Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/ca687e-5ff3-41ee-8cfc-7dac5fa0f07d/1/uQ_pD0b_JlBlqiL0RDVAenppiWA.roa
File: uQ_pD0b_JlBlqiL0RDVAenppiWA.roa (raw, json)
Hash identifier: gU43uieVu9FlIoK4s5FZsxUsNL+4BD5fetywasvFw9s=
Subject key identifier: B9:0F:E9:0F:46:FF:26:50:65:AA:22:F4:44:35:40:7A:7A:69:89:60
Certificate issuer: /CN=4099e4ac63c4c12a21624819cbf78638b86d42f3
Certificate serial: 4618
Authority key identifier: 40:99:E4:AC:63:C4:C1:2A:21:62:48:19:CB:F7:86:38:B8:6D:42:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJnkrGPEwSohYkgZy_eGOLhtQvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/ca687e-5ff3-41ee-8cfc-7dac5fa0f07d/1/uQ_pD0b_JlBlqiL0RDVAenppiWA.roa
Signing time: Sun 17 Apr 2022 12:38:36 +0000
ROA not before: Sun 17 Apr 2022 12:38:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8849
IP address blocks: 146.19.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17944 (0x4618)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4099e4ac63c4c12a21624819cbf78638b86d42f3
Validity
Not Before: Apr 17 12:38:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b90fe90f46ff265065aa22f44435407a7a698960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:20:f3:4b:18:d7:43:fb:93:52:d0:6f:8f:da:
3c:88:1d:1f:a7:fe:09:65:62:72:2a:17:eb:6c:0b:
36:48:03:58:5c:a3:da:62:a2:53:70:5c:de:2d:0a:
fb:8d:a5:de:79:07:6e:27:0d:47:61:96:5c:45:21:
dc:7e:cc:1d:c8:3d:eb:18:56:ea:aa:6f:d7:f7:46:
35:b1:6d:2e:4b:51:30:59:6f:64:a8:40:e7:58:ce:
da:6f:d3:be:e0:8f:7b:c9:31:9c:42:57:9c:3f:0c:
3b:a6:07:86:79:8b:61:d7:4a:3c:fe:20:94:03:c4:
b5:3f:45:19:45:58:b7:c0:47:7e:d6:1b:bc:d3:37:
f5:d0:47:fa:bf:cc:36:73:c7:9d:a8:1f:c4:95:99:
6d:b3:a5:9c:bc:30:24:76:83:2d:f5:d1:9f:4d:50:
77:c0:69:fc:96:db:60:22:46:0c:70:00:20:5e:ab:
96:68:42:41:46:f7:2b:e1:75:b7:af:12:be:0e:83:
f7:85:9d:1b:cc:1c:37:e0:3a:c8:1b:a8:00:32:37:
96:46:be:68:7a:06:b4:ed:f8:63:96:36:aa:fd:b8:
7e:67:ce:46:8b:aa:df:74:e2:0d:8c:73:ca:1a:59:
30:25:21:1d:01:1c:f3:a0:6e:4b:fc:16:c3:2b:f0:
08:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0F:E9:0F:46:FF:26:50:65:AA:22:F4:44:35:40:7A:7A:69:89:60
X509v3 Authority Key Identifier:
keyid:40:99:E4:AC:63:C4:C1:2A:21:62:48:19:CB:F7:86:38:B8:6D:42:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJnkrGPEwSohYkgZy_eGOLhtQvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/ca687e-5ff3-41ee-8cfc-7dac5fa0f07d/1/uQ_pD0b_JlBlqiL0RDVAenppiWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/ca687e-5ff3-41ee-8cfc-7dac5fa0f07d/1/QJnkrGPEwSohYkgZy_eGOLhtQvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.196.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:6e:7a:7b:e9:2d:c0:b4:0f:ec:77:4d:d0:39:96:38:25:31:
