Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/mAMj9WWS6IopyDb7lwxXNV1VJMo.roa
File: mAMj9WWS6IopyDb7lwxXNV1VJMo.roa (raw, json)
Hash identifier: E6ADEjPF3iK2POVH0Fr6XmDTsL8b7hpthFg1jAK8jrY=
Subject key identifier: 98:03:23:F5:65:92:E8:8A:29:C8:36:FB:97:0C:57:35:5D:55:24:CA
Certificate issuer: /CN=6bef53642cd811cdfb5847fb1ad3ed2b3600233f
Certificate serial: 01856E141E580B84C9C7B0426630E9705E81
Authority key identifier: 6B:EF:53:64:2C:D8:11:CD:FB:58:47:FB:1A:D3:ED:2B:36:00:23:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-9TZCzYEc37WEf7GtPtKzYAIz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/mAMj9WWS6IopyDb7lwxXNV1VJMo.roa
Signing time: Sun 01 Jan 2023 16:04:50 +0000
ROA not before: Sun 01 Jan 2023 16:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56309
IP address blocks: 45.136.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:1e:58:0b:84:c9:c7:b0:42:66:30:e9:70:5e:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bef53642cd811cdfb5847fb1ad3ed2b3600233f
Validity
Not Before: Jan 1 16:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=980323f56592e88a29c836fb970c57355d5524ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:90:f9:75:be:54:90:03:4d:93:01:55:90:62:
44:b3:e1:c9:93:4c:c8:06:15:e7:0d:f8:6a:c7:2f:
4a:8c:70:f9:4a:b0:71:6a:57:46:dc:ae:59:40:ed:
b2:ad:76:02:e5:fe:97:a6:6a:aa:10:c9:d1:ff:c8:
2f:64:5d:6f:52:da:bc:c6:83:60:e4:f0:c4:53:0e:
7d:73:3c:64:b1:a0:a2:c8:73:6e:ef:ef:11:5f:17:
a4:f9:50:cf:80:d2:7a:58:c9:18:a1:9c:44:ae:c2:
79:f8:55:81:db:9b:a1:a0:72:57:ce:21:43:b3:51:
e8:0a:c8:2e:26:ef:ae:65:6f:87:60:e3:95:19:7e:
53:a6:14:e9:d3:85:61:0c:fe:55:85:d1:0a:ca:e9:
c2:ab:29:44:94:c9:36:d5:60:b4:62:4c:a7:07:48:
0c:59:d2:de:57:34:4f:0b:c4:b1:81:d1:05:0f:fc:
d3:c8:f3:4a:11:fe:61:c3:b2:1e:0f:b4:24:d5:36:
03:4b:ca:5f:45:b9:6a:03:11:36:af:1c:5a:7f:c0:
23:da:11:ec:61:30:7d:62:25:70:64:c9:f2:92:aa:
88:a5:29:fd:8a:1d:6f:63:b4:79:b6:87:5c:23:10:
b2:a5:78:46:21:f6:40:05:9c:2a:14:35:ef:fa:a5:
b8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:03:23:F5:65:92:E8:8A:29:C8:36:FB:97:0C:57:35:5D:55:24:CA
X509v3 Authority Key Identifier:
keyid:6B:EF:53:64:2C:D8:11:CD:FB:58:47:FB:1A:D3:ED:2B:36:00:23:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-9TZCzYEc37WEf7GtPtKzYAIz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/mAMj9WWS6IopyDb7lwxXNV1VJMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/82d1bc-e92b-4b08-83bd-faac263f8e67/1/a-9TZCzYEc37WEf7GtPtKzYAIz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.236.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:f2:7e:15:bd:cb:31:ed:1c:27:34:c1:83:4f:2e:e3:4b:e3:
78:24:ec:e0:d5:0c:86:a7:01:af:6a:06:c2:1b:47:a1:13:71:
3b:11:4f:37:46:b8:c3:35:4d:f7:d5:30:08:7a:8f:90:3f:d5:
af:bd:38:1b:6b:10:23:5f:fb:ec:68:15:6f:84:db:ab:80:a0:
94:f6:23:d1:5f:cc:1b:b4:88:f9:df:8f:e6:1c:dc:3f:69:56:
1c:89:c1:e1:c8:03:2a:18:26:0d:1b:e6:06:55:e7:0f:90:f6:
26:23:1d:56:33:65:30:36:8f:71:2d:88:fb:5a:9e:e3:e5:66:
eb:81:9e:da:2d:00:0c:4e:b6:d1:79:62:d1:57:9e:99:e3:8e:
f5:49:54:30:c6:ad:1d:72:e0:d2:c0:e5:12:4f:3a:f7:6c:ae:
c7:b8:6d:44:20:79:b8:e2:a1:fc:ae:3d:fb:8f:f0:86:90:18:
b8:92:fb:34:d1:75:b2:e2:4c:07:3c:98:75:5e:88:dc:27:52:
d0:aa:16:07:0a:e3:a9:fa:a2:f1:ca:f1:96:3c:6a:54:df:dd:
58:0b:c4:65:d2:4f:0d:71:30:ca:d3:17:2f:b4:58:ad:98:b6:
4a:eb:bb:cf:be:b1:d8:d0:b4:83:dc:7f:9f:e3:17:0a:79:f7:
bb:4c:ee:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:47 2024 by rpki-client on console-ams.rpki-client.org