Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/f4fc94-9904-4f6f-a472-4a6ab0cdb319/1/jXVHxByqxzSXCOSPP7iwX-oipXI.roa
File: jXVHxByqxzSXCOSPP7iwX-oipXI.roa (raw, json)
Hash identifier: R2dE6vPI5Hqtal1/V121rrS0HDnAkUQaPV5pbzx9bHU=
Subject key identifier: 8D:75:47:C4:1C:AA:C7:34:97:08:E4:8F:3F:B8:B0:5F:EA:22:A5:72
Certificate issuer: /CN=77c6131b2d979f957eb1ed1dbcbee3c5df288c78
Certificate serial: 01857321FE8199A0012CB734367A819A8DAB
Authority key identifier: 77:C6:13:1B:2D:97:9F:95:7E:B1:ED:1D:BC:BE:E3:C5:DF:28:8C:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8YTGy2Xn5V-se0dvL7jxd8ojHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/f4fc94-9904-4f6f-a472-4a6ab0cdb319/1/jXVHxByqxzSXCOSPP7iwX-oipXI.roa
Signing time: Mon 02 Jan 2023 15:38:05 +0000
ROA not before: Mon 02 Jan 2023 15:38:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 146.19.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:fe:81:99:a0:01:2c:b7:34:36:7a:81:9a:8d:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c6131b2d979f957eb1ed1dbcbee3c5df288c78
Validity
Not Before: Jan 2 15:38:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d7547c41caac7349708e48f3fb8b05fea22a572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0f:08:cb:56:ce:42:3e:40:76:5d:dd:5d:f0:
3c:5f:c0:bd:a6:be:94:ca:1d:fb:bb:18:1f:2d:b6:
0f:e4:65:d0:8e:d6:30:02:e9:cc:a8:e4:1c:3b:3c:
70:f9:75:04:75:fe:9d:fa:46:8f:06:00:72:e4:a1:
62:41:a7:13:51:29:dd:3f:83:ce:db:3d:e8:f6:9d:
9b:74:92:6d:9a:1f:d6:36:d4:a4:11:34:ab:f0:a8:
0f:e2:89:fe:a1:29:1e:b4:9f:d8:dd:70:1e:0c:5f:
99:55:e5:0c:90:1d:46:5b:32:a9:42:14:dd:07:80:
18:df:bb:8c:99:df:fd:08:d3:93:a5:56:5b:7a:21:
8b:28:b0:db:b4:a5:36:e0:20:d7:77:b7:00:3a:a0:
d3:8c:ad:be:f6:3a:ce:f6:40:2a:3d:fb:ff:ec:0c:
a6:31:a2:98:dc:ad:ca:cc:64:82:f5:45:d4:2e:5d:
60:65:99:cf:fc:82:bf:5c:00:e4:55:30:7e:06:ea:
cd:65:ae:2b:f1:8d:4e:eb:2c:07:b8:64:3b:92:08:
84:99:34:43:d3:a8:4f:6f:7e:13:47:4a:9d:ea:8a:
ef:2b:84:0e:a4:95:c8:de:d5:80:39:d1:a9:b4:d3:
94:62:55:d5:23:90:c8:16:05:55:2e:dc:ef:05:7d:
e9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:75:47:C4:1C:AA:C7:34:97:08:E4:8F:3F:B8:B0:5F:EA:22:A5:72
X509v3 Authority Key Identifier:
keyid:77:C6:13:1B:2D:97:9F:95:7E:B1:ED:1D:BC:BE:E3:C5:DF:28:8C:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8YTGy2Xn5V-se0dvL7jxd8ojHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f4fc94-9904-4f6f-a472-4a6ab0cdb319/1/jXVHxByqxzSXCOSPP7iwX-oipXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f4fc94-9904-4f6f-a472-4a6ab0cdb319/1/d8YTGy2Xn5V-se0dvL7jxd8ojHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.121.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:7a:13:64:69:3e:58:f1:76:6f:9f:4a:8d:4a:e1:8b:1f:e4:
bf:87:7b:77:02:e6:19:4b:d2:b4:7d:d2:e8:96:c8:86:f3:18:
6f:e6:08:33:2f:65:8a:82:d6:5d:51:44:54:b6:68:6c:cc:e8:
29:22:b1:df:20:28:11:a1:7f:31:6a:f5:01:e6:7a:03:d4:e4:
8c:17:e6:e9:09:f0:d4:ad:96:19:c0:1a:d7:df:14:8d:9c:13:
15:8f:28:d8:77:da:e4:fb:c1:34:75:f0:14:34:5a:1d:78:2f:
cd:d1:d1:3c:1b:d3:f9:b6:18:37:76:6f:17:05:de:20:6d:29:
f5:25:6c:12:bf:53:d9:71:97:6e:4e:85:51:09:86:e4:9e:ad:
e5:e6:1d:22:7f:00:f8:74:1a:ac:4c:08:47:26:e1:29:38:68:
f7:3c:2b:e0:08:67:d3:9b:e8:9b:70:83:54:d2:57:c9:f5:bf:
14:a4:3c:94:96:9f:cb:ae:ce:44:dc:70:71:dc:86:a4:0f:87:
58:ee:4e:b7:60:09:5c:a0:0f:f7:2d:08:a8:1a:ec:2c:fe:a2:
57:fd:05:a6:db:5f:4c:4f:9c:76:01:24:81:c1:f1:15:9d:59:
12:6e:88:f7:92:7a:31:57:82:dc:e2:3d:bf:a7:97:d3:dd:ff:
70:e4:e7:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:26 2024 by rpki-client on console-fra.rpki-client.org