Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/52257e-9e43-4a29-8538-2a7139a6d3cf/1/tSZbE4HpVPQw1rgph6iXtg9KEJU.roa
File: tSZbE4HpVPQw1rgph6iXtg9KEJU.roa (raw, json)
Hash identifier: zXDSQ+AhMcK0aZENhL9xuZ1YPhTAmh529ZWB1Zxfqgw=
Subject key identifier: B5:26:5B:13:81:E9:54:F4:30:D6:B8:29:87:A8:97:B6:0F:4A:10:95
Certificate issuer: /CN=4cf0ba6151b808243f12f1e8b544f4f164033ef6
Certificate serial: 01856E38E9F00F2DDF89B788D69D10C6E949
Authority key identifier: 4C:F0:BA:61:51:B8:08:24:3F:12:F1:E8:B5:44:F4:F1:64:03:3E:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPC6YVG4CCQ_EvHotUT08WQDPvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/52257e-9e43-4a29-8538-2a7139a6d3cf/1/tSZbE4HpVPQw1rgph6iXtg9KEJU.roa
Signing time: Sun 01 Jan 2023 16:45:01 +0000
ROA not before: Sun 01 Jan 2023 16:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57152
IP address blocks: 146.19.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:e9:f0:0f:2d:df:89:b7:88:d6:9d:10:c6:e9:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf0ba6151b808243f12f1e8b544f4f164033ef6
Validity
Not Before: Jan 1 16:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5265b1381e954f430d6b82987a897b60f4a1095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:49:66:84:8a:c2:a9:33:5b:54:21:58:99:27:
6e:fd:12:77:8c:6a:3f:fc:78:0d:54:1c:79:3e:e0:
41:4c:df:c0:bd:c6:28:02:0a:1e:3d:50:4b:3c:9c:
a9:36:11:75:e6:88:dc:c8:2c:14:a0:63:a9:b1:55:
af:22:c1:4f:37:a0:b3:b6:e7:e8:b6:62:db:5e:00:
d8:ad:31:0c:64:e2:cc:62:4f:b8:5f:7e:09:de:1d:
bf:c6:7b:84:36:43:ea:46:9d:c3:45:87:74:69:a0:
17:60:57:fd:19:40:a0:8d:b4:96:61:d9:2c:50:c1:
47:8a:38:ee:c7:3a:af:66:76:84:c2:f9:35:07:0e:
c3:e2:a7:2c:eb:59:21:83:40:09:af:83:0a:ee:8f:
51:ad:44:c8:c2:78:a1:06:3e:bf:1e:36:05:bb:a0:
04:14:d9:a2:d0:5e:65:f4:28:a5:a8:0a:d4:bb:7f:
a0:f3:98:ac:ec:22:57:86:ac:56:69:b9:ed:60:73:
a4:94:9a:00:0e:10:90:cb:dd:b4:e7:7a:01:a0:db:
18:c9:76:bb:e1:47:9f:7e:50:8b:21:1e:81:39:ef:
b8:43:3b:33:6a:ee:47:06:7c:b9:37:b3:fe:25:bd:
a3:e2:14:44:72:40:9e:0f:53:24:a2:c4:8b:4f:6d:
d0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:26:5B:13:81:E9:54:F4:30:D6:B8:29:87:A8:97:B6:0F:4A:10:95
X509v3 Authority Key Identifier:
keyid:4C:F0:BA:61:51:B8:08:24:3F:12:F1:E8:B5:44:F4:F1:64:03:3E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPC6YVG4CCQ_EvHotUT08WQDPvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/52257e-9e43-4a29-8538-2a7139a6d3cf/1/tSZbE4HpVPQw1rgph6iXtg9KEJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/52257e-9e43-4a29-8538-2a7139a6d3cf/1/TPC6YVG4CCQ_EvHotUT08WQDPvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.57.0/24
Signature Algorithm: sha256WithRSAEncryption
73:d9:59:57:30:07:66:5b:8f:95:cf:1b:fb:c6:c1:90:ca:8b:
da:4b:f7:cb:f4:0a:82:81:c1:7e:2f:34:3e:59:a6:2d:40:de:
55:87:78:7c:12:f8:54:59:5d:ab:0d:c8:b6:5b:3a:2f:89:8c:
19:7c:12:b2:14:d9:b9:9e:39:bd:e9:15:e9:13:49:4e:48:fc:
88:1d:55:15:84:5b:74:63:9c:fc:1e:cb:0d:2e:b5:a4:67:2b:
81:06:55:e8:de:ec:7e:0b:95:86:1a:79:d2:76:72:94:5b:5e:
c6:2d:e9:d1:f1:28:66:ef:08:26:30:c4:aa:4b:2d:e4:58:b7:
e6:6c:62:d6:f0:74:db:8b:35:b2:72:49:85:7e:cf:4a:8e:8f:
ab:57:2d:f3:5f:a4:45:5b:bd:59:d4:80:43:d2:69:59:21:14:
31:88:76:34:e0:58:f8:04:82:7f:e9:74:d3:19:51:f3:10:e2:
96:b9:d6:03:4d:35:18:d6:4a:36:4b:cd:34:1a:9b:05:d4:fd:
b6:72:e4:0a:46:b0:50:3d:35:4c:0c:21:ea:6a:eb:f4:12:e1:
a3:57:4d:02:ec:19:1c:a0:4b:fe:f4:f4:37:0a:12:39:39:f3:
37:bd:b4:ff:a7:4b:22:93:93:20:30:17:ae:2a:5a:6f:fc:65:
f0:5e:4e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:24:42 2025 by rpki-client