Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/E8f7ZxJBm9UzArvmoA0Bh0OyXso.roa
File: E8f7ZxJBm9UzArvmoA0Bh0OyXso.roa (raw, json)
Hash identifier: 45IkFt5cFL6v8jmlg0spBnn9YXxHB3C9jEY8O+PJOXA=
Subject key identifier: 13:C7:FB:67:12:41:9B:D5:33:02:BB:E6:A0:0D:01:87:43:B2:5E:CA
Certificate issuer: /CN=4843a5350d2914f2390bb73d6ac057b358153870
Certificate serial: 0186E44AB745F8C8BC446150723AAD5F8A43
Authority key identifier: 48:43:A5:35:0D:29:14:F2:39:0B:B7:3D:6A:C0:57:B3:58:15:38:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SEOlNQ0pFPI5C7c9asBXs1gVOHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/E8f7ZxJBm9UzArvmoA0Bh0OyXso.roa
Signing time: Wed 15 Mar 2023 08:02:27 +0000
ROA not before: Wed 15 Mar 2023 08:02:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50903
IP address blocks: 45.159.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e4:4a:b7:45:f8:c8:bc:44:61:50:72:3a:ad:5f:8a:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4843a5350d2914f2390bb73d6ac057b358153870
Validity
Not Before: Mar 15 08:02:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13c7fb6712419bd53302bbe6a00d018743b25eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a1:fd:ea:9b:14:d0:39:64:8f:5f:50:a4:ee:
f6:af:77:67:3a:9a:be:56:e2:db:a6:73:a8:f6:ff:
c2:48:f3:47:df:9e:6c:74:2c:6b:82:50:79:c6:8e:
a2:9e:ff:0f:80:72:4b:72:97:d2:09:c1:d4:68:04:
ac:f1:6d:7c:52:72:03:68:2c:a5:ae:c4:28:00:d6:
8b:df:92:27:7e:95:50:f2:f8:b3:43:0a:9a:76:ee:
b1:3b:3e:01:0e:67:8f:a1:18:fb:e9:1b:48:41:f2:
75:04:de:8a:1d:d1:75:17:db:bf:77:3d:84:3f:e4:
a1:e5:8f:ae:c7:ab:9a:ce:27:f0:2a:eb:d3:09:77:
e7:9e:d9:ba:1e:3a:4f:7d:a3:f8:1c:e2:9c:12:27:
c2:75:e2:4d:a2:a6:00:9d:70:8e:d3:81:f3:f1:06:
ca:34:27:fc:7f:54:99:90:b2:e5:ed:3a:03:4b:96:
b0:a6:fe:98:bf:13:eb:1b:fd:4b:27:e5:ab:56:f6:
b2:4a:09:11:e0:84:25:35:ea:66:a1:56:55:69:b1:
0c:ab:00:16:2f:95:1b:c5:16:5e:01:5a:ec:bf:c8:
c1:e9:73:41:fa:c4:18:ec:11:ca:e4:ef:61:89:98:
cd:12:df:d5:34:72:2c:af:84:a4:de:c4:7f:b1:ff:
f5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C7:FB:67:12:41:9B:D5:33:02:BB:E6:A0:0D:01:87:43:B2:5E:CA
X509v3 Authority Key Identifier:
keyid:48:43:A5:35:0D:29:14:F2:39:0B:B7:3D:6A:C0:57:B3:58:15:38:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SEOlNQ0pFPI5C7c9asBXs1gVOHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/E8f7ZxJBm9UzArvmoA0Bh0OyXso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/SEOlNQ0pFPI5C7c9asBXs1gVOHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.68.0/22
Signature Algorithm: sha256WithRSAEncryption
39:71:1f:97:4c:99:49:ed:34:43:f5:20:aa:c3:bb:ec:1d:76:
f8:cf:dd:7e:e7:ea:c2:ba:c9:66:7f:39:0b:1f:26:33:74:6e:
a3:bd:07:35:3e:53:60:76:53:ea:04:e4:c1:f1:2f:c4:70:3b:
44:a1:4d:94:e3:fa:35:14:57:89:90:b4:4a:dc:f5:23:e4:75:
fc:2f:03:c2:bb:e2:0f:19:2d:bd:c7:c5:cc:20:9f:82:59:f6:
57:b2:00:8f:c5:a4:ad:6c:10:10:d6:89:a2:ba:bb:b9:a6:e8:
d0:ab:69:c1:53:3d:1e:83:58:5e:fa:a2:48:e8:3d:35:b6:35:
8d:05:19:36:5b:e1:8f:f7:25:f4:84:bc:ea:07:21:76:b4:27:
a6:96:c6:9d:2f:4e:52:76:36:b9:48:d2:53:97:19:7c:b3:4d:
e6:ce:ef:85:a2:6b:b3:8f:7e:23:6a:17:7e:5e:c0:16:db:c2:
cc:19:cb:7d:4a:b6:06:0e:63:b8:36:32:03:72:aa:44:6c:68:
7c:0c:f4:ad:76:ef:56:4e:6a:f4:89:f6:fa:4a:6a:98:11:80:
b7:22:29:cd:46:2d:9a:6b:6c:9e:00:de:ec:88:bc:ab:8c:58:
a5:fa:3c:78:37:c8:e9:94:4f:b3:98:13:0a:5e:af:02:48:9b:
6b:32:19:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:34 2024 by rpki-client on console-ams.rpki-client.org