Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/QjJfzIx2_srLIND1ANjIV0-wy4c.roa
File: QjJfzIx2_srLIND1ANjIV0-wy4c.roa (raw, json)
Hash identifier: Us2ilYbk1+YkPd3Szfo63jAhPB4Wxzgfl5ZQH8KnGN8=
Subject key identifier: 42:32:5F:CC:8C:76:FE:CA:CB:20:D0:F5:00:D8:C8:57:4F:B0:CB:87
Certificate issuer: /CN=ca3b7a01d7db4025c98b490b3956fa9e46e1f362
Certificate serial: 0187DB09768313DF58933481B50E302A12B3
Authority key identifier: CA:3B:7A:01:D7:DB:40:25:C9:8B:49:0B:39:56:FA:9E:46:E1:F3:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjt6AdfbQCXJi0kLOVb6nkbh82I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/QjJfzIx2_srLIND1ANjIV0-wy4c.roa
Signing time: Tue 02 May 2023 05:57:23 +0000
ROA not before: Tue 02 May 2023 05:57:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54252
IP address blocks: 146.19.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:09:76:83:13:df:58:93:34:81:b5:0e:30:2a:12:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b7a01d7db4025c98b490b3956fa9e46e1f362
Validity
Not Before: May 2 05:57:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42325fcc8c76fecacb20d0f500d8c8574fb0cb87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d1:8c:4a:eb:49:4f:87:0c:eb:c5:1e:06:d6:
de:38:b7:cc:22:48:fc:87:59:78:d8:62:02:8b:13:
8a:48:c1:83:a2:30:73:97:d2:63:b2:20:f9:4a:85:
0a:92:87:4c:0b:ef:65:92:e6:4d:b9:a2:c7:11:18:
77:99:95:7b:52:09:f2:fb:75:ca:36:14:35:7d:d8:
8a:5d:f4:cc:7f:6e:70:a7:34:fd:ed:5a:b6:6b:5d:
9f:18:1d:47:e3:f2:18:c1:04:4f:c1:51:02:14:6d:
9c:d7:3f:be:0e:9d:3e:6b:19:6f:6a:b0:12:fd:3f:
17:8a:6b:06:25:f9:75:9f:33:99:bc:63:3a:ad:5e:
91:a5:eb:7d:3f:6c:f9:0c:9a:60:de:4d:bc:c5:51:
ad:bf:ac:6f:c1:3c:10:63:c2:2b:78:65:ee:32:a8:
b3:57:4b:8b:ac:01:19:d0:af:2b:73:9c:d8:17:7a:
a9:f1:36:55:b6:9b:86:c9:48:be:a8:66:2d:79:74:
cf:ec:46:4e:7a:13:11:c3:be:2c:3f:95:39:6b:91:
89:45:1b:a3:aa:74:f2:1e:c3:e7:b0:a5:12:5d:85:
f0:9d:3b:e4:0e:fa:66:8f:c9:d1:b8:46:9d:06:95:
43:9a:fe:f1:39:9e:db:8f:21:26:1b:44:b2:89:82:
f1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:32:5F:CC:8C:76:FE:CA:CB:20:D0:F5:00:D8:C8:57:4F:B0:CB:87
X509v3 Authority Key Identifier:
keyid:CA:3B:7A:01:D7:DB:40:25:C9:8B:49:0B:39:56:FA:9E:46:E1:F3:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjt6AdfbQCXJi0kLOVb6nkbh82I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/QjJfzIx2_srLIND1ANjIV0-wy4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/yjt6AdfbQCXJi0kLOVb6nkbh82I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.29.0/24
Signature Algorithm: sha256WithRSAEncryption
03:db:4f:02:e9:fe:0e:15:41:b8:61:ab:bf:d1:cf:8c:e6:43:
f2:e2:5e:db:6f:3b:be:f4:c7:6e:6a:b2:b3:1d:fd:33:a4:66:
dd:f6:fa:a1:24:24:9e:8e:56:62:8a:47:24:f0:9f:09:bc:d0:
07:9d:0c:aa:ba:a9:36:a5:c7:23:75:ee:2e:eb:14:3c:36:ab:
7f:f7:96:34:1d:31:97:49:3f:cd:76:d4:da:48:6c:b1:40:f3:
54:02:dd:a9:0f:3a:6a:25:32:12:6b:26:14:db:fc:e4:49:cb:
59:a1:41:31:6e:31:0f:02:f8:2e:fe:17:3a:73:8c:63:5f:44:
68:5e:4d:8d:2e:bc:bd:3a:bd:e8:77:b2:5c:ef:db:bf:cb:21:
1b:48:49:61:89:56:35:90:a3:f7:99:b1:79:c4:cf:d8:d3:09:
44:7a:d1:f0:95:fb:1a:2a:4c:3f:28:57:30:0f:c2:5c:f5:18:
7f:b1:de:10:e5:dd:03:ad:89:d7:e6:7d:18:d1:a6:e3:5e:3a:
b1:b0:f8:fa:19:ca:e7:cc:48:15:37:25:b0:da:83:b5:8d:ae:
01:2e:4b:d1:6c:85:00:f2:75:e2:d5:85:60:b2:b9:9c:64:9a:
f7:90:fd:bf:57:71:b5:dc:47:fe:d5:7b:9a:5b:1f:a0:73:0e:
ff:0c:ea:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:29 2024 by rpki-client on console-ams.rpki-client.org