Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/a69a0d-e364-4436-873f-1c98b14628c9/1/R2nZyNWDJE7gXk6Aid50ZKF5qME.roa
File: R2nZyNWDJE7gXk6Aid50ZKF5qME.roa (raw, json)
Hash identifier: tEJSdToxLxSeiqz41BZ/NYdGZOrEur2pHyBVEEIQY3U=
Subject key identifier: 47:69:D9:C8:D5:83:24:4E:E0:5E:4E:80:89:DE:74:64:A1:79:A8:C1
Certificate issuer: /CN=b8823c70dcee711536eee30c4c84def8c5a3c726
Certificate serial: 0105DAC9
Authority key identifier: B8:82:3C:70:DC:EE:71:15:36:EE:E3:0C:4C:84:DE:F8:C5:A3:C7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uII8cNzucRU27uMMTITe-MWjxyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/a69a0d-e364-4436-873f-1c98b14628c9/1/R2nZyNWDJE7gXk6Aid50ZKF5qME.roa
Signing time: Mon 07 Mar 2022 17:38:57 +0000
ROA not before: Mon 07 Mar 2022 17:38:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59253
IP address blocks: 146.19.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17160905 (0x105dac9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8823c70dcee711536eee30c4c84def8c5a3c726
Validity
Not Before: Mar 7 17:38:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4769d9c8d583244ee05e4e8089de7464a179a8c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:68:72:58:40:9a:de:e4:cc:77:1e:ec:ae:d0:
8c:41:25:28:e7:80:7a:1e:45:81:1f:da:29:59:20:
31:ba:3e:62:ab:63:60:01:11:00:80:e9:f0:45:7f:
80:45:c5:21:15:61:d2:5d:9a:bb:8a:be:ee:be:c5:
2f:a6:cd:83:d1:2b:e2:91:fd:1a:10:b9:35:72:13:
86:e1:e4:8f:5d:49:25:78:0e:14:0b:56:66:ad:bf:
01:0a:0a:59:9f:41:08:5a:e7:dd:82:00:f2:8a:e4:
ab:af:26:c3:c6:47:ea:2e:00:1a:fb:92:d3:a0:77:
3b:4f:70:d7:d8:85:35:79:7c:b3:49:c5:3a:28:2d:
86:23:16:05:76:7e:5c:31:0b:63:d9:1a:80:d5:02:
e2:d4:96:e6:e3:66:27:4b:00:dc:c1:4a:b4:2f:4e:
97:ba:4c:d7:d8:90:f9:7d:3a:6a:99:21:a6:ea:d0:
5a:88:6e:09:88:03:32:83:23:63:dd:80:27:5c:7d:
cf:00:ad:00:78:37:3c:31:41:f8:02:55:ca:1f:7a:
d6:2a:64:d3:a4:d6:13:fb:d0:6b:cf:78:6d:be:be:
c2:2c:85:81:82:0a:58:60:f5:bc:d7:50:d3:a8:8a:
f5:92:79:78:0b:c9:fe:b4:24:d6:ff:fd:8c:10:15:
b7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:D9:C8:D5:83:24:4E:E0:5E:4E:80:89:DE:74:64:A1:79:A8:C1
X509v3 Authority Key Identifier:
keyid:B8:82:3C:70:DC:EE:71:15:36:EE:E3:0C:4C:84:DE:F8:C5:A3:C7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uII8cNzucRU27uMMTITe-MWjxyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a69a0d-e364-4436-873f-1c98b14628c9/1/R2nZyNWDJE7gXk6Aid50ZKF5qME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/a69a0d-e364-4436-873f-1c98b14628c9/1/uII8cNzucRU27uMMTITe-MWjxyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.69.0/24
