4xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/1-YDJHr8QlkYqK3RGncYctKOsPTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
96:3f:ee:b3:21:86:d8:04:96:2b:da:9d:ac:06:86:f9:6e:6f:
1e:8c:ff:95:62:d6:ce:bf:3b:f7:cd:64:21:9e:8c:f8:ed:71:
2f:46:7e:99:24:65:f4:c6:06:6d:58:89:70:01:fe:94:13:f5:
60:1f:96:e6:d6:5c:65:16:a1:02:d1:5b:8e:0e:80:f9:30:a4:
ae:c6:79:86:1c:8d:46:9a:a0:86:4c:3a:0b:b8:f7:72:88:c4:
e4:e5:c7:c2:54:19:03:22:10:42:90:05:a1:47:4e:c4:41:5f:
eb:1a:d8:8a:fd:75:0a:fd:cd:fa:3b:dc:67:84:bc:5e:42:21:
fd:96:ef:7d:03:f9:1d:12:e9:bb:97:19:d5:3b:83:9e:3a:1c:
d6:e1:bb:f6:0d:da:17:be:85:64:80:d8:db:2b:ae:fa:5d:77:
cf:b5:fa:94:a3:01:f0:47:73:2a:cd:ac:98:a9:ed:91:e3:2c:
82:62:43:2e:df:80:99:fb:4d:9f:a2:0c:13:74:00:70:dc:60:
45:36:59:3f:85:43:99:42:79:2a:d6:94:cd:74:3f:c5:db:05:
ef:0c:d2:a6:5a:5f:d8:ca:e2:ae:16:17:62:fd:fb:a3:92:a1:
a9:bd:16:cd:fa:b8:14:90:20:5b:13:82:91:19:29:75:2f:eb:
f5:08:54:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:46:58 2025 by rpki-client