Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/INKQy8bUHBuEwpnENOtaWYN1Z14.roa
File: INKQy8bUHBuEwpnENOtaWYN1Z14.roa (raw, json)
Hash identifier: Lb703TXdER7jgLH9AS0b6S0Bj87kKBV1hEUGOF0zPpw=
Subject key identifier: 20:D2:90:CB:C6:D4:1C:1B:84:C2:99:C4:34:EB:5A:59:83:75:67:5E
Certificate issuer: /CN=5581fb1e3b59d5c644d26f90aa82f70ad2a1c0c8
Certificate serial: 0147CFA3
Authority key identifier: 55:81:FB:1E:3B:59:D5:C6:44:D2:6F:90:AA:82:F7:0A:D2:A1:C0:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYH7HjtZ1cZE0m-QqoL3CtKhwMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/INKQy8bUHBuEwpnENOtaWYN1Z14.roa
Signing time: Tue 29 Mar 2022 16:40:02 +0000
ROA not before: Tue 29 Mar 2022 16:40:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 146.19.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21483427 (0x147cfa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5581fb1e3b59d5c644d26f90aa82f70ad2a1c0c8
Validity
Not Before: Mar 29 16:40:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20d290cbc6d41c1b84c299c434eb5a598375675e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bc:c5:05:fe:cb:c3:cd:b5:e8:fe:ee:33:6a:
b2:5a:e1:14:ce:8b:d5:d7:cc:be:12:d4:0c:10:3a:
b1:8c:c2:69:24:7f:05:29:dc:a8:86:23:f0:1a:11:
bb:ca:6b:37:e6:21:cd:a4:6d:b3:a8:6c:e6:76:33:
ab:dc:28:56:e7:eb:a7:27:f4:02:0c:e0:a8:9b:bb:
2f:74:f7:3d:41:10:a6:17:34:f6:1d:84:d0:ae:93:
70:c5:a3:0e:d9:92:4a:f5:06:45:92:e8:ee:7c:59:
be:43:04:9a:1a:23:47:09:71:82:26:52:31:06:bb:
03:52:d9:56:ff:e3:e8:9b:fa:83:fb:1a:63:1c:5d:
4b:79:67:4c:b4:30:52:66:30:3c:e3:1f:ec:71:72:
42:e3:ef:98:e6:8e:1a:aa:92:cc:cb:ab:47:8c:f6:
e0:17:68:e6:fe:11:f8:c3:8b:af:13:ac:4e:6b:cc:
94:3e:ce:f5:70:52:fd:56:f7:41:a5:b5:82:02:2a:
6e:85:27:a5:bf:aa:df:50:f0:6b:c4:1e:00:cc:bb:
0c:73:9a:0a:df:60:bb:4d:ab:fa:2f:53:92:b9:cf:
30:98:85:56:e2:5d:40:f9:cb:81:71:9f:18:d8:a2:
10:8f:3a:6c:aa:3d:4b:3d:5a:ca:2a:53:e1:2b:91:
33:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D2:90:CB:C6:D4:1C:1B:84:C2:99:C4:34:EB:5A:59:83:75:67:5E
X509v3 Authority Key Identifier:
keyid:55:81:FB:1E:3B:59:D5:C6:44:D2:6F:90:AA:82:F7:0A:D2:A1:C0:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYH7HjtZ1cZE0m-QqoL3CtKhwMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/INKQy8bUHBuEwpnENOtaWYN1Z14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/VYH7HjtZ1cZE0m-QqoL3CtKhwMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.23.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:6a:6b:02:1c:00:59:51:e5:f7:41:61:3f:ec:dc:c5:4a:a7:
d2:af:c8:47:8c:c1:79:ce:ca:95:29:07:c6:82:ad:1f:46:68:
2c:0c:38:1b:f8:81:d1:e9:ba:b3:f2:7f:e0:b4:fc:50:f0:0d:
9b:71:79:fc:d9:57:84:c0:2b:e9:b9:d0:e8:16:76:54:47:72:
9c:ef:7e:69:81:45:2d:b8:dd:73:02:26:ea:4a:df:79:7f:e9:
83:a6:fd:fc:16:a0:4a:3b:92:0f:38:02:e7:46:16:60:b5:5e:
ca:ef:e8:cb:33:ee:0e:46:fb:62:6b:fe:bc:05:f2:f2:d0:14:
a2:76:c1:d8:76:dc:df:6c:0d:1a:d0:80:10:46:7a:47:4a:fa:
90:52:fd:de:b1:23:0b:b5:09:6c:d9:4c:65:30:ad:68:19:c4:
59:4c:99:3b:96:99:a7:5e:aa:dc:5c:c1:34:4a:9b:a4:a4:fe:
39:9a:37:e9:1d:64:78:d3:42:27:a5:20:dd:70:ce:26:18:c2:
25:24:25:b5:61:ec:58:07:68:f6:39:32:eb:d3:c9:93:78:70:
99:b9:b2:0c:d8:3b:52:e9:fd:55:a6:f1:44:e4:ce:bd:f5:2b:
d4:f7:00:eb:88:4b:01:94:a4:0d:70:1b:de:65:8f:1e:3e:86:
f1:72:aa:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:26 2025 by rpki-client