Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/kJNXIQQYt6aGTjA0X0A1odNN7P4.roa
File: kJNXIQQYt6aGTjA0X0A1odNN7P4.roa (raw, json)
Hash identifier: treZnRaa8PSx1UVUam1ATXYk21/uJpaGj3EZ3dvLsBU=
Subject key identifier: 90:93:57:21:04:18:B7:A6:86:4E:30:34:5F:40:35:A1:D3:4D:EC:FE
Certificate issuer: /CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Certificate serial: E5F697
Authority key identifier: F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/kJNXIQQYt6aGTjA0X0A1odNN7P4.roa
Signing time: Fri 18 Feb 2022 06:33:20 +0000
ROA not before: Fri 18 Feb 2022 06:33:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15070871 (0xe5f697)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Validity
Not Before: Feb 18 06:33:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=909357210418b7a6864e30345f4035a1d34decfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:dc:2f:48:1e:bc:e8:bf:4f:1e:89:3b:c1:c8:
ea:0c:2e:d7:bb:f0:89:9c:8b:35:f5:50:c8:63:30:
9f:7a:7f:77:40:9f:c2:f9:26:43:b7:61:3f:ed:08:
74:4d:48:fd:8b:f3:24:bc:e3:c0:fe:a6:a5:ad:07:
6e:5b:5f:c5:db:bf:6c:4c:65:2a:ec:a7:10:d6:fe:
52:5c:bd:75:17:49:e9:30:5f:45:c4:60:19:23:b6:
10:36:e8:b0:83:65:96:b9:e8:fc:d6:9d:31:ed:6f:
b3:89:4e:5c:69:0b:9e:aa:48:c3:b6:55:11:4c:9b:
d6:16:08:78:cd:4b:a6:3f:bb:85:57:9b:ef:1e:08:
c5:23:70:7a:f6:7e:17:eb:10:03:34:1f:d1:3b:eb:
4e:72:8d:39:d4:a8:02:d0:ba:d4:91:42:48:73:57:
06:ac:4d:b5:fa:71:24:f2:f9:a3:96:1e:45:e9:f5:
19:6b:da:6d:de:ff:b5:7f:51:43:a7:da:e4:4f:45:
8b:f2:0e:b8:7b:2a:e7:62:b9:ba:ae:0d:62:16:ce:
24:89:7f:16:e2:62:af:88:e9:f5:2f:30:63:b6:af:
b2:e2:d1:99:29:bb:d6:96:4c:02:d5:26:7b:c5:a3:
bb:05:71:87:9f:f0:8b:3c:34:d0:73:af:82:4d:bb:
7b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:93:57:21:04:18:B7:A6:86:4E:30:34:5F:40:35:A1:D3:4D:EC:FE
X509v3 Authority Key Identifier:
keyid:F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/kJNXIQQYt6aGTjA0X0A1odNN7P4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/1-YDJHr8QlkYqK3RGncYctKOsPTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:e4:91:2d:be:15:93:fd:14:69:4c:e4:6d:c9:fa:50:2f:5c:
e6:c1:e8:55:c0:25:64:fc:7c:ff:4f:16:7f:8d:86:a4:8a:e3:
14:ad:ee:6a:b3:58:29:4f:34:76:5e:f1:89:e1:75:f4:d7:b5:
14:e1:32:f7:2a:31:70:ce:31:2e:b9:cf:01:86:43:a8:e8:70:
29:9f:3e:bb:e4:af:1f:18:f6:4e:95:8c:58:af:d9:9a:99:4e:
d1:e2:7c:6d:4c:10:b9:72:c2:cc:25:c8:0a:19:33:04:9c:b7:
34:68:69:6b:87:3d:75:a2:79:1b:d6:ab:69:53:a9:dd:27:47:
d9:7a:dd:8e:74:ed:96:f6:5a:0b:da:83:b9:f3:42:b2:3a:06:
56:2f:81:b6:e1:45:fc:21:a1:2e:fe:0c:b5:00:09:1a:a7:15:
84:d2:3d:73:70:90:e8:33:ff:08:8e:f1:13:38:9b:80:f0:5b:
02:21:4f:2b:01:d8:66:58:32:27:c5:04:ba:34:a9:49:46:d1:
bc:e5:54:45:9e:0e:42:54:13:3d:5d:50:2a:4d:46:0a:7f:df:
f5:65:60:f7:d6:da:c9:d8:58:27:ff:33:cc:5a:c1:ea:9d:e9:
71:c3:f9:ae:77:bd:c3:3c:3e:8a:86:21:77:94:32:43:2f:c3:
68:af:15:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:44 2025 by rpki-client