Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/66dae3-7e17-4eaa-bc10-20b503cf8cac/1/AtHw8em0EddZ28RmoeSL4Z85UrI.roa
File: AtHw8em0EddZ28RmoeSL4Z85UrI.roa (raw, json)
Hash identifier: VYWSx4QwLzPpH67a0McHBPPY9d0qb89y1k+bMRyj6dQ=
Subject key identifier: 02:D1:F0:F1:E9:B4:11:D7:59:DB:C4:66:A1:E4:8B:E1:9F:39:52:B2
Certificate issuer: /CN=d971d4b33924723dd64ee7172555353cad2d21f4
Certificate serial: 0183F9EB090D973671ABA6362A8D91C946AC
Authority key identifier: D9:71:D4:B3:39:24:72:3D:D6:4E:E7:17:25:55:35:3C:AD:2D:21:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2XHUszkkcj3WTucXJVU1PK0tIfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/66dae3-7e17-4eaa-bc10-20b503cf8cac/1/AtHw8em0EddZ28RmoeSL4Z85UrI.roa
Signing time: Fri 21 Oct 2022 09:41:13 +0000
ROA not before: Fri 21 Oct 2022 09:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35815
IP address blocks: 45.9.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f9:eb:09:0d:97:36:71:ab:a6:36:2a:8d:91:c9:46:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d971d4b33924723dd64ee7172555353cad2d21f4
Validity
Not Before: Oct 21 09:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02d1f0f1e9b411d759dbc466a1e48be19f3952b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6b:d6:d3:39:00:42:74:55:52:20:c2:c4:c6:
88:2b:75:8b:4b:cb:fa:e7:31:a1:fc:72:16:c8:6d:
5d:6e:f0:c3:21:c0:f0:e1:38:34:f2:d3:cd:e0:0d:
0d:a8:5b:6f:6a:d5:6c:5c:46:83:4a:58:a0:98:1f:
e0:59:37:28:4d:03:18:1a:ee:03:f7:b4:72:eb:cf:
84:a8:49:49:5f:b7:a9:2b:46:58:c0:bf:35:30:59:
cc:ac:13:64:a9:cf:9b:3b:ca:c4:09:b0:eb:8b:7b:
bf:a5:ce:0d:cc:ad:76:89:e5:66:99:63:52:a7:2f:
ba:c1:77:d3:91:85:77:7b:db:5d:a1:7e:81:7f:88:
c6:05:c6:26:70:c9:29:6b:2f:9f:e9:57:91:3c:05:
79:3f:3e:76:c1:d1:c4:7c:15:c0:c8:2e:cc:28:33:
57:61:24:76:09:d2:ee:7b:49:11:cd:f5:cb:75:af:
c6:21:3a:fb:e1:76:29:cf:83:58:c3:49:4c:d4:01:
c1:54:a2:91:fe:a5:4f:ee:28:b7:60:b1:3b:41:57:
4f:ca:ef:b9:97:8e:33:fd:ad:e7:6b:fe:92:44:7c:
af:0f:75:da:d4:60:e5:de:b2:dd:98:80:83:25:53:
63:81:dc:a8:e7:66:2d:b7:88:41:55:29:ab:53:14:
e0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D1:F0:F1:E9:B4:11:D7:59:DB:C4:66:A1:E4:8B:E1:9F:39:52:B2
X509v3 Authority Key Identifier:
keyid:D9:71:D4:B3:39:24:72:3D:D6:4E:E7:17:25:55:35:3C:AD:2D:21:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2XHUszkkcj3WTucXJVU1PK0tIfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/66dae3-7e17-4eaa-bc10-20b503cf8cac/1/AtHw8em0EddZ28RmoeSL4Z85UrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/66dae3-7e17-4eaa-bc10-20b503cf8cac/1/2XHUszkkcj3WTucXJVU1PK0tIfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.212.0/22
Signature Algorithm: sha256WithRSAEncryption
45:40:af:12:fb:82:b1:9c:5b:38:b8:a9:f2:73:3a:fe:35:3c:
c9:df:a6:2a:be:81:0a:17:39:43:9b:e0:31:0b:0d:b8:a9:2b:
02:ed:9c:19:7f:2a:af:da:40:32:f3:55:99:3b:61:63:08:f8:
d6:15:c0:8d:46:0d:b8:d7:34:c7:3d:be:cb:60:d5:c6:6d:dd:
11:4a:29:04:92:7e:b2:f9:2d:bb:1b:9d:dc:e3:25:a7:f1:f9:
7f:1f:28:c0:ab:b1:39:ba:10:b2:a0:38:7f:15:de:71:df:ad:
63:75:fe:e7:ab:5c:1c:58:6a:90:e1:ba:29:17:5f:75:28:8d:
51:90:33:27:14:22:05:b7:92:74:d1:d5:33:69:d6:11:78:98:
6a:4e:dc:69:60:8d:c0:22:df:74:13:f5:30:87:18:03:cb:bb:
bf:2c:a2:56:3b:27:2d:fa:e2:aa:df:76:ce:02:46:c0:11:f3:
9b:d0:99:8e:d7:9f:63:a6:2d:16:c3:a2:d6:cf:da:c0:91:55:
87:f6:36:15:d0:23:f4:a4:d4:b4:01:b8:0f:7b:15:bd:4f:db:
9c:ea:59:6f:b3:63:36:59:14:e0:a7:e6:d1:ad:ba:fa:ef:15:
94:22:5f:08:7b:70:57:35:6c:fb:d4:9f:f1:94:37:8a:0d:3c:
9b:f8:bc:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:25 2023 by rpki-client on console-ams.rpki-client.org