Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/ym1EWstCnFdCPe--ut4B5RuJxME.roa
File: ym1EWstCnFdCPe--ut4B5RuJxME.roa (raw, json)
Hash identifier: bAWllv8noyvKjTRFU+3NZp+cvDXn4xsVEGer6zP54+c=
Subject key identifier: CA:6D:44:5A:CB:42:9C:57:42:3D:EF:BE:BA:DE:01:E5:1B:89:C4:C1
Certificate issuer: /CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Certificate serial: 01881F78C8674B9516D46A879B94FADC2EB8
Authority key identifier: F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/ym1EWstCnFdCPe--ut4B5RuJxME.roa
Signing time: Mon 15 May 2023 12:53:09 +0000
ROA not before: Mon 15 May 2023 12:53:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:78:c8:67:4b:95:16:d4:6a:87:9b:94:fa:dc:2e:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f980c91ebf1096462a2b74469dc61cb4a3ac3d32
Validity
Not Before: May 15 12:53:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca6d445acb429c57423defbebade01e51b89c4c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ea:c7:aa:05:73:57:36:7b:8f:53:71:87:7e:
e2:c2:bf:6d:9c:c5:e8:08:11:64:04:d9:03:99:d6:
dd:df:80:8f:e9:b6:35:70:71:75:bb:ce:35:49:64:
1c:ea:43:ad:4c:30:f3:f2:f4:33:49:0e:2a:e6:44:
3b:0c:d1:08:11:09:fa:9e:b5:d0:7d:39:b6:3d:20:
3f:05:c4:ab:76:3d:b0:53:20:42:7c:b0:75:79:81:
0f:0d:6d:ef:ea:8d:5e:96:72:3f:b1:d9:49:8e:d2:
94:67:66:d5:d5:80:5f:8d:6c:41:fb:c7:d8:ea:10:
d6:c0:54:37:a1:a8:b0:c2:73:1f:b7:ee:05:f2:01:
29:39:51:ee:f3:19:a7:ff:4e:c5:58:68:2e:97:68:
65:f3:88:48:f8:3c:d0:8a:5b:ee:52:cc:47:1a:b8:
4d:ed:0c:2d:1e:2b:e1:ee:0a:ee:63:1c:1d:18:96:
ea:6c:c9:97:a6:8f:9c:df:1c:6f:c5:8e:dc:9c:3f:
ea:9f:79:39:73:a9:2d:bc:ab:8c:23:25:36:03:5a:
80:9e:2c:62:41:7d:ea:09:5a:45:ca:b8:77:ff:f1:
c4:26:08:77:87:b4:e2:5f:3f:83:ff:fe:07:3d:49:
89:1b:68:80:cc:a5:46:88:2e:6e:72:61:e9:f5:76:
76:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:6D:44:5A:CB:42:9C:57:42:3D:EF:BE:BA:DE:01:E5:1B:89:C4:C1
X509v3 Authority Key Identifier:
keyid:F9:80:C9:1E:BF:10:96:46:2A:2B:74:46:9D:C6:1C:B4:A3:AC:3D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-YDJHr8QlkYqK3RGncYctKOsPTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/ym1EWstCnFdCPe--ut4B5RuJxME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e0a8f4-864f-4cae-b4a8-a1e5ca179a75/1/1-YDJHr8QlkYqK3RGncYctKOsPTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.20.0/24
Signature Algorithm: sha256WithRSAEncryption
79:dd:fd:d5:a5:2b:6d:2e:e3:d3:2c:46:70:6d:77:ab:b3:26:
f0:42:e3:de:ec:4d:69:93:60:2e:76:ce:0e:46:8f:3f:bf:c2:
38:7f:6a:c9:e0:13:d2:da:28:cd:e4:cf:21:d3:24:dd:61:e5:
26:2b:27:17:3a:e7:cf:39:6d:34:1f:52:4b:2e:9b:32:a9:a8:
53:71:2c:fe:5d:7e:37:94:b7:1e:44:2e:12:49:52:0f:e8:f5:
2a:cb:c5:a8:fd:e3:e7:f9:e4:23:33:7d:ca:51:2b:8e:0d:55:
e1:36:ec:05:a5:fe:60:8c:ed:b2:2a:d5:8f:bd:b7:27:4f:54:
9e:0e:f4:bd:e5:4a:d5:df:46:32:75:0f:0a:1b:c3:dc:12:ea:
5b:44:dd:f6:0c:95:56:c4:a5:6f:f3:eb:d2:b9:38:cb:63:8d:
52:76:c9:d7:5e:3d:05:6c:3a:4f:7b:9d:a3:b0:d6:e2:02:ba:
82:57:82:04:cc:08:ea:ea:06:ae:fb:aa:75:fa:58:e2:ff:77:
65:09:96:ec:77:23:7b:53:ea:c6:b8:90:26:1a:63:10:ac:a8:
42:fb:fb:3c:66:e6:2b:f9:b5:c4:57:92:17:71:7f:a9:31:7c:
80:b5:d4:34:93:37:47:0d:76:8b:b2:eb:33:dc:90:e7:5a:39:
21:e9:4a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:53 2024 by rpki-client on console-fra.rpki-client.org