Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/00gIioz7665DJRnwfpZUK5zb33E.roa
File: 00gIioz7665DJRnwfpZUK5zb33E.roa (raw, json)
Hash identifier: pVvF7g4BgMgLzmN5x3SvUD2gurDsdRAILHMUBZrsHfU=
Subject key identifier: D3:48:08:8A:8C:FB:EB:AE:43:25:19:F0:7E:96:54:2B:9C:DB:DF:71
Certificate issuer: /CN=ca3b7a01d7db4025c98b490b3956fa9e46e1f362
Certificate serial: 01869C2C2A21AFCF9E7928F02CC77D5DBD85
Authority key identifier: CA:3B:7A:01:D7:DB:40:25:C9:8B:49:0B:39:56:FA:9E:46:E1:F3:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjt6AdfbQCXJi0kLOVb6nkbh82I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/00gIioz7665DJRnwfpZUK5zb33E.roa
Signing time: Wed 01 Mar 2023 07:56:25 +0000
ROA not before: Wed 01 Mar 2023 07:56:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1
IP address blocks: 146.19.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:2c:2a:21:af:cf:9e:79:28:f0:2c:c7:7d:5d:bd:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b7a01d7db4025c98b490b3956fa9e46e1f362
Validity
Not Before: Mar 1 07:56:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d348088a8cfbebae432519f07e96542b9cdbdf71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:04:f4:d4:50:8d:ab:ff:be:1e:0f:5a:4f:91:
31:ad:cd:bc:a6:c6:21:a0:ac:12:f5:62:e0:4c:cf:
ae:de:f9:26:e5:18:6a:2b:2c:64:e4:bc:7e:92:6b:
ef:4d:6d:f7:c0:7d:38:56:18:e0:06:03:c6:48:a2:
d6:73:cf:e0:dd:b2:7b:fd:15:0c:b3:db:f9:20:0c:
ff:ba:7a:7d:c6:09:9c:43:1e:15:25:eb:9d:bf:31:
a5:06:4d:3f:42:22:b0:31:3c:6c:ab:3a:c4:49:38:
73:8c:b2:e3:a3:df:7e:94:a4:05:bb:f2:32:5b:29:
88:49:6d:79:d4:21:08:6d:c5:7e:aa:5f:50:56:6e:
bd:b3:59:d7:c4:fb:2e:dc:ff:d5:53:f3:46:17:9f:
80:cc:08:8e:2b:61:6c:e3:a8:0b:60:75:6b:e2:9c:
55:7d:b3:18:b1:bc:fd:1d:3e:f1:4b:c0:38:5c:69:
5d:89:83:71:79:f7:e5:6f:8a:d9:dc:05:b1:a3:ae:
68:f4:0a:19:ea:de:e0:f0:1b:90:1f:28:9e:b2:b4:
73:54:89:da:99:f4:a9:49:77:27:32:83:09:35:7b:
0e:e7:c7:f6:58:86:86:4f:c6:62:f3:5d:e8:2d:78:
91:01:8f:46:75:c5:20:98:69:15:ce:98:b7:c3:65:
73:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:48:08:8A:8C:FB:EB:AE:43:25:19:F0:7E:96:54:2B:9C:DB:DF:71
X509v3 Authority Key Identifier:
keyid:CA:3B:7A:01:D7:DB:40:25:C9:8B:49:0B:39:56:FA:9E:46:E1:F3:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjt6AdfbQCXJi0kLOVb6nkbh82I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/00gIioz7665DJRnwfpZUK5zb33E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/yjt6AdfbQCXJi0kLOVb6nkbh82I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.29.0/24
Signature Algorithm: sha256WithRSAEncryption
