Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e5aaac-cc8d-47c8-8072-277a8668d0cb/1/b4xsBFc1oorYtI6KxYfp675DlN0.roa
File: b4xsBFc1oorYtI6KxYfp675DlN0.roa (raw, json)
Hash identifier: uEuy0W+53oaOaAhEJ2gAp6SxwE1Tu0tJITpNNZ0lGcM=
Subject key identifier: 6F:8C:6C:04:57:35:A2:8A:D8:B4:8E:8A:C5:87:E9:EB:BE:43:94:DD
Certificate issuer: /CN=592d205af3b01bf84e01c022d1ee6a62533e17ba
Certificate serial: 7BD21C
Authority key identifier: 59:2D:20:5A:F3:B0:1B:F8:4E:01:C0:22:D1:EE:6A:62:53:3E:17:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WS0gWvOwG_hOAcAi0e5qYlM-F7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e5aaac-cc8d-47c8-8072-277a8668d0cb/1/b4xsBFc1oorYtI6KxYfp675DlN0.roa
Signing time: Sat 01 Jan 2022 03:52:37 +0000
ROA not before: Sat 01 Jan 2022 03:52:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 146.19.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8114716 (0x7bd21c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=592d205af3b01bf84e01c022d1ee6a62533e17ba
Validity
Not Before: Jan 1 03:52:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f8c6c045735a28ad8b48e8ac587e9ebbe4394dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:48:2a:06:c3:fa:2d:cc:da:c5:12:51:c8:56:
38:24:5f:2c:c4:99:e4:57:74:3a:9f:ab:f6:a4:4d:
59:6b:98:75:a5:61:41:49:30:43:f5:8c:77:6b:bb:
d9:77:4c:d5:21:8b:29:ec:73:8b:8a:fa:91:77:1f:
08:95:a5:11:ae:1e:54:12:9d:a9:d3:45:64:18:1c:
b7:6a:3a:15:5f:e8:ca:85:df:98:35:0c:d3:65:a6:
a3:24:9d:ef:2b:35:d1:b8:5f:72:01:a8:44:97:0f:
73:be:d8:60:12:e0:cf:36:67:30:72:ae:7a:03:6a:
8a:5d:18:91:e8:69:7f:49:5e:aa:4b:d5:aa:cd:10:
c0:aa:fe:6a:6b:1e:17:49:2a:fd:af:c5:22:0f:a6:
13:d9:f0:1c:2e:94:23:78:aa:e5:c2:c6:ca:ae:5e:
57:0d:01:c2:8f:67:96:de:c0:99:db:ef:ec:6f:de:
45:aa:68:1e:34:31:b5:e1:ec:22:3a:de:80:d9:46:
c4:51:37:16:c5:10:41:ed:a0:1c:91:8b:e1:35:af:
80:6b:23:9e:21:5b:13:31:9d:26:69:23:b1:bc:63:
78:3a:b8:a5:37:19:58:6a:12:92:a5:98:63:e5:e7:
a4:ea:58:65:93:89:a9:83:87:0c:ed:c9:25:43:e2:
94:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:8C:6C:04:57:35:A2:8A:D8:B4:8E:8A:C5:87:E9:EB:BE:43:94:DD
X509v3 Authority Key Identifier:
keyid:59:2D:20:5A:F3:B0:1B:F8:4E:01:C0:22:D1:EE:6A:62:53:3E:17:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WS0gWvOwG_hOAcAi0e5qYlM-F7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e5aaac-cc8d-47c8-8072-277a8668d0cb/1/b4xsBFc1oorYtI6KxYfp675DlN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e5aaac-cc8d-47c8-8072-277a8668d0cb/1/WS0gWvOwG_hOAcAi0e5qYlM-F7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
45:ac:0d:58:e8:e8:df:42:34:b5:74:0a:04:8e:54:47:bb:b9:
c8:1b:81:b7:76:0b:5b:8f:ff:65:bb:ff:09:48:1d:cb:09:b2:
ad:c8:a3:47:f6:8d:5d:0b:d7:ea:9c:9e:21:84:44:79:9b:e6:
80:0e:6b:15:b2:41:a9:18:b0:9b:fe:06:4f:b8:00:ee:1a:17:
70:c9:50:42:ff:c3:21:23:fb:59:f8:09:5b:64:5b:d2:3c:99:
e8:b3:e7:8f:88:0c:c5:31:1b:d8:4e:cb:e4:08:c8:fa:8e:df:
52:43:8a:ee:48:ce:0b:5c:12:14:78:65:f4:e8:8e:0b:45:d0:
c1:7a:e3:9b:01:8d:49:23:4c:35:47:f4:4a:f7:df:f4:73:1c:
47:20:a2:5c:75:02:a8:8d:be:f2:5d:e3:0c:e4:69:23:60:08:
ac:1b:a6:43:63:e1:f4:79:87:b9:06:43:d8:4a:1a:c7:df:75:
af:0f:72:4f:f5:14:ba:16:00:c4:8e:92:23:f5:4b:45:b5:16:
5a:e8:9e:61:f8:0f:5c:ce:25:56:84:5c:1d:7e:50:ca:2d:b7:
dd:4d:e7:65:31:70:9c:3f:71:58:f6:fc:10:13:ae:b8:4e:f4:
d0:d2:79:c8:5a:f5:42:48:03:09:53:ca:1d:09:65:e7:8f:dc:
05:c9:f2:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:50:53 2025 by rpki-client