Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/zkNW0URVJ1aN-UU4AiWDz-00TmE.roa
File: zkNW0URVJ1aN-UU4AiWDz-00TmE.roa (raw, json)
Hash identifier: L2ROP8Eqer0sKf/AsTcoUZSxV5UgN+HwyIShrR6PV+c=
Subject key identifier: CE:43:56:D1:44:55:27:56:8D:F9:45:38:02:25:83:CF:ED:34:4E:61
Certificate issuer: /CN=880369c01e0f62570710f7b702302928250f65da
Certificate serial: 0188208678E54E3AC6D646570BA9C553F206
Authority key identifier: 88:03:69:C0:1E:0F:62:57:07:10:F7:B7:02:30:29:28:25:0F:65:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iANpwB4PYlcHEPe3AjApKCUPZdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/zkNW0URVJ1aN-UU4AiWDz-00TmE.roa
Signing time: Mon 15 May 2023 17:47:43 +0000
ROA not before: Mon 15 May 2023 17:47:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 146.19.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:78:e5:4e:3a:c6:d6:46:57:0b:a9:c5:53:f2:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880369c01e0f62570710f7b702302928250f65da
Validity
Not Before: May 15 17:47:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce4356d1445527568df94538022583cfed344e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7b:bf:90:31:9e:69:f2:8b:05:89:c4:fc:2d:
f4:63:ac:48:c6:47:dc:d6:76:47:f7:fe:34:6d:0c:
87:c5:af:73:20:59:a5:96:7b:eb:a5:fd:7c:de:0a:
a5:ad:a1:e6:10:8f:82:92:6f:d1:3a:52:a7:a0:92:
d0:2e:32:29:92:27:0d:87:db:5d:ab:ad:e1:c2:74:
d2:20:0d:ea:ae:26:fe:9c:71:8a:e5:fd:e2:e7:da:
40:71:59:b2:6d:4c:7c:58:bb:05:34:a6:2d:06:a9:
f0:e9:36:b2:b1:3b:e5:f4:5f:30:cf:bd:38:40:5a:
f6:b1:09:b2:47:00:a8:87:6b:01:44:1f:bd:61:81:
81:fc:46:aa:71:33:b2:0c:45:2b:fd:c0:ff:95:ec:
a5:9e:61:78:a6:a5:c2:dd:07:a6:de:44:ab:47:1f:
0c:ad:7a:6a:64:59:e7:75:85:19:31:d1:40:2c:72:
14:ce:d3:ab:a0:6c:98:01:02:66:98:0b:2b:55:4c:
46:9d:fd:c2:1e:9e:8f:b7:34:86:74:47:81:3e:f7:
d0:7b:3e:ed:72:3c:62:5e:f7:d5:84:28:2a:8e:44:
b9:b2:86:30:70:cc:54:6c:c8:40:a6:76:b2:e4:f3:
30:85:86:e4:8d:e5:9e:09:fa:95:55:54:81:5f:de:
61:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:43:56:D1:44:55:27:56:8D:F9:45:38:02:25:83:CF:ED:34:4E:61
X509v3 Authority Key Identifier:
keyid:88:03:69:C0:1E:0F:62:57:07:10:F7:B7:02:30:29:28:25:0F:65:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iANpwB4PYlcHEPe3AjApKCUPZdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/zkNW0URVJ1aN-UU4AiWDz-00TmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cbefb-42a8-47e4-b484-bcede3bea77e/1/iANpwB4PYlcHEPe3AjApKCUPZdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.67.0/24
Signature Algorithm: sha256WithRSAEncryption
af:11:3f:d9:b5:84:45:d5:e4:57:3e:58:c8:d9:a5:78:d2:ed:
42:13:74:b3:6b:82:33:11:1c:7b:c0:2f:2e:fa:92:8f:02:13:
63:45:48:1e:ae:6b:13:17:55:96:95:91:23:bc:41:2a:cb:b1:
53:dc:66:9f:72:35:e1:d7:55:3e:8f:c0:71:1e:0f:c1:e1:c7:
02:fc:93:7c:5c:69:bf:71:06:f5:43:89:44:53:ff:ea:d4:a3:
46:08:1d:9e:f0:b2:af:d5:81:92:d5:ac:21:39:af:b9:7b:26:
36:a6:9a:d7:39:a9:c1:dd:df:68:71:25:f0:1b:13:32:d1:7d:
e4:0d:4a:99:a5:cf:0b:31:b6:a2:7f:a2:77:88:21:2e:5e:de:
16:70:94:5f:9a:90:fc:d4:f4:4b:83:1d:33:06:b3:20:be:95:
1a:94:cd:78:c4:01:80:f3:25:ee:2e:ea:9c:cb:fa:9a:4e:90:
13:bf:9c:c4:0c:8b:f1:24:e2:90:84:a3:e3:54:1e:1c:bf:70:
82:45:2d:11:6f:07:13:d1:52:01:ea:92:10:a1:b9:13:58:14:
39:f5:0f:d3:4d:29:cb:3b:d9:dd:e6:76:c1:92:37:9b:b2:94:
30:6d:a3:f3:c5:e4:84:d6:38:7c:5b:45:d0:3a:77:e6:0f:37:
d9:11:e6:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:45 2023 by rpki-client on console.sobornost.net