09:c5:54:d2:b8:39:ea:87:f4:c8:cf:44:c0:f2:8e:ea:e4:95:
48:b4:4b:16:aa:26:1a:4f:0e:ed:ed:45:2c:aa:ce:db:a8:57:
ad:ef:ee:58:8c:49:53:e9:0c:56:38:02:6d:85:b8:30:8b:8a:
4e:c0:5d:b0:f8:82:45:35:46:71:ea:db:71:fa:6f:00:e3:a4:
79:3b:9b:bb:bd:aa:62:96:2f:46:18:7c:19:b4:90:b9:f2:5d:
dc:29:4d:6e:21:07:b3:43:db:e6:e7:fc:43:90:2f:8c:e0:2f:
8d:82:ee:9f:5e:b4:bc:22:48:cb:3c:e4:3e:32:d0:5e:37:9a:
14:d1:40:bc:d0:6b:f7:32:6e:51:ce:ee:62:1b:6e:4c:9f:ad:
05:20:5d:73:75:a6:dc:30:71:66:d7:1d:a4:d0:af:59:85:0c:
9f:8b:3e:e7:9c:f8:12:ec:bf:d7:72:0b:9d:bb:a1:7e:6f:fa:
54:eb:21:f6:c8:7c:01:13:a5:96:ce:78:c3:ea:0a:d3:6b:f7:
a8:b5:54:24:02:38:a8:05:7d:7f:df:c7:78:1b:b2:78:59:56:
5d:21:9a:b7:47:72:0b:a6:dd:89:3a:6f:bb:64:75:ec:ee:ec:
57:3c:ac:d7
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICRhgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA5
OWU0YWM2M2M0YzEyYTIxNjI0ODE5Y2JmNzg2MzhiODZkNDJmMzAeFw0yMjA0MTcx
MjM4MzZaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGI5MGZlOTBmNDZmZjI2
NTA2NWFhMjJmNDQ0MzU0MDdhN2E2OTg5NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCIPNLGNdD+5NS0G+P2jyIHR+n/gllYnIqF+tsCzZIA1hco9pi
olNwXN4tCvuNpd55B24nDUdhllxFIdx+zB3IPesYVuqqb9f3RjWxbS5LUTBZb2So
QOdYztpv077gj3vJMZxCV5w/DDumB4Z5i2HXSjz+IJQDxLU/RRlFWLfAR37WG7zT
N/XQR/q/zDZzx52oH8SVmW2zpZy8MCR2gy310Z9NUHfAafyW22AiRgxwACBeq5Zo
QkFG9yvhdbevEr4Og/eFnRvMHDfgOsgbqAAyN5ZGvmh6BrTt+GOWNqr9uH5nzkaL
qt904g2Mc8oaWTAlIR0BHPOgbkv8FsMr8AgZAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUuQ/pD0b/JlBlqiL0RDVAenppiWAwHwYDVR0jBBgwFoAUQJnkrGPEwSohYkgZ
y/eGOLhtQvMwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9R
Sm5rckdQRXdTb2hZa2daeV9lR09MaHRRdk0uY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxULzlhL2NhNjg3ZS01ZmYzLTQxZWUtOGNmYy03ZGFjNWZhMGYwN2QvMS91
UV9wRDBiX0psQmxxaUwwUkRWQWVucHBpV0Eucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzlhL2Nh
Njg3ZS01ZmYzLTQxZWUtOGNmYy03ZGFjNWZhMGYwN2QvMS9RSm5rckdQRXdTb2hZ
a2daeV9lR09MaHRRdk0uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACSE8QwDQYJKoZIhvcNAQELBQADggEB
ABxuenvpLcC0D+x3TdA5ljglMQnFVNK4OeqH9MjPRMDyjurklUi0SxaqJhpPDu3t
RSyqztuoV63v7liMSVPpDFY4Am2FuDCLik7AXbD4gkU1RnHq23H6bwDjpHk7m7u9
qmKWL0YYfBm0kLnyXdwpTW4hB7ND2+bn/EOQL4zgL42C7p9etLwiSMs85D4y0F43
mhTRQLzQa/cyblHO7mIbbkyfrQUgXXN1ptwwcWbXHaTQr1mFDJ+LPuec+BLsv9dy
C527oX5v+lTrIfbIfAETpZbOeMPqCtNr96i1VCQCOKgFfX/fx3gbsnhZVl0hmrdH
cgum3Yk6b7tkdezu7Fc8rNc=
-----END CERTIFICATE-----
Generated at Thu Apr 17 22:27:41 2025 by rpki-client