Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/1e9c33-69a3-4b65-8a23-52d951e18eeb/1/QJBUZ7pm1FLozrX7eH1BXSGGPV4.roa
File: QJBUZ7pm1FLozrX7eH1BXSGGPV4.roa (raw, json)
Hash identifier: aytBc/bONwWWJHoBEUDmB46eZhsb/j2/G1llql5+PQg=
Subject key identifier: 40:90:54:67:BA:66:D4:52:E8:CE:B5:FB:78:7D:41:5D:21:86:3D:5E
Certificate issuer: /CN=471aab0a7ed2d37e5473501614347a8580e0ed5b
Certificate serial: 0188208676DAC9FA98A1C5A52F2EAFD26928
Authority key identifier: 47:1A:AB:0A:7E:D2:D3:7E:54:73:50:16:14:34:7A:85:80:E0:ED:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RxqrCn7S035Uc1AWFDR6hYDg7Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/1e9c33-69a3-4b65-8a23-52d951e18eeb/1/QJBUZ7pm1FLozrX7eH1BXSGGPV4.roa
Signing time: Mon 15 May 2023 17:47:43 +0000
ROA not before: Mon 15 May 2023 17:47:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 146.19.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:76:da:c9:fa:98:a1:c5:a5:2f:2e:af:d2:69:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=471aab0a7ed2d37e5473501614347a8580e0ed5b
Validity
Not Before: May 15 17:47:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40905467ba66d452e8ceb5fb787d415d21863d5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f8:f7:2a:ab:a6:c6:62:59:6f:90:92:0f:c0:
95:51:56:c9:10:a8:5b:30:5b:7f:07:ab:7a:dd:7d:
42:a0:82:1d:7a:94:bb:dc:56:b6:cd:2b:50:1c:4c:
d9:61:da:5e:32:a1:c7:c7:5d:6d:74:7e:e4:e3:ee:
74:3c:f5:b4:ca:ce:85:d2:f9:e1:8d:27:48:27:7f:
21:75:b4:e9:89:10:f1:4d:16:2e:e2:d9:68:4f:0b:
f7:69:b4:b8:c1:98:c7:56:ca:3f:de:45:99:8a:47:
32:c9:aa:ce:91:20:7e:9b:f7:0f:ed:b1:a2:90:1a:
f2:fa:dd:4b:e2:89:7f:30:e1:18:ad:81:9f:13:4b:
17:73:91:33:0e:a8:1f:44:96:e3:96:39:c7:7e:de:
31:79:f8:1e:5a:15:b8:98:eb:61:e3:e3:db:7b:5e:
96:0a:a9:5c:4e:3e:6e:f1:21:7a:83:24:b3:09:4d:
2a:b6:11:47:90:b4:f5:73:f4:db:0b:85:7f:4a:7d:
85:95:00:99:f2:cc:ad:f3:0c:51:d0:d0:1d:94:45:
8d:e7:fe:15:71:26:5d:f1:9f:3f:e6:08:e3:2f:5c:
79:72:12:92:1f:7f:37:77:1f:8f:90:cd:9b:9a:6a:
56:05:37:6a:6c:7f:d0:2b:f1:1c:c0:a3:fa:23:87:
6c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:90:54:67:BA:66:D4:52:E8:CE:B5:FB:78:7D:41:5D:21:86:3D:5E
X509v3 Authority Key Identifier:
keyid:47:1A:AB:0A:7E:D2:D3:7E:54:73:50:16:14:34:7A:85:80:E0:ED:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RxqrCn7S035Uc1AWFDR6hYDg7Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1e9c33-69a3-4b65-8a23-52d951e18eeb/1/QJBUZ7pm1FLozrX7eH1BXSGGPV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1e9c33-69a3-4b65-8a23-52d951e18eeb/1/RxqrCn7S035Uc1AWFDR6hYDg7Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.36.0/24
Signature Algorithm: sha256WithRSAEncryption
23:01:77:18:2f:fe:c7:5f:d4:3e:64:72:4c:b3:35:53:7b:bf:
14:3d:fd:3c:09:08:d0:b3:5d:c4:00:57:f6:3b:d4:d0:4e:15:
04:44:89:9f:4f:c8:29:92:ce:e1:ce:13:8c:b9:ff:eb:0f:18:
22:fa:a4:1f:8e:12:25:1d:d7:d8:44:25:46:2e:e2:0e:ae:51:
99:3c:ca:a9:ef:84:08:c0:85:5b:ba:db:26:c6:2a:30:2e:2d:
99:2e:6b:6b:6f:4d:6d:6c:65:85:4d:d1:d6:56:6a:96:60:ac:
49:bf:dc:1d:21:f1:0e:a9:65:44:ed:25:b0:40:47:34:62:dd:
fd:3c:9e:07:4b:45:68:c0:19:a0:db:3f:6f:b1:40:75:02:84:
7a:b5:c9:de:99:9f:0f:3b:57:2c:f1:05:d3:35:59:9c:06:76:
11:ed:68:4c:1c:db:96:cb:83:c1:b6:2e:2d:fb:f4:58:38:9b:
8b:78:75:fd:a7:51:9d:9f:91:c9:1e:2f:17:b5:33:05:de:5f:
37:d8:c0:5c:89:bf:39:7a:27:66:18:1e:64:29:ae:5f:a5:0d:
f1:82:ab:4b:b3:9b:fb:37:a1:21:43:a7:e7:3d:13:37:fd:86:
c7:96:e9:db:cb:9e:48:fe:04:56:cf:2d:a9:d8:da:71:65:2c:
fd:e4:8d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:16 2024 by rpki-client on console-ams.rpki-client.org