Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/f922b3-fa15-4ce9-8fec-4cf0909be7f8/1/n3mq16F8vqcT4qeYtHFuehenhAw.roa
File: n3mq16F8vqcT4qeYtHFuehenhAw.roa (raw, json)
Hash identifier: U8M79AXA/++7BQf5kvN7hEbXWF4Rwj+db0L6gmmBWgE=
Subject key identifier: 9F:79:AA:D7:A1:7C:BE:A7:13:E2:A7:98:B4:71:6E:7A:17:A7:84:0C
Certificate issuer: /CN=5020fbd557c3e5894c32dd801f0efa483bd14d9a
Certificate serial: 01856E8209E30B596A18DF33480468135329
Authority key identifier: 50:20:FB:D5:57:C3:E5:89:4C:32:DD:80:1F:0E:FA:48:3B:D1:4D:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UCD71VfD5YlMMt2AHw76SDvRTZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/f922b3-fa15-4ce9-8fec-4cf0909be7f8/1/n3mq16F8vqcT4qeYtHFuehenhAw.roa
Signing time: Sun 01 Jan 2023 18:04:54 +0000
ROA not before: Sun 01 Jan 2023 18:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 146.19.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:82:09:e3:0b:59:6a:18:df:33:48:04:68:13:53:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5020fbd557c3e5894c32dd801f0efa483bd14d9a
Validity
Not Before: Jan 1 18:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f79aad7a17cbea713e2a798b4716e7a17a7840c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c2:68:d6:f5:2f:db:8a:cc:0a:f8:1a:b8:4b:
e9:10:b7:8f:1d:50:9c:a8:a3:55:75:15:a0:f3:d2:
16:42:f4:52:97:92:05:50:63:c0:83:b4:80:38:00:
39:49:37:7c:e7:24:a1:f6:3f:c7:4e:b1:f7:eb:77:
10:c9:ab:a6:95:df:f7:2b:e0:c4:85:eb:a0:91:cb:
c7:0c:09:81:de:d2:19:10:c5:75:29:3b:87:15:b7:
cd:63:46:47:5f:36:65:6d:5e:89:22:e4:6a:df:5f:
c1:6a:7d:d9:dc:27:f2:df:fb:9e:a6:cb:47:c7:ca:
8e:6b:00:cf:3a:cc:3c:88:60:86:9d:86:5f:2a:ff:
de:5f:be:7d:e4:63:b7:ad:06:b4:b0:28:54:bc:45:
66:8b:1e:22:0e:7f:7d:1e:75:da:78:c8:bd:b0:aa:
6f:33:18:e9:dc:30:31:30:78:12:e0:40:19:b7:9d:
71:6c:12:60:f9:a3:53:4d:e4:54:1e:dd:28:d2:d9:
e9:d4:ff:fd:9c:20:1d:74:2e:4f:94:a3:33:29:81:
cb:d2:6d:a0:55:6f:c6:27:49:fd:df:09:1f:37:1b:
d5:c4:14:60:14:b3:2a:5f:99:72:07:28:25:ed:81:
46:bb:e3:8c:17:66:21:f2:b7:20:21:c5:ff:1d:d7:
90:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:79:AA:D7:A1:7C:BE:A7:13:E2:A7:98:B4:71:6E:7A:17:A7:84:0C
X509v3 Authority Key Identifier:
keyid:50:20:FB:D5:57:C3:E5:89:4C:32:DD:80:1F:0E:FA:48:3B:D1:4D:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UCD71VfD5YlMMt2AHw76SDvRTZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f922b3-fa15-4ce9-8fec-4cf0909be7f8/1/n3mq16F8vqcT4qeYtHFuehenhAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/f922b3-fa15-4ce9-8fec-4cf0909be7f8/1/UCD71VfD5YlMMt2AHw76SDvRTZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.71.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:85:6e:53:7f:21:c9:28:e1:69:2f:54:a8:c9:a7:ca:53:87:
b6:02:43:c1:89:02:bb:f9:bf:16:a3:95:6a:2f:eb:0d:9e:7f:
ef:21:c0:e3:63:93:af:da:c8:89:be:59:6d:ef:1c:cc:bc:0c:
0b:e3:ac:53:03:23:66:00:02:43:e6:dc:aa:ce:77:d2:4d:78:
dc:2c:ae:c9:ab:52:63:86:0b:2b:c2:44:7d:a8:f6:ba:18:3e:
46:e5:c1:a5:75:2e:2e:0c:14:ee:69:2c:fb:d0:21:f5:4e:11:
45:da:b4:30:43:10:90:7f:bc:05:2f:29:43:5d:8c:64:41:8d:
30:f6:75:66:b4:ac:96:10:5b:ec:da:4d:43:df:a4:4b:65:83:
17:64:50:42:8b:ae:ad:43:60:da:b8:ac:20:23:9d:27:58:2a:
7b:9d:79:d6:32:93:12:d0:3e:7d:c9:1e:2a:1c:21:fe:4c:32:
57:8e:05:c7:ca:d8:a2:d5:eb:0e:be:0c:91:e5:3e:fc:8b:3e:
dd:93:a6:41:65:d5:81:b4:d3:19:22:a3:a9:72:67:e6:16:5b:
14:9c:2a:f4:6f:7a:05:cf:0d:05:df:4b:9f:a4:8d:05:0a:6a:
89:c0:dc:d5:bd:68:f7:07:a7:54:61:e6:c9:b3:c7:0b:bf:35:
74:aa:9d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:08 2024 by rpki-client on console-fra.rpki-client.org