Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/4ba0cd-5b41-4110-9d14-7056306094f3/1/ln6wMqMmO-QwuNwUT9Q7HpElGl0.roa
File: ln6wMqMmO-QwuNwUT9Q7HpElGl0.roa (raw, json)
Hash identifier: MQ72KmoJZrjz0HVsZ9W7ppKK/dq61HhHjrQlIAj+qxE=
Subject key identifier: 96:7E:B0:32:A3:26:3B:E4:30:B8:DC:14:4F:D4:3B:1E:91:25:1A:5D
Certificate issuer: /CN=1802617b1b5a934464c3b6a928fc231a07c413f2
Certificate serial: 023AAFE8
Authority key identifier: 18:02:61:7B:1B:5A:93:44:64:C3:B6:A9:28:FC:23:1A:07:C4:13:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GAJhextak0Rkw7apKPwjGgfEE_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/4ba0cd-5b41-4110-9d14-7056306094f3/1/ln6wMqMmO-QwuNwUT9Q7HpElGl0.roa
Signing time: Sat 01 Jan 2022 02:51:01 +0000
ROA not before: Sat 01 Jan 2022 02:51:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 5.133.100.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37400552 (0x23aafe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1802617b1b5a934464c3b6a928fc231a07c413f2
Validity
Not Before: Jan 1 02:51:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=967eb032a3263be430b8dc144fd43b1e91251a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ea:49:e9:5b:9b:10:97:18:b9:a0:6b:07:e9:
85:76:14:1a:d4:c9:1b:7b:f6:17:31:35:af:a4:c5:
50:91:4c:73:95:17:b8:22:b0:eb:a4:dd:19:14:d2:
79:d8:a4:09:42:03:a2:9c:a3:b9:f8:9d:9f:00:ae:
23:d0:71:77:a8:e9:b5:d0:ac:70:5d:3f:0d:ae:0b:
a4:b7:55:26:cc:12:df:0f:e6:f9:3f:83:ae:72:f3:
d4:5a:b8:b6:43:eb:73:0d:e3:8f:ef:da:32:f4:4b:
a3:b2:b9:87:c8:3b:37:4a:85:48:67:c2:88:77:d3:
85:3b:88:e4:56:fa:e3:70:70:09:54:86:79:5e:9d:
f0:8c:ea:e0:d7:29:03:59:c4:21:35:7d:df:30:64:
9d:57:b4:e7:6d:40:70:8e:89:eb:52:6c:c6:87:e7:
fc:75:4f:58:1c:fa:dd:ea:04:1c:0f:2c:1c:18:7b:
c1:5e:1a:25:da:ae:d1:91:89:52:7d:a4:0d:18:5c:
f3:5d:1c:02:06:4f:90:df:99:15:cb:04:a3:ce:47:
dd:f9:7f:ae:02:ff:91:15:5e:d6:36:09:1e:9e:0d:
be:61:ff:22:80:5c:b4:e2:ae:24:aa:7a:46:ad:9d:
af:27:99:1c:f8:e5:ac:02:00:e3:c0:95:ba:cc:18:
35:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:7E:B0:32:A3:26:3B:E4:30:B8:DC:14:4F:D4:3B:1E:91:25:1A:5D
X509v3 Authority Key Identifier:
keyid:18:02:61:7B:1B:5A:93:44:64:C3:B6:A9:28:FC:23:1A:07:C4:13:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GAJhextak0Rkw7apKPwjGgfEE_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/4ba0cd-5b41-4110-9d14-7056306094f3/1/ln6wMqMmO-QwuNwUT9Q7HpElGl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/4ba0cd-5b41-4110-9d14-7056306094f3/1/GAJhextak0Rkw7apKPwjGgfEE_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.100.0/22
Signature Algorithm: sha256WithRSAEncryption
53:3b:8f:72:f7:ca:32:8e:eb:6d:c6:49:2c:53:20:7b:75:d2:
63:7d:e1:9a:9b:54:36:57:6f:29:ca:1c:6c:bc:4b:80:ba:50:
5d:a8:49:29:43:3a:ce:33:ff:c7:5a:d9:f2:a7:27:b1:b4:f4:
30:08:02:45:3d:94:2c:31:21:03:37:3f:5a:bf:85:d2:e1:3b:
aa:d6:50:22:45:a7:10:78:ee:a2:ea:e6:50:a9:43:ed:c8:3c:
12:32:71:42:4d:27:12:95:a6:d4:4a:88:2b:21:46:84:b3:22:
0c:dc:df:89:ed:49:d2:76:9b:24:20:ab:c1:23:5d:d5:29:08:
3c:8f:d9:f8:ae:60:84:c5:47:c5:bf:50:84:f4:de:a8:3f:1e:
af:42:e5:fb:1d:9a:65:a0:d8:be:23:39:46:08:ff:17:2b:90:
20:b3:b1:92:e4:6f:fe:78:e6:bd:22:61:8b:da:aa:e4:ca:2a:
b0:c8:a3:f8:96:ac:c0:e3:f1:58:50:20:1f:ec:cb:45:f3:9d:
b9:50:76:30:ae:05:b4:82:c7:bd:38:0f:93:95:01:e5:da:8a:
6c:52:44:74:9c:ed:08:e7:0a:49:70:74:72:fb:98:2b:76:db:
b9:9c:37:3f:6d:a9:2a:3f:c3:81:74:8a:78:17:b6:55:a6:1f:
c3:bb:ee:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:17 2023 by rpki-client on console-ams.rpki-client.org