Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/29j5cnojQza-n-Zx9_jbhvi6qck.roa
File: 29j5cnojQza-n-Zx9_jbhvi6qck.roa (raw, json)
Hash identifier: Jhk98DmfTfr+H8e2WRuR5bGSmbMxJLtjQh9JtxT3430=
Subject key identifier: DB:D8:F9:72:7A:23:43:36:BE:9F:E6:71:F7:F8:DB:86:F8:BA:A9:C9
Certificate issuer: /CN=5581fb1e3b59d5c644d26f90aa82f70ad2a1c0c8
Certificate serial: 01856B81119DA597895DC605F36666A4A6C8
Authority key identifier: 55:81:FB:1E:3B:59:D5:C6:44:D2:6F:90:AA:82:F7:0A:D2:A1:C0:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYH7HjtZ1cZE0m-QqoL3CtKhwMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/29j5cnojQza-n-Zx9_jbhvi6qck.roa
Signing time: Sun 01 Jan 2023 04:04:58 +0000
ROA not before: Sun 01 Jan 2023 04:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49392
IP address blocks: 146.19.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:81:11:9d:a5:97:89:5d:c6:05:f3:66:66:a4:a6:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5581fb1e3b59d5c644d26f90aa82f70ad2a1c0c8
Validity
Not Before: Jan 1 04:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbd8f9727a234336be9fe671f7f8db86f8baa9c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d4:dd:f3:64:8a:3c:23:0c:4e:5c:0e:a1:e5:
96:82:91:91:a4:32:39:6f:9c:47:0f:17:67:2f:9b:
8e:67:0d:a4:c9:8b:a6:0d:da:02:9c:39:b5:db:93:
af:98:72:52:1c:43:4b:dc:8b:a6:a2:a8:42:b2:1e:
2b:6b:4c:7f:2e:77:80:86:a8:ef:13:01:03:b1:9a:
60:a4:62:74:3f:d6:d2:39:ce:27:58:6b:2d:52:1e:
7e:42:9a:64:59:2d:47:57:b5:11:0b:0c:97:75:e8:
0f:54:83:f3:40:6d:72:b0:5b:cc:a9:d0:9f:cd:1d:
f5:07:a6:67:a9:30:8d:92:3e:b6:e0:5d:19:c7:82:
ae:99:9e:7d:c7:44:b2:08:96:49:d9:de:41:f0:10:
c5:ee:dd:76:3a:a9:ff:1c:80:59:93:04:07:8d:e9:
bc:c3:7c:4e:57:65:f4:96:4a:2f:e1:42:15:36:58:
74:ec:8f:ae:c2:0b:db:bf:a2:2e:7c:00:bf:3b:fa:
01:b0:bc:a2:b1:fc:3c:d9:ad:19:fc:2d:ad:c7:ac:
53:9d:35:52:64:07:e8:0b:d4:00:b4:c5:3a:86:2d:
d7:36:b1:9f:78:13:5a:5f:81:00:0c:ec:d7:0a:9a:
51:ed:52:c5:2e:c5:88:4e:fd:9b:a9:ca:da:6c:7f:
bd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:D8:F9:72:7A:23:43:36:BE:9F:E6:71:F7:F8:DB:86:F8:BA:A9:C9
X509v3 Authority Key Identifier:
keyid:55:81:FB:1E:3B:59:D5:C6:44:D2:6F:90:AA:82:F7:0A:D2:A1:C0:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYH7HjtZ1cZE0m-QqoL3CtKhwMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/29j5cnojQza-n-Zx9_jbhvi6qck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/VYH7HjtZ1cZE0m-QqoL3CtKhwMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.23.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:ba:97:9e:1c:4b:9f:5e:e3:02:54:50:fd:72:9e:57:42:6d:
49:15:81:6b:1c:5f:87:9d:c3:38:50:3d:a8:40:5c:9f:86:37:
6a:f0:c7:ae:b0:84:87:68:7f:2d:f6:74:2a:f9:f8:fc:e2:e5:
c5:d0:46:98:99:de:27:6b:8d:e5:06:6b:e4:3d:a7:c1:09:c9:
27:37:0c:0a:c5:3d:96:e9:ef:ab:b4:89:2b:72:9f:75:10:40:
93:1c:29:58:1e:52:7d:2f:dc:c3:0f:77:ac:d3:0a:85:e7:21:
87:01:3d:f4:8a:bb:5f:6c:34:88:73:4d:69:4a:c2:55:b9:7e:
7a:4d:21:c5:68:1c:16:a1:63:c1:ec:dd:c8:db:b0:5e:31:4d:
92:24:a5:0b:11:8d:b5:dc:71:c3:8e:7a:e9:03:a7:3e:ed:9d:
27:11:88:32:19:77:2a:b4:95:14:e1:2e:51:ea:90:99:66:06:
f2:c2:8a:ea:e4:42:9c:61:2d:10:62:0d:02:20:7d:cc:62:5f:
52:db:87:35:88:ed:a0:70:ea:16:83:8d:52:e9:e9:2b:08:1a:
a8:98:72:b0:e5:79:6e:38:5f:29:fe:59:f1:e4:6e:15:53:01:
8b:b4:8e:34:e7:be:0e:40:54:cf:f9:b7:61:6d:fe:d7:ab:1b:
dc:b4:a1:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:50 2023 by rpki-client on console-fra.rpki-client.org