Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/400f02-e52e-47f6-8280-f489287abcc4/1/QbI3HmJtChJ6fEW0o8rfkY1AdgE.roa
File: QbI3HmJtChJ6fEW0o8rfkY1AdgE.roa (raw, json)
Hash identifier: EHwfRJAQWqTnA//fnM6QK4c9ymuuh7kUNizQ5CnU5fs=
Subject key identifier: 41:B2:37:1E:62:6D:0A:12:7A:7C:45:B4:A3:CA:DF:91:8D:40:76:01
Certificate issuer: /CN=0fb2f4ea3bab0fb0e8892ee7f855d6452ea73300
Certificate serial: 018A1CD2A007E1CBE01F67CED23507C824EC
Authority key identifier: 0F:B2:F4:EA:3B:AB:0F:B0:E8:89:2E:E7:F8:55:D6:45:2E:A7:33:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D7L06jurD7DoiS7n-FXWRS6nMwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/400f02-e52e-47f6-8280-f489287abcc4/1/QbI3HmJtChJ6fEW0o8rfkY1AdgE.roa
Signing time: Tue 22 Aug 2023 10:37:59 +0000
ROA not before: Tue 22 Aug 2023 10:37:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 146.19.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:d2:a0:07:e1:cb:e0:1f:67:ce:d2:35:07:c8:24:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fb2f4ea3bab0fb0e8892ee7f855d6452ea73300
Validity
Not Before: Aug 22 10:37:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41b2371e626d0a127a7c45b4a3cadf918d407601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b3:bc:dd:33:1d:e6:0a:f2:a4:e6:68:6d:e3:
1e:b7:ba:65:15:89:5c:44:1a:95:65:56:0b:9c:8d:
33:41:fd:8f:90:7b:58:0f:ca:c7:63:a3:0e:4d:e9:
38:b5:18:89:8a:88:19:5a:21:cd:4a:7e:d4:69:e7:
b9:45:8a:31:24:23:ec:d0:f1:96:50:49:a0:7e:dc:
c3:6e:b3:68:71:ea:0d:45:18:95:fc:9a:84:fe:c5:
c1:be:a3:80:d5:0f:07:c5:3b:eb:33:7b:3b:f0:ee:
41:85:52:20:a4:78:a0:47:c8:64:59:12:60:4b:3d:
00:18:84:d9:26:52:18:6a:7e:41:0c:0c:6a:47:97:
84:f0:ec:f5:90:3e:27:45:f7:98:20:9d:2a:f3:66:
bd:6d:7d:47:82:80:36:d2:c1:d1:d9:27:fe:91:c6:
d3:63:71:c6:0c:8b:72:c6:7e:2c:e4:3b:65:e0:95:
23:e2:fa:b3:b9:4e:55:7b:90:e3:ca:17:13:7a:04:
f2:94:37:7d:6d:1e:3e:be:e7:f8:a1:4b:e4:75:ea:
28:7f:f2:06:68:dc:3f:d6:27:01:fc:3c:14:fd:05:
8c:4c:c5:9f:ad:11:ed:c6:37:92:0a:a2:d3:1d:06:
8f:c4:e4:ea:a8:6a:37:c6:58:54:8c:e4:1a:71:2f:
8c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B2:37:1E:62:6D:0A:12:7A:7C:45:B4:A3:CA:DF:91:8D:40:76:01
X509v3 Authority Key Identifier:
keyid:0F:B2:F4:EA:3B:AB:0F:B0:E8:89:2E:E7:F8:55:D6:45:2E:A7:33:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D7L06jurD7DoiS7n-FXWRS6nMwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/400f02-e52e-47f6-8280-f489287abcc4/1/QbI3HmJtChJ6fEW0o8rfkY1AdgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/400f02-e52e-47f6-8280-f489287abcc4/1/D7L06jurD7DoiS7n-FXWRS6nMwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.50.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:8d:a5:d1:6d:02:fb:bd:93:ab:15:df:ce:6d:86:3c:3c:28:
67:24:44:02:26:ee:f5:3c:e8:dd:73:8c:cb:dc:e0:9d:cc:4c:
b1:5f:23:1f:f1:5a:66:d6:30:a5:39:0c:95:8a:78:d3:2c:90:
69:a1:32:95:5d:28:b9:80:fa:3c:0e:40:d9:47:24:49:5d:2a:
60:56:07:60:1a:c9:1b:6d:9e:1e:5f:ce:a4:65:9e:0d:00:53:
c2:dc:92:da:e2:80:3e:c7:7e:b1:aa:b3:f0:f4:63:60:1f:cf:
f9:23:4f:8d:85:15:9b:53:1f:cc:ae:b7:0e:96:99:3b:7e:c1:
2c:6a:40:86:ec:68:a4:21:41:d6:fa:6a:6b:66:ba:2b:d6:c7:
ed:00:df:77:15:bf:1c:b7:e2:26:ce:f7:a4:d8:75:09:1a:ed:
40:6d:f6:c0:e0:16:32:6f:3f:86:10:d3:1d:90:8b:16:58:84:
c7:3d:02:86:8f:34:41:b5:5a:92:60:49:ce:68:f6:0d:b1:b8:
43:36:0a:73:c3:37:5d:1a:0f:25:0e:48:70:3c:dc:67:1f:0c:
cb:75:07:59:9c:d1:f2:b0:c1:06:91:12:7a:85:00:71:6e:b7:
80:8f:c2:e1:f7:a3:c4:89:f5:14:35:de:d3:fd:ea:bb:66:c7:
a9:ee:89:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 05:41:09 2025 by rpki-client