Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/8a734a-5bef-420d-acfc-c08f52fa4dbd/1/Z8Cc8I9a8tRy2CJey84e-CTt8Ww.roa
File: Z8Cc8I9a8tRy2CJey84e-CTt8Ww.roa (raw, json)
Hash identifier: 81WCBzyBbRGQxixdOhrAAxQOmDlogNQ3kFgGQ5mhVKQ=
Subject key identifier: 67:C0:9C:F0:8F:5A:F2:D4:72:D8:22:5E:CB:CE:1E:F8:24:ED:F1:6C
Certificate issuer: /CN=1dde9c926cb3a7b8861eaac70140a549f1f41610
Certificate serial: 749924
Authority key identifier: 1D:DE:9C:92:6C:B3:A7:B8:86:1E:AA:C7:01:40:A5:49:F1:F4:16:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd6ckmyzp7iGHqrHAUClSfH0FhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/8a734a-5bef-420d-acfc-c08f52fa4dbd/1/Z8Cc8I9a8tRy2CJey84e-CTt8Ww.roa
Signing time: Sat 01 Jan 2022 02:54:34 +0000
ROA not before: Sat 01 Jan 2022 02:54:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 146.19.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7641380 (0x749924)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde9c926cb3a7b8861eaac70140a549f1f41610
Validity
Not Before: Jan 1 02:54:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67c09cf08f5af2d472d8225ecbce1ef824edf16c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fe:07:d2:1d:72:4b:c8:f6:13:e9:6f:d4:7a:
5a:96:2d:e1:2e:db:d4:cc:f3:a0:59:83:e1:fb:ef:
08:88:22:9f:1a:90:4e:91:d1:ce:59:7d:33:b6:2c:
b1:cf:42:f5:57:3a:1e:34:c7:4b:57:fe:b3:27:a9:
89:26:42:5c:95:a5:76:97:36:44:8b:57:c5:e3:3a:
84:6f:d9:83:f9:5f:c5:1a:15:1b:28:39:12:c6:89:
2e:29:20:95:02:d2:d3:b1:10:00:c1:da:03:bc:2f:
9b:ac:61:b1:ee:85:b9:b5:98:4f:40:d9:06:40:6d:
a3:06:d9:a7:06:b9:a3:d5:62:32:f7:bc:6a:80:8d:
dc:1a:94:ea:ea:8f:43:83:2e:14:56:2c:5c:c3:0d:
f3:b0:b8:c7:00:e5:09:b6:32:95:bb:38:46:ba:5d:
da:3d:6e:4b:19:be:2a:2f:71:16:be:fc:b7:c1:9c:
7d:6a:a8:42:c9:51:5f:e1:d7:41:ff:43:c9:d0:07:
7c:8d:be:bd:74:e2:af:24:63:42:57:ea:e2:af:e1:
f1:48:b7:96:f6:1e:d9:c5:36:62:00:f9:a5:3c:f7:
84:3a:2d:47:b2:70:29:d4:45:81:21:0a:0a:3f:53:
f5:fb:43:24:b6:c6:bf:09:1d:bd:86:ae:28:b8:aa:
44:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C0:9C:F0:8F:5A:F2:D4:72:D8:22:5E:CB:CE:1E:F8:24:ED:F1:6C
X509v3 Authority Key Identifier:
keyid:1D:DE:9C:92:6C:B3:A7:B8:86:1E:AA:C7:01:40:A5:49:F1:F4:16:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd6ckmyzp7iGHqrHAUClSfH0FhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/8a734a-5bef-420d-acfc-c08f52fa4dbd/1/Z8Cc8I9a8tRy2CJey84e-CTt8Ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/8a734a-5bef-420d-acfc-c08f52fa4dbd/1/Hd6ckmyzp7iGHqrHAUClSfH0FhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.40.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:c9:5c:95:90:bf:84:e5:03:13:20:d1:67:68:24:99:00:f3:
86:e6:42:f6:11:18:25:69:9c:72:3b:39:96:83:44:82:46:ed:
ba:fb:dd:be:33:c0:17:9a:b8:0f:37:4a:a9:fe:05:54:5d:8a:
21:4f:0c:28:50:ff:78:e6:54:30:60:2e:86:32:cb:19:d4:35:
86:17:cb:ec:a2:73:55:21:5e:14:35:a6:9e:ea:64:c9:47:3d:
99:79:2d:56:41:3b:d3:da:6b:6e:66:72:6b:9d:e8:20:bf:3e:
c8:43:72:bc:f9:9d:6e:d2:02:80:ec:b4:67:2b:b3:c2:71:17:
2e:69:f4:3c:8e:14:e1:f4:20:61:38:ea:a0:52:f2:28:76:91:
96:ca:7b:58:d3:f4:6d:aa:7d:54:02:bb:a4:7a:1c:91:34:e7:
4a:fb:10:88:a2:60:96:ab:d5:6a:68:91:67:df:75:9b:f5:49:
cc:69:77:29:70:71:75:9d:9e:88:ab:7c:a7:c9:29:27:36:bf:
64:69:e9:c9:7a:c9:7f:95:7b:0b:9c:cb:73:6e:b6:4a:d2:cc:
25:56:60:58:c9:af:0b:e4:54:52:d2:1d:30:f5:26:0d:90:6d:
7c:21:64:e5:bc:9e:f0:cc:a7:a6:4e:5f:30:91:3a:f5:a0:41:
c3:d9:33:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:42:30 2025 by rpki-client