Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/850d79-ccb8-4bcf-8b06-e5617c366caa/1/129UG9sPyp55fax38YE7xid427Y.roa
File: 129UG9sPyp55fax38YE7xid427Y.roa (raw, json)
Hash identifier: XKjNe/cmv9q7lF6Q4qnOZhZO3sGqmp5ahj5qaRAvIEA=
Subject key identifier: D7:6F:54:1B:DB:0F:CA:9E:79:7D:AC:77:F1:81:3B:C6:27:78:DB:B6
Certificate issuer: /CN=0b69427ba47680aefdfa08513e61466f767cebdf
Certificate serial: 018572BA862C5056F0A37F217F79B131C1BE
Authority key identifier: 0B:69:42:7B:A4:76:80:AE:FD:FA:08:51:3E:61:46:6F:76:7C:EB:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C2lCe6R2gK79-ghRPmFGb3Z8698.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/850d79-ccb8-4bcf-8b06-e5617c366caa/1/129UG9sPyp55fax38YE7xid427Y.roa
Signing time: Mon 02 Jan 2023 13:45:04 +0000
ROA not before: Mon 02 Jan 2023 13:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 146.19.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:86:2c:50:56:f0:a3:7f:21:7f:79:b1:31:c1:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b69427ba47680aefdfa08513e61466f767cebdf
Validity
Not Before: Jan 2 13:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d76f541bdb0fca9e797dac77f1813bc62778dbb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:fd:ca:3c:1b:d2:4b:ec:9b:9e:80:5c:b6:0e:
31:02:77:21:be:41:9b:4b:ed:83:46:3c:04:06:4e:
42:76:c7:6e:31:19:4c:9d:96:9f:84:ab:72:fd:cc:
af:36:42:ff:33:5e:62:b8:2a:4b:e1:01:c5:df:0b:
4f:cd:0c:9a:9e:18:8f:dd:15:be:63:db:4a:0d:53:
22:59:38:7b:d7:8b:e4:11:c3:f9:cd:73:58:18:06:
90:b5:df:7b:ec:23:3f:ab:a8:22:65:dc:35:0c:0f:
4e:8c:c2:02:68:34:bb:6c:07:bf:d9:f2:52:6f:4f:
63:01:e4:41:a7:24:12:28:71:a1:84:de:d1:22:4d:
4c:ee:96:4b:13:c4:c6:d9:5f:f6:94:4e:0f:30:ec:
70:54:30:b1:80:ab:d7:33:a2:b1:a6:83:c3:23:fe:
4a:15:bf:15:ff:eb:4f:60:6d:7a:88:ff:6c:86:33:
a2:98:a9:02:85:98:6e:4c:00:f9:5b:33:a7:97:16:
9e:3c:bb:70:db:87:4e:b3:2d:66:cb:86:79:fc:1b:
65:26:8d:52:0a:9d:fb:07:a9:dc:40:0e:3c:d1:42:
f2:8e:ce:0a:97:89:8d:69:fa:01:61:d9:16:39:9a:
07:af:03:fd:93:14:07:86:e4:bd:8e:3f:b3:56:31:
27:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:6F:54:1B:DB:0F:CA:9E:79:7D:AC:77:F1:81:3B:C6:27:78:DB:B6
X509v3 Authority Key Identifier:
keyid:0B:69:42:7B:A4:76:80:AE:FD:FA:08:51:3E:61:46:6F:76:7C:EB:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C2lCe6R2gK79-ghRPmFGb3Z8698.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/850d79-ccb8-4bcf-8b06-e5617c366caa/1/129UG9sPyp55fax38YE7xid427Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/850d79-ccb8-4bcf-8b06-e5617c366caa/1/C2lCe6R2gK79-ghRPmFGb3Z8698.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.111.0/24
