Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/7f1058-2b59-4b7b-9954-2e2059dbe61a/1/dfD1GgMMHhkIv1JUQkRWTF4yFIw.roa
File: dfD1GgMMHhkIv1JUQkRWTF4yFIw.roa (raw, json)
Hash identifier: rD5Em+a97Zl2i7Bp9yfhCs/cA6U/zWyWLifc6QW2t4k=
Subject key identifier: 75:F0:F5:1A:03:0C:1E:19:08:BF:52:54:42:44:56:4C:5E:32:14:8C
Certificate issuer: /CN=b855a226f4eb12a5516deca1196b71287ca0185c
Certificate serial: 01856ECB93CF460E44D74A8661B4CC639500
Authority key identifier: B8:55:A2:26:F4:EB:12:A5:51:6D:EC:A1:19:6B:71:28:7C:A0:18:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFWiJvTrEqVRbeyhGWtxKHygGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/7f1058-2b59-4b7b-9954-2e2059dbe61a/1/dfD1GgMMHhkIv1JUQkRWTF4yFIw.roa
Signing time: Sun 01 Jan 2023 19:25:13 +0000
ROA not before: Sun 01 Jan 2023 19:25:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:93:cf:46:0e:44:d7:4a:86:61:b4:cc:63:95:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b855a226f4eb12a5516deca1196b71287ca0185c
Validity
Not Before: Jan 1 19:25:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75f0f51a030c1e1908bf52544244564c5e32148c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5b:7a:61:07:38:2f:f0:36:3b:5e:0a:88:10:
0a:39:2f:85:65:8e:58:7b:34:6f:1a:c8:a0:09:65:
7d:c5:f4:8e:e9:80:33:dc:76:77:aa:87:d9:33:3b:
78:ec:91:39:bb:88:46:23:4c:11:6e:0f:72:ee:51:
2d:c0:84:ea:2c:c4:a9:41:21:dc:58:f4:66:51:bb:
0c:bb:98:ea:c3:ef:cd:d1:08:38:50:d1:3e:03:2e:
23:8c:5f:6a:33:81:7a:ad:44:cc:8e:fe:46:ba:80:
a3:47:83:95:a8:bc:7a:cd:f0:01:e8:9c:69:41:5f:
5c:60:fe:1e:2c:18:81:cc:c7:80:00:de:d0:df:e7:
57:c9:3f:9b:04:d8:72:fa:e5:7c:4c:6a:62:27:1a:
af:41:bc:d7:75:fb:54:9d:67:66:41:5e:63:ac:8a:
65:a5:86:ab:2e:99:50:05:4f:1a:65:9f:ce:a1:aa:
04:28:01:c4:6a:c7:2b:3d:5a:23:eb:f2:46:ec:24:
a6:be:b8:41:23:82:3b:32:1a:8a:77:9f:ad:ca:d5:
d1:bd:0e:16:15:d0:00:f1:bb:cd:30:e7:0b:82:66:
f1:2e:d4:b9:44:d2:d4:4e:15:a1:80:a7:b0:a5:93:
3c:c7:cf:17:29:c2:74:10:2d:03:71:28:91:0b:bd:
ac:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F0:F5:1A:03:0C:1E:19:08:BF:52:54:42:44:56:4C:5E:32:14:8C
X509v3 Authority Key Identifier:
keyid:B8:55:A2:26:F4:EB:12:A5:51:6D:EC:A1:19:6B:71:28:7C:A0:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFWiJvTrEqVRbeyhGWtxKHygGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f1058-2b59-4b7b-9954-2e2059dbe61a/1/dfD1GgMMHhkIv1JUQkRWTF4yFIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f1058-2b59-4b7b-9954-2e2059dbe61a/1/uFWiJvTrEqVRbeyhGWtxKHygGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.167.0/24
Signature Algorithm: sha256WithRSAEncryption
05:cc:2d:e6:5f:c8:74:22:56:f4:13:99:1d:81:01:06:2f:98:
26:4e:4e:c1:dc:3b:02:b8:47:14:c3:5f:0d:c8:d0:36:3a:30:
50:71:d8:bd:53:0d:b9:5a:dc:c8:b8:d1:05:0e:d0:34:52:6e:
f8:4b:f6:2d:a3:78:6c:10:c5:6e:69:10:c4:7a:20:b0:f4:61:
9c:6b:5f:97:b2:6c:3a:e1:9f:af:b3:8a:f0:28:f8:f9:dd:0a:
e2:b3:9c:86:e9:b0:7b:3c:b8:e8:7d:47:b9:c3:e7:6c:a9:d8:
8c:6f:c0:7f:20:d2:f5:ce:6e:f1:3a:4a:ad:5e:2b:49:9e:80:
56:2c:80:ea:22:36:f4:de:4e:19:2e:56:52:51:dc:4f:a2:0e:
dc:9b:2a:4b:40:fa:87:4f:81:bf:68:da:1b:e7:c3:32:7d:43:
63:8b:c6:a8:42:da:0b:b1:f3:f5:63:7e:d8:1c:1a:00:1c:81:
4e:39:d5:ae:83:65:ea:2d:f4:81:06:be:23:f0:7e:b0:88:0d:
9a:e4:33:9a:f8:9f:f0:67:43:7a:75:49:4e:b0:f6:01:7e:68:
c8:a3:93:5c:33:32:31:e7:b2:b3:d6:c5:cf:30:78:b8:5c:d7:
c9:40:77:b2:11:1c:4e:39:1f:06:ee:5e:9a:1e:b4:1a:0e:34:
c2:14:b8:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:07:18 2025 by rpki-client