Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/x_oyrC8KMwRCQxiF1ajzMr5lKQM.roa
File: x_oyrC8KMwRCQxiF1ajzMr5lKQM.roa (raw, json)
Hash identifier: kZKQznc/kBEy/lk5g3DBJHD5MjEsvMQygSjdCUBkX2k=
Subject key identifier: C7:FA:32:AC:2F:0A:33:04:42:43:18:85:D5:A8:F3:32:BE:65:29:03
Certificate issuer: /CN=5dddc965c3e90a82200f4afbb92991904d06422c
Certificate serial: 01856BE5B02CBA0F51424A2309FBFA312D03
Authority key identifier: 5D:DD:C9:65:C3:E9:0A:82:20:0F:4A:FB:B9:29:91:90:4D:06:42:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd3JZcPpCoIgD0r7uSmRkE0GQiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/x_oyrC8KMwRCQxiF1ajzMr5lKQM.roa
Signing time: Sun 01 Jan 2023 05:54:53 +0000
ROA not before: Sun 01 Jan 2023 05:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59253
IP address blocks: 146.19.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:b0:2c:ba:0f:51:42:4a:23:09:fb:fa:31:2d:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dddc965c3e90a82200f4afbb92991904d06422c
Validity
Not Before: Jan 1 05:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7fa32ac2f0a330442431885d5a8f332be652903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:75:c4:7b:bc:42:b2:d2:c3:d7:41:4c:52:2f:
ea:bb:4c:64:f4:40:42:e0:61:11:1c:b7:a4:63:98:
fa:e5:69:67:5f:4a:10:d8:99:55:67:20:66:7f:69:
b4:08:76:2f:a0:e4:58:82:90:70:c0:cd:66:83:d8:
82:53:35:a4:31:1a:6c:5b:8e:1f:f6:3c:d3:19:3a:
52:e6:69:e4:a0:65:78:94:75:57:82:3f:d7:cf:5f:
f0:7b:d8:98:b1:cb:2c:2a:ae:87:ce:fa:19:2c:a5:
c4:69:29:1d:60:e7:a9:a5:40:92:5f:ef:4d:9e:1d:
03:5a:89:0d:ea:3e:4a:90:b5:5a:14:fb:86:7e:a4:
e5:ed:ed:47:61:37:94:fa:da:d1:c1:cb:10:00:cc:
e1:eb:90:fa:85:51:c8:f8:15:ee:98:65:c2:c9:35:
ad:d9:41:f1:ba:e8:d8:9e:87:f1:3f:9f:5f:76:23:
da:ac:b1:cf:61:dd:09:c2:4a:10:5f:4f:78:51:f8:
e8:9d:ca:54:97:5d:dc:56:db:b1:ef:e5:7e:5f:24:
ec:5f:09:b8:1e:be:85:58:94:70:3b:3e:9c:5f:6a:
14:b1:29:ba:ca:be:7c:9f:44:77:e7:4d:f2:34:04:
8f:70:c1:b5:39:11:98:02:de:2f:cb:fa:38:95:ad:
61:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:FA:32:AC:2F:0A:33:04:42:43:18:85:D5:A8:F3:32:BE:65:29:03
X509v3 Authority Key Identifier:
keyid:5D:DD:C9:65:C3:E9:0A:82:20:0F:4A:FB:B9:29:91:90:4D:06:42:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd3JZcPpCoIgD0r7uSmRkE0GQiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/x_oyrC8KMwRCQxiF1ajzMr5lKQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/de197f-a171-4ec3-b137-b47e7f393cee/1/Xd3JZcPpCoIgD0r7uSmRkE0GQiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.7.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:13:7d:cf:9f:94:e4:1c:5a:ba:be:9c:bd:ef:81:5a:b2:db:
5e:78:8e:c6:3e:67:aa:7f:6c:c9:4c:0a:12:c1:09:33:b2:0f:
b6:03:9e:cd:2f:a2:ba:9b:af:a5:ca:39:ce:e6:80:59:07:1e:
71:63:51:e5:77:c3:02:61:4d:15:04:a5:50:91:50:18:d5:16:
70:31:5f:56:bc:f0:a2:dc:b0:d4:b8:ce:21:e9:b3:a7:b0:38:
79:8e:b8:2d:a6:1d:0a:e0:12:69:61:47:ed:c9:92:bb:ab:68:
ed:0e:4d:48:a8:2f:c4:8e:1f:2b:6e:58:6e:2b:ce:c7:21:40:
d6:06:4c:4f:d7:64:17:ce:64:2d:6c:c2:d6:6b:58:a0:0c:a9:
54:1e:3e:7d:ac:47:80:e8:00:17:04:cf:c7:54:c9:4b:de:03:
ad:86:be:a4:43:0e:b5:16:5b:82:d9:ad:f5:47:19:16:e7:b5:
de:04:d3:8f:3d:77:1d:d4:d4:f2:4f:dc:62:7a:d8:d0:ec:7d:
8c:db:c5:a8:0c:6d:e9:b7:d3:84:a8:d2:30:b3:42:6e:8d:b6:
9d:fa:75:37:3d:44:cf:e0:e8:93:83:73:26:47:89:96:31:f5:
0b:2f:cd:19:58:a9:0d:f5:9f:ab:b2:65:54:cf:26:cd:ac:93:
5c:d2:36:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:08 2023 by rpki-client on console.sobornost.net