Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/_2NtQ_dWQOJuIlarmODl0JjpL0k.roa
File: _2NtQ_dWQOJuIlarmODl0JjpL0k.roa (raw, json)
Hash identifier: 4hNBT6Mfsrp9Xwpi+frnzJ2MkT6WDzFmTcmK5Du8690=
Subject key identifier: FF:63:6D:43:F7:56:40:E2:6E:22:56:AB:98:E0:E5:D0:98:E9:2F:49
Certificate issuer: /CN=5581fb1e3b59d5c644d26f90aa82f70ad2a1c0c8
Certificate serial: 021D15FD
Authority key identifier: 55:81:FB:1E:3B:59:D5:C6:44:D2:6F:90:AA:82:F7:0A:D2:A1:C0:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VYH7HjtZ1cZE0m-QqoL3CtKhwMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/_2NtQ_dWQOJuIlarmODl0JjpL0k.roa
Signing time: Sun 03 Jul 2022 08:22:25 +0000
ROA not before: Sun 03 Jul 2022 08:22:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 146.19.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35460605 (0x21d15fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5581fb1e3b59d5c644d26f90aa82f70ad2a1c0c8
Validity
Not Before: Jul 3 08:22:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff636d43f75640e26e2256ab98e0e5d098e92f49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:be:fa:1f:27:03:aa:10:3a:42:3b:dc:1b:0d:
a7:8b:a7:fe:ba:02:7d:25:62:99:ae:ce:67:be:db:
b2:4d:fd:5c:f8:6b:69:95:78:3d:a9:3f:fe:c6:1b:
ed:95:94:8e:48:32:89:0d:ab:13:8f:49:d7:86:57:
12:9f:b7:fb:86:ff:e6:1b:be:84:c5:33:22:7f:13:
f7:3e:b1:a1:e1:eb:d8:13:39:63:02:a5:a1:fb:a5:
5f:aa:2f:90:a2:f6:a9:6b:c5:9a:55:92:c4:0a:e2:
78:8d:61:05:4e:da:7f:c7:bf:68:9c:4b:8b:ec:dd:
53:c2:51:10:99:dd:a6:0c:41:1a:40:9d:e6:9b:13:
22:8e:6d:5c:2e:40:5d:d6:5d:55:b2:70:6c:14:b1:
ab:ca:8b:2b:e3:2c:55:47:87:91:43:bc:ca:c1:c9:
a4:7f:ef:20:6d:df:ae:05:b4:73:9c:b3:b7:20:a9:
90:80:77:15:bb:c2:01:18:39:18:b7:fa:6e:c8:41:
b8:10:60:cd:ba:88:c7:44:d0:6a:6c:0d:0d:fc:96:
eb:be:cb:46:3f:f5:30:2f:7b:44:b2:03:55:fc:59:
1c:b2:dc:db:96:8d:25:17:f6:31:84:a7:73:ed:a1:
e4:10:dd:3b:bc:1b:82:2e:b4:02:63:74:b2:20:dd:
71:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:63:6D:43:F7:56:40:E2:6E:22:56:AB:98:E0:E5:D0:98:E9:2F:49
X509v3 Authority Key Identifier:
keyid:55:81:FB:1E:3B:59:D5:C6:44:D2:6F:90:AA:82:F7:0A:D2:A1:C0:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VYH7HjtZ1cZE0m-QqoL3CtKhwMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/_2NtQ_dWQOJuIlarmODl0JjpL0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/86722e-4c08-47b6-8405-7612f857085d/1/VYH7HjtZ1cZE0m-QqoL3CtKhwMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.23.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:87:24:c2:a3:b6:59:9e:b2:fe:22:07:3c:52:47:f4:13:dd:
bc:c9:80:64:3e:fc:bb:5f:c6:16:b4:ab:87:0c:a9:21:e9:df:
d9:83:2b:68:6f:65:49:be:dc:4d:ae:aa:87:90:ac:0b:aa:bc:
2d:78:84:5a:36:cb:7a:d2:6b:12:d5:91:18:d1:94:21:19:db:
16:a4:37:c5:41:8a:21:fd:a1:46:5f:00:72:a8:af:2a:a5:78:
37:a3:c2:fb:f3:57:8e:9a:17:0d:01:0b:6e:0b:e5:b2:4d:0a:
a2:db:b3:45:67:fe:24:0d:4b:60:df:c4:17:d5:95:80:c6:0e:
68:fc:5c:f8:5a:3c:ee:c7:1c:88:a7:6a:df:e0:32:12:31:59:
31:01:bb:3e:87:ec:a8:8b:bf:f6:d1:cf:16:ea:7d:a9:3b:4a:
28:fb:50:a6:f5:56:e0:da:a7:89:6f:75:d8:7d:b3:5a:72:1a:
cb:fb:75:ee:b8:ec:6e:c9:92:09:35:88:fb:06:0a:64:8c:0d:
5c:0e:4a:a8:73:bb:16:da:71:e0:64:8e:aa:88:46:ca:cd:65:
21:22:64:96:9c:b3:be:1d:44:33:17:ef:32:a1:bb:09:71:9f:
cd:98:05:82:e5:38:f8:7e:08:91:95:d7:03:de:09:0d:b1:7a:
8e:36:f7:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:13 2024 by rpki-client on console-ams.rpki-client.org