Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/vyAl1A05SIm1l2wx_zrzUEImyYQ.roa
File: vyAl1A05SIm1l2wx_zrzUEImyYQ.roa (raw, json)
Hash identifier: /xWrw9bsQX0g+mY/1UG1Sw/7YmZ+ZOU9SRGctEe8jnE=
Subject key identifier: BF:20:25:D4:0D:39:48:89:B5:97:6C:31:FF:3A:F3:50:42:26:C9:84
Certificate issuer: /CN=880369c01e0f62570710f7b702302928250f65da
Certificate serial: 01874D726214BB1AAF2B4F539670CEBFD990
Authority key identifier: 88:03:69:C0:1E:0F:62:57:07:10:F7:B7:02:30:29:28:25:0F:65:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iANpwB4PYlcHEPe3AjApKCUPZdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/vyAl1A05SIm1l2wx_zrzUEImyYQ.roa
Signing time: Tue 04 Apr 2023 18:05:54 +0000
ROA not before: Tue 04 Apr 2023 18:05:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 146.19.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4d:72:62:14:bb:1a:af:2b:4f:53:96:70:ce:bf:d9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880369c01e0f62570710f7b702302928250f65da
Validity
Not Before: Apr 4 18:05:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf2025d40d394889b5976c31ff3af3504226c984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9e:4f:24:6d:41:1c:70:ce:34:61:be:f9:1f:
a0:c6:58:79:d7:c3:2e:8d:03:fa:9d:42:3a:50:38:
88:3d:15:b9:92:28:11:f1:d6:b3:ab:11:90:b6:ff:
70:07:1b:37:53:77:a9:81:d5:3d:d4:c5:43:29:8d:
6b:b6:48:b2:55:0b:dc:6c:cf:74:63:5d:b7:41:21:
54:0f:4c:68:fa:77:2c:b7:06:6a:ce:e6:12:8c:f4:
f8:6c:aa:f8:d8:00:1f:62:ea:37:9c:0e:6b:8b:1e:
ba:f3:43:4b:a6:df:1c:16:c3:86:2a:1f:60:33:e0:
ae:6b:f8:e4:a9:55:3f:0d:8a:97:f0:6e:6c:d6:de:
97:6f:b3:fd:6e:11:37:9d:31:57:40:c3:55:c3:5b:
c9:09:95:1f:4f:ea:00:38:c2:30:ac:9f:c9:5a:db:
03:27:04:4c:cd:a6:16:48:fe:8a:70:8f:eb:c8:ee:
25:14:78:e7:06:86:3f:09:54:73:51:86:fd:64:ba:
0e:ef:62:46:c9:cc:d5:cc:31:95:07:5c:3c:66:49:
fd:03:5f:f2:22:85:fd:a2:4e:90:48:4d:85:62:80:
03:f8:a4:09:1c:23:28:9f:8f:f4:a7:1f:42:bb:d7:
bd:1d:14:e6:27:70:50:b5:b9:18:45:30:06:ac:21:
fe:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:20:25:D4:0D:39:48:89:B5:97:6C:31:FF:3A:F3:50:42:26:C9:84
X509v3 Authority Key Identifier:
keyid:88:03:69:C0:1E:0F:62:57:07:10:F7:B7:02:30:29:28:25:0F:65:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iANpwB4PYlcHEPe3AjApKCUPZdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/vyAl1A05SIm1l2wx_zrzUEImyYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/iANpwB4PYlcHEPe3AjApKCUPZdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.67.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:66:7f:59:a9:8c:ba:d4:93:be:9d:60:e7:ec:65:07:e9:32:
f0:94:c3:e2:58:a2:d0:9b:54:39:0d:ea:ce:d8:81:86:75:48:
c7:cb:16:7d:48:d7:5a:d9:f5:80:25:c5:b8:d7:4c:c0:ad:c3:
3f:b4:d5:d3:c8:55:b4:c5:5f:66:c8:9c:a7:2d:07:7c:2c:cf:
b7:e9:3b:08:a9:da:49:30:e0:46:f9:bb:fc:e0:e7:01:bb:44:
af:ea:2c:3f:c6:b9:af:41:90:3d:52:e4:0a:b9:c8:34:86:32:
d9:9c:de:02:50:86:21:b5:9c:f7:28:05:0a:8e:6e:b1:78:c2:
bb:ef:6f:6e:02:fa:69:56:df:0a:77:68:cb:b9:ac:6f:e8:1b:
f6:51:a4:07:46:4b:4a:80:70:f1:dc:87:ef:59:4e:49:cc:84:
d7:5f:e2:62:5a:ce:c2:12:18:4c:d9:82:89:3b:7a:d9:6c:13:
5d:f8:2b:c5:f2:47:20:f6:ac:fb:ff:08:a2:df:79:df:83:7a:
53:1f:19:09:4a:c2:25:95:92:14:f0:20:11:70:ff:ec:cf:5e:
a9:10:8c:a1:1b:3e:f6:26:1f:e4:24:ad:3b:81:f7:17:8b:c4:
93:f8:0a:0a:fa:75:45:c6:c1:85:39:45:70:fb:d9:4f:ca:ab:
5b:27:6d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:45 2023 by rpki-client on console.sobornost.net