Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/HSvlLBKbcrF06rQgLZq0OOaA9Pk.roa
File: HSvlLBKbcrF06rQgLZq0OOaA9Pk.roa (raw, json)
Hash identifier: xlipYBJtIJNLNa2qxagWTZA65SQSiogcuULygbQjeCg=
Subject key identifier: 1D:2B:E5:2C:12:9B:72:B1:74:EA:B4:20:2D:9A:B4:38:E6:80:F4:F9
Certificate issuer: /CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Certificate serial: 018AACF8A20C008CF8713AFEC67E7FBD7259
Authority key identifier: 02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/HSvlLBKbcrF06rQgLZq0OOaA9Pk.roa
Signing time: Tue 19 Sep 2023 10:24:50 +0000
ROA not before: Tue 19 Sep 2023 10:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 146.19.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:f8:a2:0c:00:8c:f8:71:3a:fe:c6:7e:7f:bd:72:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Validity
Not Before: Sep 19 10:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d2be52c129b72b174eab4202d9ab438e680f4f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8e:7e:01:ce:f6:7f:91:ba:ff:a6:2a:80:c6:
7f:66:76:1b:72:81:01:18:ae:d9:dc:f2:9b:61:5a:
dc:45:a3:50:bd:11:1d:d4:18:2e:81:d2:d4:03:cc:
86:b2:cf:eb:0b:89:89:26:4a:62:cc:50:53:cb:bb:
40:3d:af:c0:30:99:e5:a5:ba:b0:13:22:95:dc:40:
2c:60:a6:c5:76:59:23:39:c0:ac:19:d6:9c:47:1b:
76:27:52:27:c1:51:fe:37:ae:ac:ae:26:d7:bb:d8:
6e:c9:17:26:a5:a8:b8:41:7a:9a:9e:4e:09:83:53:
36:32:59:45:da:e5:ec:bf:d1:34:17:76:7c:e0:dc:
b0:c9:ba:73:db:d9:a3:71:a0:16:48:c5:80:f9:61:
b6:f7:f1:03:54:ea:bc:09:fb:3d:9b:49:4f:b0:c0:
43:6e:c8:40:18:7a:59:83:cd:07:fd:08:c8:9d:62:
f5:03:c3:d7:55:a5:2b:53:d6:b7:8d:da:6f:af:11:
cd:4e:46:c1:93:83:03:5b:98:35:c5:17:0a:62:99:
98:5b:10:5c:b4:aa:ed:d6:a4:0b:19:7f:d6:a0:26:
c6:09:a5:d7:ad:0e:8f:bd:1f:d0:94:e6:13:92:8b:
3c:04:ee:a0:8a:b8:30:83:98:73:96:0c:38:b1:e6:
82:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:2B:E5:2C:12:9B:72:B1:74:EA:B4:20:2D:9A:B4:38:E6:80:F4:F9
X509v3 Authority Key Identifier:
keyid:02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/HSvlLBKbcrF06rQgLZq0OOaA9Pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/Au38-zNcnXaIjYG3Ps2KQLr-z_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.204.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:17:2d:65:bd:fa:5f:df:14:d4:1b:3b:f7:65:fb:c7:db:33:
80:c1:e7:6c:e8:8e:0d:ba:6b:4a:75:9a:b5:97:75:6a:27:74:
04:e7:90:f6:52:d1:40:5f:5e:ac:52:07:a3:df:22:fc:ce:57:
cc:a6:b9:f0:a2:4b:b4:c8:32:f9:ad:4c:9c:4a:72:fb:ff:19:
96:e9:15:8e:78:a7:65:84:a4:1d:cc:5c:00:e7:4c:11:47:98:
b2:43:32:5d:f8:68:6b:38:18:72:91:07:42:fd:62:04:f3:bf:
1e:d0:df:c2:53:76:4c:84:9d:0c:25:cd:82:bd:05:dd:47:42:
31:d6:22:49:f7:ba:7b:81:ee:49:46:c5:32:88:8c:d6:58:e0:
75:19:1f:85:92:9c:4b:78:2e:5b:a5:90:bf:5d:df:e3:92:93:
46:1a:65:80:ed:ce:3a:3e:06:93:fb:a3:5b:7a:2a:c5:68:65:
fd:c5:ac:80:bd:27:3d:39:d5:9d:43:97:2b:9f:54:07:55:c2:
0d:47:a2:93:a3:d9:85:82:e4:48:40:54:4e:af:01:8e:f7:2d:
eb:d5:8c:43:d7:cf:38:71:e4:18:36:23:57:84:b5:27:ca:a3:
2f:a3:34:26:ea:b4:bc:d6:f7:9b:d0:d8:39:92:b5:c5:5f:53:
dc:c8:70:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 20 13:56:17 2023 by rpki-client on console-fra.rpki-client.org