Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/9iKMFrHHTF6tDPvbri7NLT8EerM.roa
File: 9iKMFrHHTF6tDPvbri7NLT8EerM.roa (raw, json)
Hash identifier: jODaDnAetGeT2KFgPlAG4XKHOPIEY2AFfRGAJQTU6IY=
Subject key identifier: F6:22:8C:16:B1:C7:4C:5E:AD:0C:FB:DB:AE:2E:CD:2D:3F:04:7A:B3
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D0F5328048E201DE09A3A5CCB1134
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/9iKMFrHHTF6tDPvbri7NLT8EerM.roa
Signing time: Sun 01 Jan 2023 13:54:47 +0000
ROA not before: Sun 01 Jan 2023 13:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44258
IP address blocks: 45.132.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:0f:53:28:04:8e:20:1d:e0:9a:3a:5c:cb:11:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6228c16b1c74c5ead0cfbdbae2ecd2d3f047ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c7:02:d5:5c:62:9f:15:e0:a4:06:35:52:ec:
54:ce:23:1e:67:35:18:99:ef:38:c8:ba:e4:22:c4:
5d:c3:d4:e2:4e:de:98:ca:ca:cd:ca:7d:03:d3:bd:
73:43:25:ce:4f:06:4f:49:e7:5c:ef:b3:a9:a5:66:
0e:bc:78:18:4c:b5:2f:87:b6:7e:fb:7f:7a:52:62:
5b:e3:bd:7c:9a:db:66:7a:88:85:c7:d2:1c:49:45:
56:ee:e3:b6:0d:b2:26:43:21:17:f0:a3:dd:2f:d8:
ed:cf:6e:06:2d:ed:72:a1:e4:83:41:3c:0e:00:ba:
23:e0:a2:cc:d7:6d:55:fa:1e:34:91:47:79:75:db:
cb:35:63:a2:fe:a3:a2:3d:f1:ed:d5:0e:70:6b:f1:
76:1b:f6:ef:5c:3a:87:6f:5a:f2:6c:67:1c:8a:09:
4b:7a:6a:8d:7f:09:8d:4a:4d:3c:48:8c:0e:e9:aa:
ee:b4:01:1e:58:a7:46:0c:da:35:ad:66:05:9a:2b:
13:6a:bf:68:c1:45:7a:1d:7a:f5:25:c1:47:3e:db:
4b:7e:c0:5f:35:50:76:b4:90:6d:60:c0:c1:79:a3:
b8:5b:6f:70:d8:e6:b8:da:a3:e0:ed:6a:06:b7:26:
09:93:aa:96:dd:f1:7b:5f:9e:5a:44:47:6e:fc:a3:
73:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:22:8C:16:B1:C7:4C:5E:AD:0C:FB:DB:AE:2E:CD:2D:3F:04:7A:B3
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/9iKMFrHHTF6tDPvbri7NLT8EerM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.98.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:29:d4:0d:87:e4:4a:b6:e2:56:3a:43:15:40:6e:cb:77:d9:
44:de:a5:97:26:a4:24:d8:42:c3:31:13:e7:db:1e:73:da:95:
80:3e:8e:36:df:dc:ee:0c:91:92:6d:8a:01:97:48:25:8b:18:
5f:8a:7d:d9:f3:a9:90:3d:13:89:74:95:27:dd:07:fe:23:51:
32:4f:2d:5e:6d:33:3d:53:52:13:d7:9c:19:39:96:d3:37:85:
19:63:3e:82:6b:28:f8:21:8e:9c:d0:06:dd:43:35:a5:1b:65:
73:a2:3f:8b:26:b6:cd:e0:03:08:b4:b1:b2:13:bc:a9:0b:30:
ff:7a:2f:9d:51:e2:a8:b7:9c:87:95:2e:c7:cf:1a:39:39:d5:
d8:79:1c:86:9f:a5:5d:68:07:7a:47:11:da:8c:81:c4:1e:18:
1f:95:11:51:cf:a5:23:bd:be:64:af:38:16:af:08:59:61:6a:
14:57:23:68:e6:92:ec:ae:7b:10:b0:f3:da:ca:00:d8:46:5c:
47:9b:09:2d:4a:9b:79:9a:6b:c4:c6:fd:43:f6:99:0c:3f:25:
b6:1d:89:44:21:04:d1:8b:f6:ac:15:c8:fc:0f:03:38:79:ab:
73:b0:1f:95:43:5b:c0:ac:e6:c3:7b:f8:94:03:7c:b9:42:45:
7e:f7:a4:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org