Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/4f0ae2-27a2-4e70-a659-9e6e4402753f/1/M8p_6JZpABWFBYPIG9TkxwUk-F0.roa
File: M8p_6JZpABWFBYPIG9TkxwUk-F0.roa (raw, json)
Hash identifier: Em4WqgkYMPpyx99yhclGM/2iAR9BnHKeY7Pd6F4//3o=
Subject key identifier: 33:CA:7F:E8:96:69:00:15:85:05:83:C8:1B:D4:E4:C7:05:24:F8:5D
Certificate issuer: /CN=73d06ebd39aa8de74b56532c9dab40694fa1c8e8
Certificate serial: 018570395FA6D3267D3CCF027F454C9544F2
Authority key identifier: 73:D0:6E:BD:39:AA:8D:E7:4B:56:53:2C:9D:AB:40:69:4F:A1:C8:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9BuvTmqjedLVlMsnatAaU-hyOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/4f0ae2-27a2-4e70-a659-9e6e4402753f/1/M8p_6JZpABWFBYPIG9TkxwUk-F0.roa
Signing time: Mon 02 Jan 2023 02:04:46 +0000
ROA not before: Mon 02 Jan 2023 02:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 45.150.228.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:5f:a6:d3:26:7d:3c:cf:02:7f:45:4c:95:44:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73d06ebd39aa8de74b56532c9dab40694fa1c8e8
Validity
Not Before: Jan 2 02:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33ca7fe896690015850583c81bd4e4c70524f85d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:cb:3b:d8:6f:8c:be:9c:47:b8:3d:70:da:98:
2b:4b:88:de:f8:06:82:5d:36:1b:ce:3f:f7:83:fe:
1d:64:00:fa:8d:e4:58:4f:f7:93:8c:5b:c6:13:f0:
82:3e:2a:cb:b8:2b:2d:3e:8e:28:c5:f2:83:04:1c:
94:29:13:1d:c9:02:f2:28:fb:11:66:9e:fd:14:55:
81:58:0a:4e:c2:7e:c5:f5:4c:9c:a5:16:0a:e8:b6:
04:6f:88:f6:1c:ff:42:8e:dd:93:47:5b:b9:cf:01:
17:bc:63:0f:03:de:af:5a:97:8b:87:27:0b:fb:0d:
60:3e:20:c2:74:bd:bf:c5:a7:b9:bf:dd:7f:4c:f8:
1e:42:7a:8f:27:ad:fe:82:41:6b:68:0b:22:f8:87:
d0:f7:0c:80:46:5d:f2:62:df:76:e5:3c:90:cf:b1:
a9:e6:fe:98:1b:af:c8:fe:88:9c:77:57:29:d4:15:
fb:36:c4:b1:2c:48:4d:ec:6c:8a:0c:9a:e5:54:04:
24:ba:33:5f:46:e6:51:08:9d:b7:62:c9:e3:05:60:
ce:fb:2e:7d:de:e6:91:f2:63:75:d7:f7:0d:b5:c2:
7e:14:7e:95:7d:28:97:4c:6e:8e:e4:09:ff:18:07:
5d:06:c8:d6:fe:07:6a:b9:d2:3e:41:3b:82:1a:73:
95:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CA:7F:E8:96:69:00:15:85:05:83:C8:1B:D4:E4:C7:05:24:F8:5D
X509v3 Authority Key Identifier:
keyid:73:D0:6E:BD:39:AA:8D:E7:4B:56:53:2C:9D:AB:40:69:4F:A1:C8:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9BuvTmqjedLVlMsnatAaU-hyOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/4f0ae2-27a2-4e70-a659-9e6e4402753f/1/M8p_6JZpABWFBYPIG9TkxwUk-F0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/4f0ae2-27a2-4e70-a659-9e6e4402753f/1/c9BuvTmqjedLVlMsnatAaU-hyOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.228.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:1c:3c:84:6c:eb:0d:8d:d3:d3:4c:88:55:88:d4:84:5a:bc:
0f:ae:f2:7c:73:87:cd:ae:c2:59:21:5a:04:71:a7:7a:35:b4:
1a:66:93:76:7b:ac:91:af:c3:2e:cd:01:70:21:b7:0c:87:28:
f5:b2:c3:81:7a:22:5e:db:57:a4:38:e7:28:f8:a6:ee:e3:42:
4d:47:cd:27:dd:06:3c:c2:0c:53:53:ee:c7:64:bb:76:2d:69:
a6:dc:c3:7d:44:10:be:9c:b1:96:c9:b6:a9:da:aa:cf:1a:36:
2c:3c:e8:d9:c2:53:c3:f6:ef:e0:3e:96:ba:da:a1:71:6c:1c:
c3:de:03:de:16:65:d9:0e:ea:a8:84:d5:98:07:25:94:33:e9:
c0:5d:95:33:bf:bb:77:75:17:9f:b9:54:47:14:ba:8f:8f:67:
cd:fa:a0:10:4a:15:8b:41:35:20:87:6a:07:ad:54:36:50:64:
3c:5b:cf:b7:9b:97:00:ec:f2:1b:99:f7:b6:a2:f8:ea:40:dd:
5b:68:ce:4c:ee:ca:5f:4f:94:17:97:48:d6:2d:51:21:15:a2:
75:8f:58:1d:95:69:e3:ac:f7:f5:22:9a:00:95:2a:da:d3:9c:
0b:ad:4f:1c:6f:fa:e6:d3:6a:3b:12:38:4e:71:d0:ad:68:93:
73:24:d5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-ams.rpki-client.org