58:ee:91:c4:9e:84:1a:b0:94:d1:64:d5:a3:16:d4:3e:84:88:
da:30:9f:c3:fe:27:65:dd:60:4f:5c:ef:bf:ac:71:cd:20:14:
9f:22:18:45:1b:ec:6f:0e:2b:40:37:2a:0a:88:5b:c1:e6:a1:
99:09:83:7f:9f:0d:68:59:ee:24:3a:f9:ad:28:eb:b2:df:9b:
7d:37:ce:62:b4:a9:4c:29:db:43:4c:26:57:f5:2d:51:ba:6f:
c0:54:5c:ff:00:66:fa:f6:f2:1d:4c:9b:78:b6:9d:5c:64:da:
b0:88:b0:6e:38:6b:14:2b:0e:be:f0:6e:9b:23:03:5c:49:93:
69:07:41:ed:a2:59:df:e0:c4:78:cb:30:ec:cc:61:19:87:dc:
8a:66:39:a1:5c:11:1a:be:3c:23:4a:45:1f:88:25:e9:98:69:
d0:24:1a:76:98:89:a3:19:5e:48:83:6a:98:eb:82:aa:17:53:
7c:86:51:8b:2f:64:81:46:a2:a0:6a:42:fc:f6:33:87:8f:fa:
cb:80:03:f8:65:0d:c7:9b:5f:58:ca:42:5c:f6:a0:94:33:90:
38:25:ca:4f:80:68:f9:86:4c:6c:44:b2:bf:3e:ca:40:5f:af:
7b:eb:65:68:0f:be:2d:bb:a5:27:20:31:73:93:e4:d4:5c:9a:
6f:1f:5e:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYacLCohr8+eeSjwLMd9Xb2FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhM2I3YTAxZDdkYjQwMjVjOThiNDkwYjM5NTZmYTllNDZl
MWYzNjIwHhcNMjMwMzAxMDc1NjI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzQ4MDg4YThjZmJlYmFlNDMyNTE5ZjA3ZTk2NTQyYjljZGJkZjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgT01FCNq/++Hg9aT5Exrc28psYh
oKwS9WLgTM+u3vkm5RhqKyxk5Lx+kmvvTW33wH04VhjgBgPGSKLWc8/g3bJ7/RUM
s9v5IAz/unp9xgmcQx4VJeudvzGlBk0/QiKwMTxsqzrESThzjLLjo99+lKQFu/Iy
WymISW151CEIbcV+ql9QVm69s1nXxPsu3P/VU/NGF5+AzAiOK2Fs46gLYHVr4pxV
fbMYsbz9HT7xS8A4XGldiYNxefflb4rZ3AWxo65o9AoZ6t7g8BuQHyiesrRzVIna
mfSpSXcnMoMJNXsO58f2WIaGT8Zi813oLXiRAY9GdcUgmGkVzpi3w2VzqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNNICIqM++uuQyUZ8H6WVCuc299xMB8GA1UdIwQY
MBaAFMo7egHX20AlyYtJCzlW+p5G4fNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWp0NkFkZmJRQ1hKaTBrTE9WYjZua2JoODJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS83MmIwYmYtNmZmZC00NTZjLTkyYzQt
NzU5NDk2Y2Y3MzgzLzEvMDBnSWlvejc2NjVESlJud2ZwWlVLNXpiMzNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS83MmIwYmYtNmZmZC00NTZjLTkyYzQtNzU5NDk2Y2Y3Mzgz
LzEveWp0NkFkZmJRQ1hKaTBrTE9WYjZua2JoODJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhMdMA0G
CSqGSIb3DQEBCwUAA4IBAQBY7pHEnoQasJTRZNWjFtQ+hIjaMJ/D/idl3WBPXO+/
rHHNIBSfIhhFG+xvDitANyoKiFvB5qGZCYN/nw1oWe4kOvmtKOuy35t9N85itKlM
KdtDTCZX9S1Rum/AVFz/AGb69vIdTJt4tp1cZNqwiLBuOGsUKw6+8G6bIwNcSZNp
B0Htolnf4MR4yzDszGEZh9yKZjmhXBEavjwjSkUfiCXpmGnQJBp2mImjGV5Ig2qY
64KqF1N8hlGLL2SBRqKgakL89jOHj/rLgAP4ZQ3Hm19YykJc9qCUM5A4JcpPgGj5
hkxsRLK/PspAX69762VoD74tu6UnIDFzk+TUXJpvH15A
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:26 2024 by rpki-client on console-fra.rpki-client.org