Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/3bd5e2-4f6b-4a98-b406-1623128ff651/1/uCgVjZDX4ZZfJI-ydPEkyGGzbsQ.roa
File: uCgVjZDX4ZZfJI-ydPEkyGGzbsQ.roa (raw, json)
Hash identifier: ishqZo78pz/EZCsfTm8WyUBztiKwQp2RAeeWtET/+Gg=
Subject key identifier: B8:28:15:8D:90:D7:E1:96:5F:24:8F:B2:74:F1:24:C8:61:B3:6E:C4
Certificate issuer: /CN=8e02eeb807ed011795881c61f671da04192d2c49
Certificate serial: 829D42
Authority key identifier: 8E:02:EE:B8:07:ED:01:17:95:88:1C:61:F6:71:DA:04:19:2D:2C:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jgLuuAftAReViBxh9nHaBBktLEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/3bd5e2-4f6b-4a98-b406-1623128ff651/1/uCgVjZDX4ZZfJI-ydPEkyGGzbsQ.roa
Signing time: Sat 01 Jan 2022 01:50:34 +0000
ROA not before: Sat 01 Jan 2022 01:50:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 146.19.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8559938 (0x829d42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e02eeb807ed011795881c61f671da04192d2c49
Validity
Not Before: Jan 1 01:50:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b828158d90d7e1965f248fb274f124c861b36ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:dc:5f:23:67:39:a9:43:22:79:82:2f:5b:31:
f6:93:36:5f:fa:f1:6c:73:9b:61:30:d1:73:07:38:
d3:6d:72:f0:32:c0:b0:45:56:fd:b7:ab:47:8c:ab:
2b:20:a9:3e:ae:40:3b:a1:54:12:ed:72:03:21:6b:
54:1f:8b:9a:68:8d:05:d2:4b:7c:32:c5:28:20:30:
f8:3f:fa:c1:b0:8a:8c:2e:83:37:b3:a9:f8:f1:27:
6a:f1:32:4f:88:5a:a2:90:43:2b:9f:bb:8f:4f:98:
dd:7f:50:6c:b0:05:01:dc:25:a8:7d:80:02:ac:99:
ee:28:17:ad:bb:be:6b:cd:3c:6b:2d:4d:56:54:76:
0e:0c:8f:c3:41:ac:2e:9e:ca:06:36:ef:fd:f0:8a:
e2:6c:6a:95:66:88:f0:ff:25:1f:9c:7e:8b:68:a3:
1f:b9:fc:33:fe:79:ca:10:eb:2e:b8:9f:36:56:35:
5c:f6:ee:7f:73:04:34:cd:e7:02:d0:fd:8a:93:56:
83:80:5e:69:44:d4:09:d3:64:b5:42:2c:48:45:de:
f0:08:0a:4e:84:9b:96:c1:0a:e5:74:2d:73:54:bc:
b9:9c:e0:aa:de:55:9f:ec:26:22:bd:6a:c4:b4:bd:
58:f6:45:12:61:ae:62:8f:4b:b8:17:1d:80:9e:9b:
84:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:28:15:8D:90:D7:E1:96:5F:24:8F:B2:74:F1:24:C8:61:B3:6E:C4
X509v3 Authority Key Identifier:
keyid:8E:02:EE:B8:07:ED:01:17:95:88:1C:61:F6:71:DA:04:19:2D:2C:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jgLuuAftAReViBxh9nHaBBktLEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/3bd5e2-4f6b-4a98-b406-1623128ff651/1/uCgVjZDX4ZZfJI-ydPEkyGGzbsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/3bd5e2-4f6b-4a98-b406-1623128ff651/1/jgLuuAftAReViBxh9nHaBBktLEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.21.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:53:09:37:8c:f7:fb:45:c0:f3:f3:ab:3a:0b:ea:64:f4:34:
08:fc:58:cc:7a:f9:65:10:83:01:e0:13:ad:b5:11:d1:bb:7a:
8b:9b:3f:4d:9e:0c:97:10:1a:93:41:70:c9:e0:25:96:a2:57:
3e:e5:70:4d:29:55:5f:e1:18:96:a0:04:6e:00:29:93:28:9e:
b0:33:46:19:9e:dd:f0:fb:39:92:45:c8:f9:80:42:e4:f8:ca:
ac:ce:f6:07:3e:32:31:88:e0:ec:49:73:04:56:8c:14:b6:ba:
d5:68:d0:76:2c:24:64:27:b6:07:d1:64:ce:fe:60:38:3f:08:
c6:3d:5d:42:40:76:03:51:fd:ba:5b:f5:88:6f:b9:d8:31:7e:
0d:bb:af:83:e5:d5:a9:1c:a6:ef:21:4b:0e:b9:6a:fb:13:92:
ad:76:e3:79:aa:02:7a:17:7b:05:bb:e4:da:37:27:99:9b:75:
fc:73:36:61:3f:33:07:a1:8b:a0:d7:fc:50:6b:68:29:ba:b7:
5d:2a:07:11:6c:a1:fe:5a:bb:2f:3d:76:07:4b:6d:62:8e:b3:
b5:6e:c5:81:ab:ae:88:c6:7a:cc:da:cf:6a:67:50:90:12:c9:
6f:1c:16:01:1b:5d:0d:5d:86:2b:90:16:b0:84:6f:6c:c5:d8:
53:78:8b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:51 2024 by rpki-client on console-ams.rpki-client.org