Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/8a734a-5bef-420d-acfc-c08f52fa4dbd/1/eko2eGWLSWFRQVB1GCQE_5ozQgs.roa
File: eko2eGWLSWFRQVB1GCQE_5ozQgs.roa (raw, json)
Hash identifier: lXSJ9sPTByfMQJXpgt0oXP++HJM1a2PHbhyx5PqoudU=
Subject key identifier: 7A:4A:36:78:65:8B:49:61:51:41:50:75:18:24:04:FF:9A:33:42:0B
Certificate issuer: /CN=1dde9c926cb3a7b8861eaac70140a549f1f41610
Certificate serial: 018571277B00D8468C9F8EF2AB8AC019BA17
Authority key identifier: 1D:DE:9C:92:6C:B3:A7:B8:86:1E:AA:C7:01:40:A5:49:F1:F4:16:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd6ckmyzp7iGHqrHAUClSfH0FhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/8a734a-5bef-420d-acfc-c08f52fa4dbd/1/eko2eGWLSWFRQVB1GCQE_5ozQgs.roa
Signing time: Mon 02 Jan 2023 06:24:50 +0000
ROA not before: Mon 02 Jan 2023 06:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59253
IP address blocks: 146.19.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:7b:00:d8:46:8c:9f:8e:f2:ab:8a:c0:19:ba:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde9c926cb3a7b8861eaac70140a549f1f41610
Validity
Not Before: Jan 2 06:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a4a3678658b496151415075182404ff9a33420b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0f:db:a0:f0:23:2a:52:97:6b:9a:d0:8a:25:
1b:74:3e:95:9e:75:0e:c7:9b:87:d1:c0:2c:8a:fb:
b7:27:47:8e:90:58:6a:47:ac:44:5a:f9:4a:81:6c:
e1:bc:75:44:e6:e1:fd:d4:c5:fc:6a:d6:c2:a0:d1:
fd:49:bc:ac:97:55:39:23:4b:ef:78:b8:c0:7d:f0:
b1:c8:0f:e2:c3:0c:db:fe:fc:c0:a0:5f:2f:53:8f:
92:cf:09:b4:30:da:a6:06:06:b9:73:10:ee:ff:56:
9c:9c:a9:62:57:ef:e9:73:93:a6:42:8b:0d:34:bd:
32:65:4c:d2:30:07:f5:9f:1f:a8:f6:ac:d7:37:b2:
4a:83:e6:1d:e4:40:ff:ec:cd:c3:93:79:92:84:6b:
09:ff:dd:77:48:92:c3:25:2a:7b:59:85:3f:bb:f9:
af:9e:1e:6b:75:73:68:f9:88:a6:01:9c:ac:ea:eb:
60:49:fc:47:e1:84:44:50:3c:74:f6:6b:a3:95:07:
c3:7a:39:ed:c7:38:e3:c4:ba:48:d4:91:d8:e6:50:
9d:fb:cc:00:e4:03:e1:4c:a1:6b:ca:71:1b:75:47:
5b:8c:70:60:18:36:58:07:71:dc:7f:08:1d:f2:9e:
f9:c7:b6:5d:c1:78:c9:4b:e4:d6:37:ce:90:53:81:
f0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4A:36:78:65:8B:49:61:51:41:50:75:18:24:04:FF:9A:33:42:0B
X509v3 Authority Key Identifier:
keyid:1D:DE:9C:92:6C:B3:A7:B8:86:1E:AA:C7:01:40:A5:49:F1:F4:16:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd6ckmyzp7iGHqrHAUClSfH0FhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/8a734a-5bef-420d-acfc-c08f52fa4dbd/1/eko2eGWLSWFRQVB1GCQE_5ozQgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/8a734a-5bef-420d-acfc-c08f52fa4dbd/1/Hd6ckmyzp7iGHqrHAUClSfH0FhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.40.0/24
Signature Algorithm: sha256WithRSAEncryption
50:89:f2:7f:5f:70:a3:e0:ff:8d:23:1c:49:a6:e5:76:53:57:
ee:3a:64:ba:a8:d7:12:1b:92:b3:b3:f6:08:05:09:22:ae:ff:
c1:6c:88:b3:1d:96:89:67:46:29:46:0e:0d:0b:35:85:ee:04:
51:f6:dd:11:94:10:30:08:c4:c1:3e:65:35:dc:5c:fa:0f:e2:
4a:dd:98:9f:8f:14:ba:e9:8a:6b:cd:e2:78:91:cb:55:4a:0f:
af:0f:bf:2f:5b:db:6b:a4:c2:db:a5:0d:a2:1a:ee:ed:d4:99:
ed:6d:bc:04:87:8c:8b:9e:4b:d2:8c:91:bc:cf:72:db:88:5b:
60:92:cc:4b:45:a3:fb:1b:88:83:55:fd:0a:30:70:0d:9d:29:
bc:b7:c4:cb:29:b7:b5:39:ab:3d:cb:a8:de:03:78:0d:3f:5b:
30:32:6c:a5:9a:92:d5:18:6f:cf:e6:35:b5:e8:24:21:cf:2c:
cc:0f:70:da:98:cb:e5:8e:b0:ef:3e:e8:3c:45:3a:8b:47:d7:
ac:f6:fa:e8:1c:db:31:d1:d0:c9:21:6b:20:8c:02:fc:f8:9a:
a7:53:f3:ad:93:ca:57:5c:8a:5e:cc:ba:91:5a:0c:6c:1e:1c:
6a:b2:3a:4c:cf:54:b1:d5:81:42:c9:02:cd:53:fa:68:7b:2d:
d9:b1:b6:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:35 2025 by rpki-client