Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/hDXwH1fKFE-AZPk2V5NHDQQ6w0c.roa
File: hDXwH1fKFE-AZPk2V5NHDQQ6w0c.roa (raw, json)
Hash identifier: Jz9Iq2dzAkqLLuT+LVy9ay5d6xDg44kyTjNhkO/a9W8=
Subject key identifier: 84:35:F0:1F:57:CA:14:4F:80:64:F9:36:57:93:47:0D:04:3A:C3:47
Certificate issuer: /CN=6bef53642cd811cdfb5847fb1ad3ed2b3600233f
Certificate serial: 01850A655E14646908A335470643BD04CF25
Authority key identifier: 6B:EF:53:64:2C:D8:11:CD:FB:58:47:FB:1A:D3:ED:2B:36:00:23:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-9TZCzYEc37WEf7GtPtKzYAIz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/hDXwH1fKFE-AZPk2V5NHDQQ6w0c.roa
Signing time: Tue 13 Dec 2022 07:31:33 +0000
ROA not before: Tue 13 Dec 2022 07:31:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9335
IP address blocks: 45.136.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0a:65:5e:14:64:69:08:a3:35:47:06:43:bd:04:cf:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bef53642cd811cdfb5847fb1ad3ed2b3600233f
Validity
Not Before: Dec 13 07:31:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8435f01f57ca144f8064f9365793470d043ac347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:91:c1:5a:a8:9b:bb:c6:0f:ed:45:62:80:63:
28:ea:27:c9:ec:9b:26:98:9c:5c:d9:a7:aa:64:00:
a6:d8:92:7f:27:f0:0a:96:f3:1b:e3:5c:32:bb:e8:
19:99:fa:b4:15:00:b1:f6:fa:ab:d9:d1:07:d7:89:
5e:11:93:bd:f0:61:b7:40:d5:75:62:32:b4:76:f0:
1f:a7:40:c6:bb:0c:5f:0a:46:2b:a1:cf:0c:0d:d5:
3e:68:84:ff:7a:f9:82:d0:d5:7f:41:da:95:c5:03:
36:ab:0b:54:6a:68:bc:63:71:37:2c:74:26:e1:79:
7e:6b:84:3b:11:d4:d3:65:fc:44:ab:02:30:0b:37:
41:c4:56:c8:a9:22:35:e9:7c:d9:07:35:05:47:45:
1f:09:8d:ff:4f:33:8b:d3:4a:3d:ed:ed:81:fb:3a:
97:ef:6b:ad:7e:fb:2b:88:b2:80:59:a8:d6:23:06:
29:29:15:f9:5e:1d:1b:4d:11:81:6f:43:29:83:e5:
f5:a5:12:4a:d3:13:08:11:1e:7a:21:8f:50:14:ba:
3a:a1:dc:62:bd:c8:e5:70:ae:21:01:19:b8:e9:48:
57:d3:e7:64:86:b2:8b:ae:26:56:50:77:a2:5d:f2:
85:02:9a:24:dd:38:46:66:e3:65:a1:49:c0:4c:e9:
c9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:35:F0:1F:57:CA:14:4F:80:64:F9:36:57:93:47:0D:04:3A:C3:47
X509v3 Authority Key Identifier:
keyid:6B:EF:53:64:2C:D8:11:CD:FB:58:47:FB:1A:D3:ED:2B:36:00:23:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-9TZCzYEc37WEf7GtPtKzYAIz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/hDXwH1fKFE-AZPk2V5NHDQQ6w0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/a-9TZCzYEc37WEf7GtPtKzYAIz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.236.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:9f:49:05:5c:b8:f4:7e:4f:b2:3b:0f:7d:81:ea:71:25:fe:
0d:c8:f2:2c:20:84:76:e8:77:31:48:49:69:93:29:bc:c6:58:
74:d6:30:5d:1b:42:4c:ef:da:8c:1f:99:71:64:73:02:c6:17:
99:0e:ba:c3:1a:b8:97:06:7e:f5:48:40:9e:84:3f:e8:6d:f9:
a7:d4:d3:c3:f0:91:d4:76:51:83:de:04:ff:34:f6:4c:a8:ee:
d7:a4:14:14:b7:64:48:e3:af:45:b3:dd:dd:19:5e:c0:1a:e7:
e0:e1:d9:4d:2b:f5:1c:e9:40:5b:9b:81:87:e3:d5:84:3a:00:
b7:f0:d2:38:ed:7b:13:ce:20:d5:89:5c:d8:48:5c:2a:a4:2a:
73:61:a4:66:40:2b:d7:b3:be:fa:a1:dc:79:0f:6c:12:9d:a5:
36:80:12:c0:86:eb:19:e6:5a:b2:9f:04:3f:40:e8:a7:41:9f:
dd:2e:d4:c4:73:2e:7b:8e:16:88:00:aa:f0:27:d8:5a:16:80:
ea:a0:fc:5a:4e:c8:0d:7a:d5:00:70:3a:19:bf:4d:59:22:64:
43:ca:a3:7d:77:ca:b9:b7:82:b5:db:72:18:8a:14:6c:ff:01:
e7:a4:d6:70:cd:70:13:29:f8:cc:96:8e:0b:fa:21:eb:9f:35:
74:f9:45:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:29 2024 by rpki-client on console-fra.rpki-client.org