Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/4d5b77-bd89-4600-979c-03c80956268c/1/Ea9HGU6WwNSaNCvDaMutjAHGdOw.roa
File: Ea9HGU6WwNSaNCvDaMutjAHGdOw.roa (raw, json)
Hash identifier: WAUBahiAhnjgIvMvpGl4TVnYnEJ5OK0U0khw0TA7yWo=
Subject key identifier: 11:AF:47:19:4E:96:C0:D4:9A:34:2B:C3:68:CB:AD:8C:01:C6:74:EC
Certificate issuer: /CN=1cf89903801729fc1ed35372a074b35cad184ddf
Certificate serial: 018543166EFF5FEF59997A16A01EF77BA762
Authority key identifier: 1C:F8:99:03:80:17:29:FC:1E:D3:53:72:A0:74:B3:5C:AD:18:4D:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPiZA4AXKfwe01NyoHSzXK0YTd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/4d5b77-bd89-4600-979c-03c80956268c/1/Ea9HGU6WwNSaNCvDaMutjAHGdOw.roa
Signing time: Sat 24 Dec 2022 07:43:41 +0000
ROA not before: Sat 24 Dec 2022 07:43:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14576
IP address blocks: 146.19.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:43:16:6e:ff:5f:ef:59:99:7a:16:a0:1e:f7:7b:a7:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cf89903801729fc1ed35372a074b35cad184ddf
Validity
Not Before: Dec 24 07:43:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11af47194e96c0d49a342bc368cbad8c01c674ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0a:29:73:27:6b:88:c5:f5:22:ff:ce:9a:e1:
f1:f3:13:d1:df:b3:c6:13:e5:84:8e:82:cb:54:a9:
dc:35:7f:e4:f2:87:57:e0:58:ee:46:38:c0:4e:68:
b6:93:93:6f:24:dd:ef:56:07:6d:7e:e6:ad:60:f1:
dd:06:ae:c1:5c:9f:4e:6b:8b:fd:8a:8b:55:55:52:
34:b6:37:48:3a:21:35:46:2e:fd:04:27:8d:2c:37:
93:7c:1c:18:51:4f:1f:02:e0:68:2e:68:be:d7:64:
6a:f7:16:c7:83:5f:05:89:36:37:97:26:5a:8c:18:
89:7e:be:61:78:54:87:cf:20:20:4a:dc:73:e0:66:
0b:95:49:0a:78:e2:ae:4c:13:1a:00:37:35:6b:55:
80:9a:bd:c3:11:4c:d7:44:03:d2:ff:b9:2d:33:b6:
0b:23:2d:6a:0a:fc:ed:67:58:38:0b:45:88:6e:17:
ff:b8:14:0d:37:98:18:57:b3:96:6a:55:ee:d3:fd:
c8:cf:77:0e:a4:4e:30:78:66:ca:86:79:a5:12:f3:
a5:3d:8a:fb:b3:53:77:6e:f6:59:85:87:39:d5:29:
1f:a8:6a:5a:39:34:10:a1:d1:6c:fa:1a:50:84:68:
1a:70:cc:24:fd:e9:d6:36:88:f3:c3:47:dc:32:e8:
d7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AF:47:19:4E:96:C0:D4:9A:34:2B:C3:68:CB:AD:8C:01:C6:74:EC
X509v3 Authority Key Identifier:
keyid:1C:F8:99:03:80:17:29:FC:1E:D3:53:72:A0:74:B3:5C:AD:18:4D:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPiZA4AXKfwe01NyoHSzXK0YTd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/4d5b77-bd89-4600-979c-03c80956268c/1/Ea9HGU6WwNSaNCvDaMutjAHGdOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/4d5b77-bd89-4600-979c-03c80956268c/1/HPiZA4AXKfwe01NyoHSzXK0YTd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.90.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:63:31:e3:08:28:3f:4f:ce:30:cb:5d:7b:7f:6a:c1:22:7f:
a9:fd:c6:69:c8:87:66:7d:70:bc:45:f0:1a:bd:3a:48:cc:38:
b2:a2:b2:aa:8d:b2:fd:d9:b7:ce:c5:7d:50:11:52:6b:7e:19:
e2:46:b6:02:2c:41:49:4e:60:e6:0c:42:01:c3:61:41:5d:c2:
7d:b2:a9:d7:49:20:ff:27:5a:bc:4f:e9:68:ad:b4:3d:f8:9e:
a5:30:11:af:71:ef:fd:50:8b:a9:f8:40:27:54:e3:73:3d:90:
cb:eb:96:33:2a:77:d2:c9:80:b2:6b:9a:db:02:c1:4c:ee:16:
a8:7c:a2:41:09:b1:6d:4f:8b:eb:d9:32:dd:c9:2b:a4:f4:47:
06:4f:45:21:ac:a1:bf:c0:7c:db:91:6d:12:ab:c6:1d:27:bd:
5b:d3:0e:70:f8:53:fc:b6:b2:93:0d:d2:65:47:5d:69:1d:63:
b9:29:7c:b3:1f:c5:78:d3:d4:3f:77:d0:46:dd:d9:31:16:20:
85:0b:69:f7:ac:53:e1:f7:90:8f:94:64:64:6b:33:21:9f:37:
79:05:b8:2a:fd:93:5d:eb:53:b7:5c:e1:37:0f:ad:dc:69:02:
fd:66:77:4e:7a:31:5c:9f:81:37:6d:97:73:72:18:49:59:db:
6e:eb:00:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:03 2024 by rpki-client on console-fra.rpki-client.org