Signature Algorithm: sha256WithRSAEncryption
e0:8f:fb:5c:67:6c:7f:dc:00:96:1f:cf:98:f0:97:88:c3:f8:
5d:13:97:1d:22:0a:b6:08:b9:58:1f:25:ac:4f:4e:c6:02:67:
6f:a6:9c:91:a7:db:c9:c3:b2:ce:e8:06:35:f1:9d:af:b5:98:
61:61:d6:43:f8:03:7e:dd:30:59:49:69:a7:68:2c:89:90:10:
74:e0:1b:a5:16:5e:3c:ea:9b:01:0b:22:de:b7:37:0b:f6:cb:
73:20:39:cb:ea:f2:d7:ca:66:20:af:91:c9:e6:58:4e:17:5a:
44:90:18:27:99:be:9e:e0:be:e7:d6:9d:65:a9:22:8e:4b:eb:
d3:72:c8:8f:87:96:a2:e5:bc:e1:d0:e2:64:71:c9:d0:8e:7f:
1e:90:7e:7b:4d:53:16:fe:8d:70:10:f3:89:8d:87:f6:be:d3:
93:0f:df:62:a8:0b:9a:57:a0:50:b1:a1:cc:aa:2e:03:08:a2:
78:4a:8c:46:ca:31:79:a7:7d:4e:44:2b:4b:05:48:93:60:6b:
bb:e5:65:6e:72:ef:9a:07:3c:05:7b:84:d5:63:ee:39:e9:70:
50:9d:1a:1a:61:57:73:1f:fd:9e:cc:ae:1d:be:be:32:c3:72:
a1:27:d0:d6:c1:28:af:78:f6:01:f9:5b:3e:76:d6:f6:ca:53:
d1:3f:0c:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyuoYsUFbwo38hf3mxMcG+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiNjk0MjdiYTQ3NjgwYWVmZGZhMDg1MTNlNjE0NjZmNzY3
Y2ViZGYwHhcNMjMwMTAyMTM0NTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzZmNTQxYmRiMGZjYTllNzk3ZGFjNzdmMTgxM2JjNjI3NzhkYmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjv3KPBvSS+ybnoBctg4xAnchvkGb
S+2DRjwEBk5CdsduMRlMnZafhKty/cyvNkL/M15iuCpL4QHF3wtPzQyanhiP3RW+
Y9tKDVMiWTh714vkEcP5zXNYGAaQtd977CM/q6giZdw1DA9OjMICaDS7bAe/2fJS
b09jAeRBpyQSKHGhhN7RIk1M7pZLE8TG2V/2lE4PMOxwVDCxgKvXM6KxpoPDI/5K
Fb8V/+tPYG16iP9shjOimKkChZhuTAD5WzOnlxaePLtw24dOsy1my4Z5/BtlJo1S
Cp37B6ncQA480ULyjs4Kl4mNafoBYdkWOZoHrwP9kxQHhuS9jj+zVjEn6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNdvVBvbD8qeeX2sd/GBO8YneNu2MB8GA1UdIwQY
MBaAFAtpQnukdoCu/foIUT5hRm92fOvfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzJsQ2U2UjJnSzc5LWdoUlBtRkdiM1o4Njk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS84NTBkNzktY2NiOC00YmNmLThiMDYt
ZTU2MTdjMzY2Y2FhLzEvMTI5VUc5c1B5cDU1ZmF4MzhZRTd4aWQ0MjdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS84NTBkNzktY2NiOC00YmNmLThiMDYtZTU2MTdjMzY2Y2Fh
LzEvQzJsQ2U2UjJnSzc5LWdoUlBtRkdiM1o4Njk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhNvMA0G
CSqGSIb3DQEBCwUAA4IBAQDgj/tcZ2x/3ACWH8+Y8JeIw/hdE5cdIgq2CLlYHyWs
T07GAmdvppyRp9vJw7LO6AY18Z2vtZhhYdZD+AN+3TBZSWmnaCyJkBB04BulFl48
6psBCyLetzcL9stzIDnL6vLXymYgr5HJ5lhOF1pEkBgnmb6e4L7n1p1lqSKOS+vT
csiPh5ai5bzh0OJkccnQjn8ekH57TVMW/o1wEPOJjYf2vtOTD99iqAuaV6BQsaHM
qi4DCKJ4SoxGyjF5p31ORCtLBUiTYGu75WVucu+aBzwFe4TVY+456XBQnRoaYVdz
H/2ezK4dvr4yw3KhJ9DWwSivePYB+Vs+dtb2ylPRPwze
-----END CERTIFICATE-----
Generated at Tue Dec 5 13:20:46 2023 by rpki-client on console-ams.rpki-client.org