Signature Algorithm: sha256WithRSAEncryption
07:69:11:1e:b9:62:cf:4d:ce:e4:42:79:9d:00:9b:e7:3f:78:
b0:ec:86:b5:96:f0:5c:2a:8a:ad:76:c3:55:d3:d6:ad:57:ea:
bf:ef:6d:5b:77:88:ed:90:b0:40:8b:8e:2c:94:63:16:8c:ec:
08:e4:e0:c2:7a:78:a5:d4:7b:46:7c:2a:de:22:f4:cd:a3:ce:
97:58:92:7f:03:0c:ec:ad:96:76:75:03:66:df:12:f0:0b:38:
9b:1f:c0:6f:e7:1e:cc:f4:99:2b:70:1d:1b:30:30:e6:1b:84:
74:0d:04:d9:a3:19:e3:f4:b2:68:7d:4e:68:37:7e:62:f2:b7:
55:3b:18:2d:3f:83:b2:54:91:54:09:d1:d2:2a:de:04:e3:76:
83:ec:20:5b:e3:53:20:44:d7:56:6a:71:a2:36:a7:f8:51:e7:
fb:01:24:71:f2:68:a5:1f:af:52:f7:d5:8c:b6:df:8f:11:7a:
6a:9d:eb:76:95:33:b9:ac:16:34:65:83:5f:d6:cb:a7:fe:f9:
ef:4e:45:54:b4:1c:d5:d9:45:3e:e8:31:9b:f9:71:39:40:e4:
9a:31:64:46:40:a6:60:76:65:78:8d:f3:b1:aa:19:0d:c8:13:
f4:dd:32:85:44:33:11:d0:a6:68:7a:92:e8:2f:70:9d:9a:1f:
a4:78:6c:f6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAQXayTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ODgyM2M3MGRjZWU3MTE1MzZlZWUzMGM0Yzg0ZGVmOGM1YTNjNzI2MB4XDTIyMDMw
NzE3Mzg1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDc2OWQ5YzhkNTgz
MjQ0ZWUwNWU0ZTgwODlkZTc0NjRhMTc5YThjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOpoclhAmt7kzHce7K7QjEElKOeAeh5FgR/aKVkgMbo+Yqtj
YAERAIDp8EV/gEXFIRVh0l2au4q+7r7FL6bNg9Er4pH9GhC5NXIThuHkj11JJXgO
FAtWZq2/AQoKWZ9BCFrn3YIA8orkq68mw8ZH6i4AGvuS06B3O09w19iFNXl8s0nF
OigthiMWBXZ+XDELY9kagNUC4tSW5uNmJ0sA3MFKtC9Ol7pM19iQ+X06apkhpurQ
WohuCYgDMoMjY92AJ1x9zwCtAHg3PDFB+AJVyh961ipk06TWE/vQa894bb6+wiyF
gYIKWGD1vNdQ06iK9ZJ5eAvJ/rQk1v/9jBAVtzECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHadnI1YMkTuBeToCJ3nRkoXmowTAfBgNVHSMEGDAWgBS4gjxw3O5xFTbu
4wxMhN74xaPHJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VJSThjTnp1Y1JVMjd1TU1USVRlLU1Xanh5WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWMvYTY5YTBkLWUzNjQtNDQzNi04NzNmLTFjOThiMTQ2MjhjOS8x
L1Iyblp5TldESkU3Z1hrNkFpZDUwWktGNXFNRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMv
YTY5YTBkLWUzNjQtNDQzNi04NzNmLTFjOThiMTQ2MjhjOS8xL3VJSThjTnp1Y1JV
Mjd1TU1USVRlLU1Xanh5WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJITRTANBgkqhkiG9w0BAQsFAAOC
AQEAB2kRHrliz03O5EJ5nQCb5z94sOyGtZbwXCqKrXbDVdPWrVfqv+9tW3eI7ZCw
QIuOLJRjFozsCOTgwnp4pdR7Rnwq3iL0zaPOl1iSfwMM7K2WdnUDZt8S8As4mx/A
b+cezPSZK3AdGzAw5huEdA0E2aMZ4/SyaH1OaDd+YvK3VTsYLT+DslSRVAnR0ire
BON2g+wgW+NTIETXVmpxojan+FHn+wEkcfJopR+vUvfVjLbfjxF6ap3rdpUzuawW
NGWDX9bLp/75705FVLQc1dlFPugxm/lxOUDkmjFkRkCmYHZleI3zsaoZDcgT9N0y
hUQzEdCmaHqS6C9wnZofpHhs9g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:50 2024 by rpki-client on console-fra.rpki-client.org