Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/XtULZvvAA3z8T88I8D65hApaz2g.roa
File: XtULZvvAA3z8T88I8D65hApaz2g.roa (raw, json)
Hash identifier: c9FvTXAC1HDaEr1xXAL/KSLAgydBXem4fXNDmh0/8gM=
Subject key identifier: 5E:D5:0B:66:FB:C0:03:7C:FC:4F:CF:08:F0:3E:B9:84:0A:5A:CF:68
Certificate issuer: /CN=4843a5350d2914f2390bb73d6ac057b358153870
Certificate serial: 066E5592
Authority key identifier: 48:43:A5:35:0D:29:14:F2:39:0B:B7:3D:6A:C0:57:B3:58:15:38:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SEOlNQ0pFPI5C7c9asBXs1gVOHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/XtULZvvAA3z8T88I8D65hApaz2g.roa
Signing time: Sat 01 Jan 2022 06:59:42 +0000
ROA not before: Sat 01 Jan 2022 06:59:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50903
IP address blocks: 45.159.68.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107894162 (0x66e5592)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4843a5350d2914f2390bb73d6ac057b358153870
Validity
Not Before: Jan 1 06:59:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ed50b66fbc0037cfc4fcf08f03eb9840a5acf68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e9:49:35:01:eb:a2:a6:e9:64:1d:f6:95:ec:
65:70:c7:41:05:cc:db:a3:a3:36:92:47:ea:10:c6:
85:e7:37:65:cb:2b:bd:45:e9:68:67:fd:c5:2b:70:
9a:c0:e1:ed:ae:c1:4e:7e:f2:7f:06:23:13:8b:2c:
ed:cb:80:7b:81:e8:12:26:74:a2:94:75:4d:be:04:
d7:7c:3f:2a:2b:bb:52:0e:75:67:61:90:01:13:97:
36:ea:fa:82:a9:ac:1c:2c:02:f0:e4:a8:77:01:6d:
3d:fa:cc:86:8c:33:9d:08:82:3b:bd:53:2d:ee:99:
27:bd:e0:e0:95:f5:12:f6:a4:45:85:2d:de:26:5b:
c0:28:2b:af:59:16:a8:ba:75:75:1e:22:9d:fe:ce:
b5:ad:8c:53:d1:98:4d:c8:17:ab:f0:a9:fd:92:8c:
95:7a:58:14:2a:31:d9:57:f4:f0:86:1c:13:1a:67:
ee:c1:86:5b:75:52:0c:30:9b:96:a2:ac:41:6c:f0:
5d:1a:c0:33:3e:90:b6:ab:2b:96:99:5f:42:ef:37:
d3:b7:8c:7d:a8:86:c2:60:9c:f8:ce:f0:c4:bb:83:
2d:a8:8b:a5:27:ca:32:05:fa:53:cd:15:e8:3b:65:
68:3d:06:1c:85:3e:cf:41:95:dd:24:ce:42:10:04:
57:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D5:0B:66:FB:C0:03:7C:FC:4F:CF:08:F0:3E:B9:84:0A:5A:CF:68
X509v3 Authority Key Identifier:
keyid:48:43:A5:35:0D:29:14:F2:39:0B:B7:3D:6A:C0:57:B3:58:15:38:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SEOlNQ0pFPI5C7c9asBXs1gVOHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/XtULZvvAA3z8T88I8D65hApaz2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ebab-4838-409f-9363-c9600f5f3fdd/1/SEOlNQ0pFPI5C7c9asBXs1gVOHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.68.0/22
Signature Algorithm: sha256WithRSAEncryption
09:28:41:69:80:a6:2c:ea:c8:ca:57:7a:5d:f0:f9:c6:94:cd:
89:21:ed:c2:5f:69:7f:33:ac:96:95:44:5f:58:9c:ac:c1:69:
c9:9e:b9:4e:00:59:34:e2:cd:c8:25:f1:07:8d:03:f3:7f:ec:
be:51:17:68:7b:6a:b7:97:0f:eb:c5:81:a6:92:07:45:c5:28:
82:3d:32:3d:02:a9:ee:00:1b:9d:b2:e6:59:81:b6:6b:3c:10:
20:57:1e:b1:58:9c:4c:c5:a1:67:ad:5a:ab:47:6f:9c:e1:01:
21:49:4b:da:ba:47:6c:2e:3a:1d:a9:15:a1:27:43:f4:b5:3b:
ff:93:ff:4a:6a:8f:3f:ef:56:37:64:85:84:d0:e7:81:5f:8a:
3d:4b:52:ce:9a:9e:ee:e5:61:c5:ff:d5:a7:84:bc:63:12:af:
fc:23:6f:73:de:eb:5d:f1:9a:9d:da:80:59:a0:c0:5d:21:af:
6e:02:f4:e1:b3:06:bb:7f:d3:63:4f:da:e7:7d:4d:1c:6b:c1:
c7:ea:9f:07:ad:58:3a:bc:d9:9c:de:d6:fb:3b:67:5f:8a:61:
30:c6:8d:92:bd:9d:d5:f3:fa:f0:70:b6:85:4d:a6:a4:9c:34:
95:5a:53:a2:50:a3:cc:8b:7e:99:48:51:a0:3c:e3:0e:79:b6:
b9:dc:65:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:34 2024 by rpki-client on console-ams.rpki-client.org