Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/4d5b77-bd89-4600-979c-03c80956268c/1/Qbze9s3b9GJdijiBNHxk6EhVKvc.roa
File: Qbze9s3b9GJdijiBNHxk6EhVKvc.roa (raw, json)
Hash identifier: 0f06uSuVcsjirqOQKeuhgzr1lH9md/Ixj4OISlI6SRQ=
Subject key identifier: 41:BC:DE:F6:CD:DB:F4:62:5D:8A:38:81:34:7C:64:E8:48:55:2A:F7
Certificate issuer: /CN=1cf89903801729fc1ed35372a074b35cad184ddf
Certificate serial: 7B59CA
Authority key identifier: 1C:F8:99:03:80:17:29:FC:1E:D3:53:72:A0:74:B3:5C:AD:18:4D:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPiZA4AXKfwe01NyoHSzXK0YTd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/4d5b77-bd89-4600-979c-03c80956268c/1/Qbze9s3b9GJdijiBNHxk6EhVKvc.roa
Signing time: Tue 15 Feb 2022 12:13:17 +0000
ROA not before: Tue 15 Feb 2022 12:13:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 146.19.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8083914 (0x7b59ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cf89903801729fc1ed35372a074b35cad184ddf
Validity
Not Before: Feb 15 12:13:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41bcdef6cddbf4625d8a3881347c64e848552af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e6:9b:2a:c7:45:49:04:95:05:33:3b:2c:4f:
06:59:b2:d4:ed:aa:59:65:39:b1:79:3d:c1:27:5e:
42:da:c9:b1:ff:e0:cf:38:66:a9:a5:8a:b6:13:77:
cd:ce:cb:12:0c:c1:ba:1a:9a:1b:89:12:d3:ed:ca:
11:b9:13:b9:f9:53:d5:23:ec:00:eb:e2:76:03:cf:
7c:16:34:b7:13:73:6a:a3:95:52:f1:aa:00:19:4b:
68:79:ec:50:c3:fc:0f:af:4e:8b:f6:cd:a5:99:36:
e6:e8:20:0f:0e:16:fb:eb:2c:46:8e:3f:37:02:c4:
90:2b:bb:98:43:24:4a:1d:ea:bf:8e:7c:8e:2b:1d:
cc:0e:4d:42:6e:ca:cf:e6:1d:86:0d:95:03:c3:61:
fb:42:a1:51:08:1a:e7:d6:2e:2d:ca:97:9e:2e:35:
92:5d:52:79:82:ea:33:fb:28:ae:3d:82:7c:1f:1f:
98:d5:11:69:89:80:69:c8:70:a8:7c:dd:57:90:ec:
85:fc:f5:53:82:d7:56:c9:a6:5f:06:e9:e2:f5:f2:
00:4d:0c:e0:59:de:74:51:01:de:99:c1:5c:67:48:
72:91:d8:dd:c8:38:a1:16:8d:6d:c0:66:69:bf:b9:
04:f1:6c:10:22:73:f9:18:9a:6b:0c:fe:24:2e:12:
29:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BC:DE:F6:CD:DB:F4:62:5D:8A:38:81:34:7C:64:E8:48:55:2A:F7
X509v3 Authority Key Identifier:
keyid:1C:F8:99:03:80:17:29:FC:1E:D3:53:72:A0:74:B3:5C:AD:18:4D:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPiZA4AXKfwe01NyoHSzXK0YTd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/4d5b77-bd89-4600-979c-03c80956268c/1/Qbze9s3b9GJdijiBNHxk6EhVKvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/4d5b77-bd89-4600-979c-03c80956268c/1/HPiZA4AXKfwe01NyoHSzXK0YTd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.90.0/24
