Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/182104-4570-48ce-a97d-96eb49d1955c/1/3lQaMGQTFdKgoYKfhJGS2cR5UCI.roa
File: 3lQaMGQTFdKgoYKfhJGS2cR5UCI.roa (raw, json)
Hash identifier: 2yvAVfhX17hwz2GCXfriyYcdXEnMXZZEDAdqs0j3j68=
Subject key identifier: DE:54:1A:30:64:13:15:D2:A0:A1:82:9F:84:91:92:D9:C4:79:50:22
Certificate issuer: /CN=eba85586b991cf70e0af19c03a4376e27d026f43
Certificate serial: 0187297B7355A11CFBF828E5341308597896
Authority key identifier: EB:A8:55:86:B9:91:CF:70:E0:AF:19:C0:3A:43:76:E2:7D:02:6F:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/66hVhrmRz3DgrxnAOkN24n0Cb0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/182104-4570-48ce-a97d-96eb49d1955c/1/3lQaMGQTFdKgoYKfhJGS2cR5UCI.roa
Signing time: Tue 28 Mar 2023 18:29:29 +0000
ROA not before: Tue 28 Mar 2023 18:29:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 146.19.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:29:7b:73:55:a1:1c:fb:f8:28:e5:34:13:08:59:78:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eba85586b991cf70e0af19c03a4376e27d026f43
Validity
Not Before: Mar 28 18:29:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de541a30641315d2a0a1829f849192d9c4795022
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:38:e6:f2:72:ab:11:1c:2d:77:54:4f:fc:ac:
2f:17:99:32:64:34:19:33:6d:cd:85:b4:e8:2f:15:
f2:42:60:2d:c8:23:be:53:5c:57:52:10:71:17:72:
9d:a8:82:52:22:fb:08:d8:52:63:58:99:11:be:5f:
cb:0f:3f:24:08:f6:e6:7e:5f:aa:72:24:c7:0e:4e:
aa:61:fe:81:5d:b2:7e:db:65:7a:34:13:77:0f:97:
4e:4f:e5:d9:b1:68:5a:70:ae:e7:d7:6c:31:ac:c4:
e4:ca:fa:a6:25:9e:c9:71:03:4b:ea:94:e7:9a:6e:
14:49:27:fc:a8:78:11:25:48:d6:94:44:b8:b9:ba:
a6:d4:2e:56:b9:a2:ba:2f:88:45:b5:b2:a1:59:e4:
43:5d:2f:d9:1e:23:a1:e5:4d:72:37:cd:71:8a:8a:
ed:a7:04:ee:33:4b:42:e9:7a:1e:a7:e0:0e:1a:f4:
5d:42:09:a5:32:e3:04:42:9c:da:54:61:79:0c:db:
df:53:66:23:9a:66:d4:f2:d6:c1:73:4d:94:01:46:
2b:6e:11:b1:92:7b:a5:f8:67:d4:1c:41:e9:c5:d2:
e6:98:81:ee:10:d1:20:51:7a:b9:ca:e2:b7:c8:fd:
00:b5:9f:a6:44:12:d9:28:c8:be:c8:66:dd:93:a4:
14:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:54:1A:30:64:13:15:D2:A0:A1:82:9F:84:91:92:D9:C4:79:50:22
X509v3 Authority Key Identifier:
keyid:EB:A8:55:86:B9:91:CF:70:E0:AF:19:C0:3A:43:76:E2:7D:02:6F:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/66hVhrmRz3DgrxnAOkN24n0Cb0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/182104-4570-48ce-a97d-96eb49d1955c/1/3lQaMGQTFdKgoYKfhJGS2cR5UCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/182104-4570-48ce-a97d-96eb49d1955c/1/66hVhrmRz3DgrxnAOkN24n0Cb0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.149.0/24
Signature Algorithm: sha256WithRSAEncryption
34:e9:66:81:74:ac:43:f0:5d:9e:05:48:0b:ea:8d:ae:a8:2d:
05:dd:9b:90:b6:72:2d:f1:bf:1a:ff:2f:02:84:82:f4:73:57:
93:6f:5a:9e:8b:f1:9e:af:9f:14:ee:c4:10:28:57:ad:8a:60:
c9:31:68:42:3f:ba:18:a1:d1:0a:1b:e4:c0:48:7f:90:fb:b1:
2c:54:5e:5b:a8:5f:52:4a:27:e9:4c:91:ad:b4:89:4f:1c:52:
94:47:90:6d:1f:27:a7:1c:89:ec:ce:85:a3:fb:b4:ff:a6:58:
c0:e0:f3:25:8b:06:54:5b:39:53:e2:10:53:54:a3:49:fd:35:
f4:a7:51:7a:5f:af:b5:91:d2:61:b8:11:7a:14:93:fc:9c:f3:
05:e8:6d:ee:f4:81:c9:9e:55:de:39:64:84:68:0e:fb:41:99:
47:d4:ea:9f:bf:f2:04:87:f3:02:d1:0c:34:3a:51:c8:3c:22:
3d:ff:79:fd:c7:94:12:38:a4:65:20:c0:c5:15:1b:9b:3b:d2:
c8:46:ac:0c:59:7d:87:0b:0c:ac:c7:7e:d1:26:39:ca:87:63:
1e:24:a0:01:53:1f:51:ee:f7:cb:68:da:76:11:62:d0:3b:07:
60:ed:fb:13:21:bb:dc:fc:53:97:6a:b6:2f:f8:55:47:bc:14:
eb:e7:05:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:41 2023 by rpki-client on console.sobornost.net