Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/8RagmYwCiGmVXH0LlTluAmaKU7A.roa
File: 8RagmYwCiGmVXH0LlTluAmaKU7A.roa (raw, json)
Hash identifier: DSDtLxfJpxQg++VpoT4lCaplsPBszxXywoiX2zEf2YQ=
Subject key identifier: F1:16:A0:99:8C:02:88:69:95:5C:7D:0B:95:39:6E:02:66:8A:53:B0
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D17B7A0DEFF9113DB870E9209F71C
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/8RagmYwCiGmVXH0LlTluAmaKU7A.roa
Signing time: Sun 01 Jan 2023 13:54:49 +0000
ROA not before: Sun 01 Jan 2023 13:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147176
IP address blocks: 45.132.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:17:b7:a0:de:ff:91:13:db:87:0e:92:09:f7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f116a0998c028869955c7d0b95396e02668a53b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:95:24:9c:24:05:4c:27:86:af:d3:81:ea:5d:
3a:36:03:98:3a:91:e7:1e:05:09:ac:04:7d:81:31:
6b:ec:94:f6:7e:da:34:f8:5f:3f:d2:87:44:f9:8e:
50:87:f1:fc:40:e4:e0:95:8c:e2:89:7b:56:d7:87:
22:bf:13:4a:67:c1:3d:50:e1:9c:ee:0f:84:52:47:
ca:3d:1d:10:78:58:f4:62:f9:ab:37:6a:3d:67:34:
26:e2:98:70:08:09:61:1f:9a:9b:94:b9:a7:4f:83:
43:29:ea:8e:54:85:d1:3a:a9:87:30:71:ff:bc:dc:
40:06:ca:9f:71:c7:62:46:53:cf:61:a8:1c:c3:52:
7c:6a:09:bc:14:67:7e:65:24:13:07:16:67:d7:5b:
9c:8f:61:a4:12:fc:c0:7b:b2:af:94:3d:2a:ac:56:
d6:46:fa:63:9a:0a:11:7d:d3:04:07:bc:8c:a9:f2:
57:ab:ed:ca:8a:c3:40:64:72:5a:05:c7:b8:19:c7:
90:65:7d:ad:a9:01:b9:64:ec:2e:8a:c2:df:35:49:
96:e4:13:95:ab:ab:59:fa:6c:8a:9c:90:ec:5d:39:
46:d4:09:60:14:5f:a0:d7:20:e7:a5:28:af:9c:ee:
4e:5b:cb:75:54:29:f9:5e:8f:03:bc:a8:0f:76:f4:
32:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:16:A0:99:8C:02:88:69:95:5C:7D:0B:95:39:6E:02:66:8A:53:B0
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/8RagmYwCiGmVXH0LlTluAmaKU7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.99.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:34:c4:2e:be:a5:ea:f4:18:b8:5b:43:dd:53:1e:12:84:40:
2d:22:8e:55:a9:84:c5:36:bf:07:77:fb:d8:75:b3:24:3e:5a:
ba:c8:f9:11:d9:22:29:6f:53:ee:1e:5c:5f:04:b1:32:7d:9d:
36:02:b1:07:ab:07:d1:ff:8a:6e:ec:9a:a6:83:31:5c:68:20:
b2:14:54:ea:a1:05:f2:87:e0:f8:5a:e0:d6:4a:9d:1a:97:2f:
d7:e5:6e:88:36:ee:65:7b:c4:09:09:fe:35:39:33:17:6a:5a:
81:27:e8:e5:e3:69:28:cf:73:83:d1:c8:95:eb:38:87:ad:e7:
56:95:03:6b:40:79:d4:16:58:33:ef:1e:d3:8b:c6:77:63:72:
0f:77:62:e3:27:f9:80:0b:6c:d1:ed:9a:7e:7a:0d:e3:e6:f7:
8f:27:06:ea:fb:23:83:ef:a5:c4:85:23:ad:b1:79:7d:a1:ea:
ff:15:ae:02:d0:4f:0f:ac:10:18:a5:6a:f2:6c:a3:4f:1f:a0:
8f:de:7e:48:20:a9:b9:f8:1c:f9:cb:be:05:05:70:6c:fe:e4:
d1:d2:c2:10:c6:8c:74:30:97:7a:a1:88:ea:58:5e:a5:df:d1:
0d:a1:6e:df:18:a1:e3:75:5c:34:68:4e:7b:b6:e8:81:4a:07:
3c:01:06:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org