Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/7f1058-2b59-4b7b-9954-2e2059dbe61a/1/crMNR9ru2l7h88VAlNUjEnNBVjE.roa
File: crMNR9ru2l7h88VAlNUjEnNBVjE.roa (raw, json)
Hash identifier: PRhBBr0UpkrYTGtJolAMz3dk2MYNM2FxE8xd+IdzW9E=
Subject key identifier: 72:B3:0D:47:DA:EE:DA:5E:E1:F3:C5:40:94:D5:23:12:73:41:56:31
Certificate issuer: /CN=b855a226f4eb12a5516deca1196b71287ca0185c
Certificate serial: 01A78C20
Authority key identifier: B8:55:A2:26:F4:EB:12:A5:51:6D:EC:A1:19:6B:71:28:7C:A0:18:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFWiJvTrEqVRbeyhGWtxKHygGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/7f1058-2b59-4b7b-9954-2e2059dbe61a/1/crMNR9ru2l7h88VAlNUjEnNBVjE.roa
Signing time: Mon 23 May 2022 21:50:01 +0000
ROA not before: Mon 23 May 2022 21:50:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 146.19.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27757600 (0x1a78c20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b855a226f4eb12a5516deca1196b71287ca0185c
Validity
Not Before: May 23 21:50:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72b30d47daeeda5ee1f3c54094d5231273415631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bd:de:32:ca:27:e8:4a:16:20:65:61:c4:43:
06:1f:ac:56:11:33:d8:81:7d:9f:58:58:db:16:5a:
71:63:f2:a6:cb:14:ba:de:02:1d:a3:f0:9d:cf:57:
0d:c2:a0:8b:c0:65:4b:70:44:dd:e8:54:50:1c:72:
bc:2a:0d:2f:5b:dc:1b:ce:b2:c5:97:ae:4d:94:84:
fa:0f:4b:c6:f5:bd:7e:0b:82:31:d5:f3:af:d7:1c:
16:74:b5:d5:ad:c7:b4:fa:51:3f:70:0f:40:3d:0c:
e4:a5:e2:8a:0d:10:80:47:74:96:a9:fc:0b:d4:bf:
4a:03:6e:19:01:37:f5:93:54:05:7a:ac:b1:33:f5:
70:e2:67:28:5a:3d:e1:48:96:af:15:6e:72:b1:61:
19:27:ed:b7:13:bc:27:85:40:33:b4:f5:50:2d:59:
a6:5a:f3:a8:f9:b5:de:bd:4c:44:f7:0a:00:46:34:
b2:c7:d0:6f:b7:c5:e3:65:c3:fd:cc:f4:01:2b:c7:
77:4a:a3:0f:28:13:e8:58:18:23:4a:5e:ee:55:5d:
f5:85:2c:61:b3:19:bb:f8:fa:b2:c9:dd:bd:c2:d2:
bd:bf:39:f4:ca:42:f3:36:c0:e0:66:9b:2a:a5:e1:
f0:8d:5e:a9:c3:12:da:a6:e7:4c:d4:26:6d:cc:03:
a2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B3:0D:47:DA:EE:DA:5E:E1:F3:C5:40:94:D5:23:12:73:41:56:31
X509v3 Authority Key Identifier:
keyid:B8:55:A2:26:F4:EB:12:A5:51:6D:EC:A1:19:6B:71:28:7C:A0:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFWiJvTrEqVRbeyhGWtxKHygGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f1058-2b59-4b7b-9954-2e2059dbe61a/1/crMNR9ru2l7h88VAlNUjEnNBVjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f1058-2b59-4b7b-9954-2e2059dbe61a/1/uFWiJvTrEqVRbeyhGWtxKHygGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.167.0/24
Signature Algorithm: sha256WithRSAEncryption
26:e9:94:85:40:ba:c2:d9:6b:83:dd:2d:94:54:bf:6b:5b:2a:
ca:f3:f4:b8:05:b1:5e:fc:c8:74:e5:84:89:7f:85:53:de:90:
b7:73:10:41:00:72:59:3b:ed:8e:78:07:4e:f0:74:33:b6:19:
4b:75:51:dc:88:de:e1:da:f4:36:07:1d:95:cd:e2:25:e5:2a:
a7:a9:6a:cb:16:5b:ec:3b:58:8e:fd:af:9e:b8:75:64:8a:8e:
4b:7f:90:5f:ef:0e:38:0a:0f:64:57:71:5a:64:99:1a:f8:f4:
8a:0a:81:d0:cf:d6:01:32:e3:ed:07:c0:54:4c:ea:27:34:f6:
41:bc:e4:fe:90:bf:a1:c5:d3:82:e9:a7:0c:b0:e1:ce:6b:41:
ff:03:7f:2d:86:67:88:46:fb:50:95:77:eb:70:ab:93:fa:cd:
d9:54:69:5f:ef:89:36:a2:75:6d:72:72:f4:96:b0:3f:aa:bb:
39:43:0e:63:69:73:ab:28:54:3a:c2:93:47:c3:0f:b5:83:3b:
3a:5b:61:14:f9:3a:3d:b6:0d:6a:d8:9e:17:6f:b6:f0:bd:b1:
d2:61:43:37:47:a6:15:9d:27:ec:31:4b:8f:3b:9e:ac:19:cc:
cc:e8:6b:f2:c4:98:42:af:c7:10:de:cf:83:85:16:1d:51:3d:
f3:f6:15:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:46 2024 by rpki-client on console-ams.rpki-client.org