Signature Algorithm: sha256WithRSAEncryption
07:69:f1:e0:7b:92:b6:38:8a:38:c6:61:35:93:fc:c7:b2:26:
cf:bb:e3:4d:aa:78:33:29:57:81:d2:1b:c1:eb:3f:73:c6:0c:
bc:70:20:b5:dc:11:32:6d:6d:d7:ba:1b:94:f5:bf:0f:ac:96:
58:d4:cc:01:84:90:cd:57:43:58:02:b5:c3:97:fc:d3:84:88:
be:c7:ea:d9:84:e7:13:1b:6d:6b:f0:d8:9f:82:92:8f:db:8d:
a3:f6:4e:63:5f:e6:cd:16:37:18:30:be:f4:6b:ae:b7:ad:b6:
dd:2d:2f:18:c1:5b:83:bc:8b:a7:9d:ef:91:bb:fb:96:ee:a9:
f9:e6:83:51:33:4c:a6:d7:bf:d6:41:4d:c3:61:db:5c:f5:36:
8e:00:45:98:4d:94:7d:c4:ec:2c:fe:c1:e3:f6:cb:3f:f4:5b:
66:35:7f:55:15:03:65:5e:c0:b1:5b:f4:0d:27:65:2e:75:43:
c3:e0:a0:9c:c3:4b:f4:17:2b:cf:f5:15:a4:a8:2e:7a:06:30:
6a:4d:01:e2:e7:73:23:b7:16:d7:f0:8b:d4:71:57:c3:68:4e:
15:db:d4:96:97:13:2a:e0:cc:3c:ad:07:ea:a2:61:4f:e8:89:
8e:6b:05:0a:4b:89:c4:0e:08:bd:ad:09:64:f0:0b:e0:ea:a2:
79:4a:8a:0e
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDe1nKMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDFj
Zjg5OTAzODAxNzI5ZmMxZWQzNTM3MmEwNzRiMzVjYWQxODRkZGYwHhcNMjIwMjE1
MTIxMzE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0MWJjZGVmNmNkZGJm
NDYyNWQ4YTM4ODEzNDdjNjRlODQ4NTUyYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAueabKsdFSQSVBTM7LE8GWbLU7apZZTmxeT3BJ15C2smx/+DP
OGappYq2E3fNzssSDMG6GpobiRLT7coRuRO5+VPVI+wA6+J2A898FjS3E3Nqo5VS
8aoAGUtoeexQw/wPr06L9s2lmTbm6CAPDhb76yxGjj83AsSQK7uYQyRKHeq/jnyO
Kx3MDk1CbsrP5h2GDZUDw2H7QqFRCBrn1i4typeeLjWSXVJ5guoz+yiuPYJ8Hx+Y
1RFpiYBpyHCofN1XkOyF/PVTgtdWyaZfBuni9fIATQzgWd50UQHemcFcZ0hykdjd
yDihFo1twGZpv7kE8WwQInP5GJprDP4kLhIpGQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEG83vbN2/RiXYo4gTR8ZOhIVSr3MB8GA1UdIwQYMBaAFBz4mQOAFyn8HtNT
cqB0s1ytGE3fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
SFBpWkE0QVhLZndlMDFOeW9IU3pYSzBZVGQ4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kYS80ZDViNzctYmQ4OS00NjAwLTk3OWMtMDNjODA5NTYyNjhjLzEv
UWJ6ZTlzM2I5R0pkaWppQk5IeGs2RWhWS3ZjLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS80
ZDViNzctYmQ4OS00NjAwLTk3OWMtMDNjODA5NTYyNjhjLzEvSFBpWkE0QVhLZndl
MDFOeW9IU3pYSzBZVGQ4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhNaMA0GCSqGSIb3DQEBCwUAA4IB
AQAHafHge5K2OIo4xmE1k/zHsibPu+NNqngzKVeB0hvB6z9zxgy8cCC13BEybW3X
uhuU9b8PrJZY1MwBhJDNV0NYArXDl/zThIi+x+rZhOcTG21r8NifgpKP242j9k5j
X+bNFjcYML70a663rbbdLS8YwVuDvIunne+Ru/uW7qn55oNRM0ym17/WQU3DYdtc
9TaOAEWYTZR9xOws/sHj9ss/9FtmNX9VFQNlXsCxW/QNJ2UudUPD4KCcw0v0FyvP
9RWkqC56BjBqTQHi53MjtxbX8IvUcVfDaE4V29SWlxMq4Mw8rQfqomFP6ImOawUK
S4nEDgi9rQlk8Avg6qJ5SooO
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:39 2025 by rpki-client