Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/qvVEd8tU7AeRIhPvqURVwk0Qs5I.roa
File: qvVEd8tU7AeRIhPvqURVwk0Qs5I.roa (raw, json)
Hash identifier: WrM8giaD1t97g+Hg65JXjvx+5Lc1jR01gW+cJED7RtY=
Subject key identifier: AA:F5:44:77:CB:54:EC:07:91:22:13:EF:A9:44:55:C2:4D:10:B3:92
Certificate issuer: /CN=ca3b7a01d7db4025c98b490b3956fa9e46e1f362
Certificate serial: 01856F79945703C2A33B295C7E5DE3293E77
Authority key identifier: CA:3B:7A:01:D7:DB:40:25:C9:8B:49:0B:39:56:FA:9E:46:E1:F3:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjt6AdfbQCXJi0kLOVb6nkbh82I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/qvVEd8tU7AeRIhPvqURVwk0Qs5I.roa
Signing time: Sun 01 Jan 2023 22:35:16 +0000
ROA not before: Sun 01 Jan 2023 22:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59253
IP address blocks: 146.19.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:94:57:03:c2:a3:3b:29:5c:7e:5d:e3:29:3e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3b7a01d7db4025c98b490b3956fa9e46e1f362
Validity
Not Before: Jan 1 22:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aaf54477cb54ec07912213efa94455c24d10b392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c9:23:35:34:a1:58:5e:96:07:c0:6b:08:72:
72:3a:69:e1:25:0f:02:08:39:80:9f:e7:0c:86:33:
72:6e:84:de:79:41:38:25:14:b6:d8:a8:df:d1:3f:
e0:36:fe:49:4e:5a:8a:69:7e:0b:f1:84:cb:87:0e:
14:fc:90:1f:ce:c8:30:fe:b8:97:55:b4:e5:82:c3:
ed:0e:cc:9d:f6:00:8f:23:15:e4:df:bb:50:ab:37:
53:b5:02:31:8f:bb:49:5b:19:63:fa:dc:f8:e6:6c:
27:2e:c4:30:21:bc:7c:2a:19:38:b3:24:c1:af:c1:
8d:cd:68:93:ce:90:8b:ab:48:d9:4b:a2:08:a8:6f:
da:6a:0c:7f:fe:63:85:40:bf:89:22:38:2e:d5:62:
75:36:57:f5:f3:fb:25:6c:12:ed:af:b1:7e:98:7e:
07:ac:a7:16:57:87:55:b0:67:bc:f3:a4:46:80:a0:
d7:cd:f8:31:c2:83:ad:c4:ca:81:f3:23:91:10:e3:
da:f4:ad:f1:18:7f:0e:a3:e9:75:37:99:f8:ec:a8:
12:f3:da:ce:cd:4b:5e:d8:4c:41:66:ab:2f:d8:f4:
51:e6:88:0d:51:ef:19:74:62:10:4f:a5:49:ed:26:
20:61:2f:41:8c:98:8d:16:0b:f8:25:2c:76:f7:68:
eb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:F5:44:77:CB:54:EC:07:91:22:13:EF:A9:44:55:C2:4D:10:B3:92
X509v3 Authority Key Identifier:
keyid:CA:3B:7A:01:D7:DB:40:25:C9:8B:49:0B:39:56:FA:9E:46:E1:F3:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjt6AdfbQCXJi0kLOVb6nkbh82I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/qvVEd8tU7AeRIhPvqURVwk0Qs5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/72b0bf-6ffd-456c-92c4-759496cf7383/1/yjt6AdfbQCXJi0kLOVb6nkbh82I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.29.0/24
Signature Algorithm: sha256WithRSAEncryption
01:14:e5:36:fd:ba:25:08:65:aa:06:c5:9a:91:e4:87:c8:ea:
94:ed:f6:8a:f3:d9:2f:9c:57:c3:31:61:98:ce:1b:1e:ca:79:
cb:5a:ae:1e:02:63:65:ae:dd:36:53:1c:48:7d:1a:eb:da:08:
a2:91:a3:31:c4:54:d1:80:14:1f:d7:6b:1c:10:2c:a0:9b:b6:
37:2f:de:5f:b7:b1:a9:b9:95:9d:1c:62:38:d8:18:d8:aa:dc:
55:3b:29:c0:4b:f6:57:ed:d1:7b:81:f2:e7:f8:e0:7d:e7:68:
64:67:b7:c0:b1:78:f4:52:63:0e:04:d7:34:53:d0:66:48:0d:
d1:9a:85:92:87:bd:71:37:ae:fd:0a:3e:a8:6e:f1:f2:c4:27:
bc:3a:53:20:9c:61:2b:cc:00:a3:2d:a5:84:bc:91:fd:bb:fe:
12:62:d3:40:54:94:b2:30:58:50:47:c9:9a:10:d4:fe:2e:53:
c9:89:4b:18:51:57:15:30:98:f1:0a:dc:e0:3e:f8:93:5d:43:
88:e0:00:86:0e:08:85:f3:98:2c:f7:35:58:28:44:5d:0e:33:
e1:4f:9e:df:73:6f:4b:a2:0e:30:a9:f4:3f:9d:f8:b5:3a:b6:
4f:92:a4:ca:49:dd:36:bf:a6:41:00:88:0a:31:b7:1b:40:b6:
4c:ad:57:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:26 2024 by rpki-client on console-fra.rpki-client.org