Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/oFfKv28f1Iriab6BFRFZTCfzkeM.roa
File: oFfKv28f1Iriab6BFRFZTCfzkeM.roa (raw, json)
Hash identifier: utY4Ybwaofuv5BgK99k5rYaY3nhOQRsu/gBiTPJbRb4=
Subject key identifier: A0:57:CA:BF:6F:1F:D4:8A:E2:69:BE:81:15:11:59:4C:27:F3:91:E3
Certificate issuer: /CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Certificate serial: 01882347D221D91C532B3BCCF4B1CC3D4FF1
Authority key identifier: 02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/oFfKv28f1Iriab6BFRFZTCfzkeM.roa
Signing time: Tue 16 May 2023 06:38:09 +0000
ROA not before: Tue 16 May 2023 06:38:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:47:d2:21:d9:1c:53:2b:3b:cc:f4:b1:cc:3d:4f:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02edfcfb335c9d76888d81b73ecd8a40bafecffc
Validity
Not Before: May 16 06:38:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a057cabf6f1fd48ae269be811511594c27f391e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e9:59:25:12:f1:b2:be:19:a7:93:90:a9:6a:
a4:b1:2f:94:96:46:56:c8:e9:c1:be:b0:25:e3:32:
fa:cf:8f:34:d8:d9:f2:26:23:95:bb:f0:79:27:fd:
5c:7a:c7:ce:4a:d9:f8:46:72:fe:2a:94:c4:35:cf:
3c:6e:b9:ad:31:16:dd:96:5c:e1:a0:b6:14:70:79:
1a:91:8e:fc:18:60:99:28:90:56:0e:28:c7:67:93:
31:ed:58:56:9b:1c:94:56:a5:f4:c4:51:64:be:79:
d3:9b:42:d2:51:37:ba:35:88:51:36:c5:e8:f7:da:
6b:1a:bd:78:5a:df:1a:b6:5a:a2:af:99:b2:1d:8a:
38:c1:c1:18:97:27:fb:33:f4:e9:73:79:70:31:cf:
3c:cc:ff:3c:f4:93:62:e4:8d:11:9f:f5:d1:e8:df:
6f:82:83:0b:7c:f1:48:b3:48:ac:91:28:ab:3a:67:
0c:0f:36:5f:75:26:c6:9e:89:b4:f9:0b:d5:91:b2:
80:2a:86:c3:25:52:a4:08:cc:dc:d1:70:12:10:85:
25:dd:d4:37:ab:0b:a1:64:71:e8:ad:6f:53:26:91:
18:56:ac:5d:44:27:96:a4:15:6f:b9:c2:b3:15:86:
66:2f:17:97:ff:09:a7:b6:32:64:35:84:23:25:d6:
54:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:57:CA:BF:6F:1F:D4:8A:E2:69:BE:81:15:11:59:4C:27:F3:91:E3
X509v3 Authority Key Identifier:
keyid:02:ED:FC:FB:33:5C:9D:76:88:8D:81:B7:3E:CD:8A:40:BA:FE:CF:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Au38-zNcnXaIjYG3Ps2KQLr-z_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/oFfKv28f1Iriab6BFRFZTCfzkeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/7de221-e3be-456d-91f4-b14b7cf70d2f/1/Au38-zNcnXaIjYG3Ps2KQLr-z_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.204.0/24
Signature Algorithm: sha256WithRSAEncryption
76:67:fe:50:bb:fa:87:3e:63:bd:6c:37:1d:8d:d1:13:6a:3f:
91:30:3a:f1:b6:31:51:e1:e3:d9:05:68:72:56:98:64:54:35:
95:d3:9a:20:30:75:44:6b:29:9e:a2:cd:3b:22:7c:f8:b8:f5:
8d:78:06:ea:ea:8c:a2:0b:14:b9:2c:44:6b:23:f5:bb:e7:26:
9f:a6:f7:10:5b:ef:0a:3e:2d:d0:07:26:9c:78:2c:a2:5e:4f:
89:a9:69:6f:ec:2f:36:42:bb:d9:de:b4:93:9c:ea:ce:84:f9:
5b:81:3f:de:f4:b1:60:50:f2:5d:a0:ad:18:11:f8:25:86:40:
83:9f:41:30:77:35:c4:87:3a:e6:55:32:32:72:b0:3a:b8:db:
4c:a7:01:76:dc:9e:d2:04:03:34:82:d0:ac:b2:34:f7:c5:a8:
ae:b7:21:d4:a8:ae:74:6f:01:44:24:af:20:5a:3c:e5:d8:d0:
a3:83:0c:08:43:c8:0d:be:a8:79:ca:20:7c:ce:ec:01:ef:b0:
40:42:e1:26:e4:d6:9d:72:6d:f0:c1:8f:2f:e8:3a:d2:ec:77:
e8:53:1a:59:1f:bc:3f:92:ae:5c:7b:ed:d6:c9:ba:00:bc:9b:
1e:f5:2e:b1:5d:8a:3d:2a:ef:5b:64:53:73:52:b7:5a:f9:29:
fb:48:11:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:31:54 2025 by rpki-client