Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/6b5a8a-40c0-4c86-ae43-c47a89056848/1/apqEl7Kh0d-zVsN3fYP3sqICTaw.roa
File: apqEl7Kh0d-zVsN3fYP3sqICTaw.roa (raw, json)
Hash identifier: OlB5NfdwodQTZaC1/nocpwtT8pm0akPMn/B/THaKb5g=
Subject key identifier: 6A:9A:84:97:B2:A1:D1:DF:B3:56:C3:77:7D:83:F7:B2:A2:02:4D:AC
Certificate issuer: /CN=85f59c1b250779146be46f7dd8d275ab2d08a2a1
Certificate serial: 01856FF9569C11CF6D74A225539CD98CE7DB
Authority key identifier: 85:F5:9C:1B:25:07:79:14:6B:E4:6F:7D:D8:D2:75:AB:2D:08:A2:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfWcGyUHeRRr5G992NJ1qy0IoqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/6b5a8a-40c0-4c86-ae43-c47a89056848/1/apqEl7Kh0d-zVsN3fYP3sqICTaw.roa
Signing time: Mon 02 Jan 2023 00:54:49 +0000
ROA not before: Mon 02 Jan 2023 00:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 146.19.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:56:9c:11:cf:6d:74:a2:25:53:9c:d9:8c:e7:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85f59c1b250779146be46f7dd8d275ab2d08a2a1
Validity
Not Before: Jan 2 00:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a9a8497b2a1d1dfb356c3777d83f7b2a2024dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1e:76:17:7c:56:e4:1b:3c:d1:2c:80:98:55:
bc:b6:b1:06:3e:9e:66:e4:11:50:d1:b5:99:6c:fa:
24:52:8b:23:ee:91:4f:b2:c4:54:fb:65:96:b8:e7:
5e:c9:3a:e6:6f:54:90:73:1d:ea:0a:90:95:76:78:
fe:6d:9d:59:37:7e:e7:bb:3a:59:5f:4c:db:5e:34:
9f:56:c4:5d:4e:e5:00:e3:08:3c:92:ba:4e:6f:27:
e2:11:1e:7f:53:3c:76:47:05:64:ed:7c:0c:39:9c:
0d:ad:f7:bf:50:25:b5:99:64:6c:51:9f:68:a9:fd:
34:37:11:ea:f3:17:26:c2:9a:2c:ab:b7:29:a0:3c:
df:91:d5:4b:ea:7e:05:3a:a3:ee:dd:50:97:20:b0:
28:4b:48:80:d9:14:cf:ab:2e:b8:56:c1:70:00:bf:
21:cc:67:05:17:a7:4f:66:43:53:e3:69:91:74:aa:
0f:ec:16:a4:34:bb:94:53:db:6f:a9:e9:e5:ee:ee:
25:b5:4e:ad:4a:00:6a:98:0c:b3:a3:e6:86:87:7c:
39:db:8e:ae:d3:0a:dc:3e:3b:b7:e4:fd:d5:37:26:
a9:1d:ec:04:15:b9:54:c2:36:2b:f9:4e:80:31:65:
24:a9:40:eb:3a:11:b4:e4:6d:6d:f1:9b:81:f0:65:
59:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:9A:84:97:B2:A1:D1:DF:B3:56:C3:77:7D:83:F7:B2:A2:02:4D:AC
X509v3 Authority Key Identifier:
keyid:85:F5:9C:1B:25:07:79:14:6B:E4:6F:7D:D8:D2:75:AB:2D:08:A2:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfWcGyUHeRRr5G992NJ1qy0IoqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/6b5a8a-40c0-4c86-ae43-c47a89056848/1/apqEl7Kh0d-zVsN3fYP3sqICTaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/6b5a8a-40c0-4c86-ae43-c47a89056848/1/hfWcGyUHeRRr5G992NJ1qy0IoqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.72.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:07:7f:20:10:f2:17:72:cd:26:b0:07:d4:b5:9d:bb:11:2f:
a4:4d:e4:c6:c8:9e:19:96:c7:83:c1:c6:df:6f:08:b7:7c:03:
9e:f6:14:f8:40:1d:8e:cd:ae:b2:87:7d:8e:83:19:e1:37:3c:
f6:f4:0d:4f:6f:fc:5d:30:70:58:21:a7:6b:8f:85:b0:34:98:
a6:02:c0:dc:19:bd:fa:40:bf:6b:f8:40:08:0d:e2:c9:1d:c9:
cd:de:25:d8:f3:37:49:4b:20:c4:ad:95:e7:a9:7d:22:fe:9f:
04:e2:cb:c8:47:8d:05:70:43:a2:02:9e:f8:53:6e:78:fb:a9:
4b:01:3c:8f:7f:f6:b9:ac:a7:5b:90:67:7a:5f:0a:ab:a5:3b:
e6:ac:a5:f1:2f:29:b9:a6:ad:67:15:14:b6:f6:17:e4:f4:6e:
59:51:c7:ad:8f:a5:51:cf:71:73:6a:46:9c:51:7b:e5:6d:0f:
60:19:30:1d:d2:c6:7a:08:5f:e2:79:29:c7:11:a1:10:aa:50:
01:2b:c9:b7:d5:bc:50:47:88:ad:87:2e:f2:ef:d2:03:36:aa:
62:95:56:4c:6d:97:6e:14:cd:ea:95:af:23:f9:02:95:5f:0d:
ec:17:3b:7b:3d:cb:04:30:00:47:d1:1a:6a:b1:9c:aa:7f:3f:
20:b4:67:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:55 2024 by rpki-client on console-ams.rpki-client.org