Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/pN-9A0_bmWxOHMGbysVGXiPZTTg.roa
File: pN-9A0_bmWxOHMGbysVGXiPZTTg.roa (raw, json)
Hash identifier: juFJWKc/q5q+45qjGg1l2i0sxNsXarz31GAi2ZitQJM=
Subject key identifier: A4:DF:BD:03:4F:DB:99:6C:4E:1C:C1:9B:CA:C5:46:5E:23:D9:4D:38
Certificate issuer: /CN=880369c01e0f62570710f7b702302928250f65da
Certificate serial: 01857142DDCD8A9966A4B274F8DC3A4896E4
Authority key identifier: 88:03:69:C0:1E:0F:62:57:07:10:F7:B7:02:30:29:28:25:0F:65:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iANpwB4PYlcHEPe3AjApKCUPZdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/pN-9A0_bmWxOHMGbysVGXiPZTTg.roa
Signing time: Mon 02 Jan 2023 06:54:45 +0000
ROA not before: Mon 02 Jan 2023 06:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59253
IP address blocks: 146.19.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:dd:cd:8a:99:66:a4:b2:74:f8:dc:3a:48:96:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880369c01e0f62570710f7b702302928250f65da
Validity
Not Before: Jan 2 06:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4dfbd034fdb996c4e1cc19bcac5465e23d94d38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:57:21:b1:68:19:69:44:0d:7f:44:00:5d:51:
b4:a1:3e:6c:2c:f2:1c:da:3c:06:ad:7f:f0:0b:0b:
1d:8c:ad:02:aa:89:4a:26:f8:a3:28:4c:49:be:5e:
3d:fb:ce:f4:84:21:99:3b:fe:95:29:a9:a0:6e:5d:
e0:33:01:83:ed:44:f2:d0:a4:6e:cc:9e:a6:72:1e:
55:c5:a0:a0:e1:ef:a1:34:d6:53:cb:33:ba:6f:63:
30:48:2e:a2:bc:7d:be:c1:61:d3:79:fe:d2:1c:fd:
05:8c:a4:8c:22:83:79:4c:08:88:79:e5:6f:c4:47:
65:34:41:1e:16:80:bd:79:15:6f:31:fd:9a:f9:2d:
50:d1:3b:08:77:7b:51:46:b4:04:30:46:ce:e7:d9:
0d:27:09:86:ee:b6:2f:a8:e6:d7:9c:8f:c4:72:19:
46:62:f1:0d:4a:65:58:1e:ee:ec:1b:9f:f3:39:66:
8b:bb:39:8b:8c:41:2f:47:a5:de:ca:e0:a8:5f:f7:
94:da:03:ef:83:10:4e:e2:2f:65:ea:eb:4e:7b:7b:
07:56:ef:e5:79:4e:29:47:72:73:89:b5:a4:82:50:
19:24:39:d6:5c:c8:b6:b9:93:2b:ec:86:27:43:50:
b9:5d:b7:29:06:fc:5e:74:77:ed:8b:a1:ec:f1:38:
d8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DF:BD:03:4F:DB:99:6C:4E:1C:C1:9B:CA:C5:46:5E:23:D9:4D:38
X509v3 Authority Key Identifier:
keyid:88:03:69:C0:1E:0F:62:57:07:10:F7:B7:02:30:29:28:25:0F:65:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iANpwB4PYlcHEPe3AjApKCUPZdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/pN-9A0_bmWxOHMGbysVGXiPZTTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/iANpwB4PYlcHEPe3AjApKCUPZdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.67.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:fb:fd:d5:a8:16:4b:e7:d1:73:d9:51:8d:47:c7:85:c1:ef:
e2:ff:30:6f:45:58:8d:17:10:86:92:a1:0c:07:fe:82:1a:88:
5c:a6:18:83:47:98:66:8a:7c:62:38:51:4b:94:43:2c:a4:83:
1e:2f:6d:79:84:d6:89:20:14:56:f1:5f:a8:7d:be:8c:ff:38:
ad:98:db:89:ad:35:86:67:e3:83:f6:59:9c:79:49:6d:ee:e7:
fc:ef:7e:6e:b4:86:9f:6e:6f:2a:af:bc:fc:18:fa:ae:89:70:
77:9a:69:86:53:67:2c:2a:51:a1:5a:0a:98:d6:a0:4b:b8:ff:
7c:ab:48:55:77:8a:05:f8:90:0b:cf:ca:4c:84:6d:87:84:5a:
c2:b9:ab:46:eb:99:c7:5e:cf:b6:66:58:36:d8:66:16:b4:8b:
c9:8e:1a:70:2b:58:c8:89:37:fd:ee:67:bf:d3:2d:a4:f9:cc:
b9:1d:44:b6:d6:0e:77:1f:81:2b:24:00:02:b9:20:48:5b:e3:
77:ca:38:82:57:85:0b:77:08:95:de:f4:db:b5:48:fa:8b:c9:
b9:c6:a3:46:37:35:57:3c:ea:28:31:30:ef:93:54:52:8e:7f:
96:8e:eb:e2:a3:d8:54:52:8c:62:25:52:80:59:29:51:d7:be:
c2:65:36:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:45 2023 by rpki-client on console.sobornost.net