Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/FHT9RUAFL_nsHj85dRldSMqUVXQ.roa
File: FHT9RUAFL_nsHj85dRldSMqUVXQ.roa (raw, json)
Hash identifier: nvFdN/rBGVnNyQtAoPPtmQcur27XnSY2NOEYevUpHV8=
Subject key identifier: 14:74:FD:45:40:05:2F:F9:EC:1E:3F:39:75:19:5D:48:CA:94:55:74
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 018748869E8DD38AD127D5035B4BFA29054F
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/FHT9RUAFL_nsHj85dRldSMqUVXQ.roa
Signing time: Mon 03 Apr 2023 19:09:54 +0000
ROA not before: Mon 03 Apr 2023 19:09:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 45.146.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:48:86:9e:8d:d3:8a:d1:27:d5:03:5b:4b:fa:29:05:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Apr 3 19:09:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1474fd4540052ff9ec1e3f3975195d48ca945574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:52:2f:98:d3:04:3f:97:e4:9c:a5:04:ba:c1:
b1:bd:43:f0:b2:04:bb:00:98:58:34:75:73:7a:ce:
43:55:7d:c4:37:a9:54:d5:8d:28:35:1a:23:43:89:
a2:e3:e4:ea:37:74:cf:d0:c3:38:86:38:90:2d:d7:
13:ca:0c:f4:56:0c:ff:5e:64:a8:06:3c:e3:88:cc:
b0:9d:af:25:bf:f6:b3:0e:ad:52:e4:41:04:8b:ac:
cd:38:4f:a7:15:94:5c:28:8a:71:e7:f6:c9:fd:cc:
29:8c:bf:7b:78:6b:7a:aa:56:d1:ed:01:d9:88:eb:
f4:de:9a:7e:50:53:66:e1:a8:4e:6e:5c:dc:d3:04:
89:18:38:0b:6c:5b:e2:1e:b2:50:c3:28:0d:92:95:
98:ce:b8:be:22:84:1b:af:3a:f4:e0:e9:02:5d:97:
04:f2:52:9e:15:a8:7a:9c:62:ab:7c:7c:46:0b:99:
f0:3f:9b:75:55:a6:40:c5:8e:d9:bb:7f:c2:3e:5f:
48:19:03:7c:ec:37:37:e2:dd:79:ed:d3:28:e6:80:
10:88:3a:51:b7:3d:7e:04:09:95:72:85:41:c7:44:
5a:6c:38:73:84:78:16:be:40:d8:33:1d:ca:e5:ef:
ca:6c:34:dd:50:84:5e:7c:95:6e:0d:c9:b0:11:9b:
39:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:74:FD:45:40:05:2F:F9:EC:1E:3F:39:75:19:5D:48:CA:94:55:74
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/FHT9RUAFL_nsHj85dRldSMqUVXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.104.0/24
Signature Algorithm: sha256WithRSAEncryption
49:f9:c5:d3:e4:33:8c:77:38:ca:87:22:74:09:dd:f1:4a:5a:
63:9f:96:fd:e7:32:be:bf:67:c2:27:62:c0:72:90:84:db:2b:
f5:48:85:77:73:a9:a6:b4:ea:79:fd:3c:8f:ba:9a:77:4d:a3:
bf:a7:f2:f2:22:ae:fb:3d:94:8e:54:33:d8:91:68:6b:25:47:
9d:63:cf:dc:e7:b5:07:8f:14:80:8c:3e:b8:82:a6:0f:b3:e7:
de:bb:e8:de:4b:dc:1f:15:23:93:8a:b1:86:5b:a0:f2:e4:8d:
a2:2c:51:e5:17:ba:45:df:12:b3:b8:4c:46:22:b7:d8:9c:95:
54:16:1c:a2:9f:73:89:49:d8:0c:c4:11:3a:a6:9c:e5:f4:3e:
ad:75:5a:dd:7a:36:c4:e4:29:e5:1c:d8:00:7c:65:5a:66:88:
61:e4:df:8c:ac:cc:5a:b9:97:79:fc:3b:e9:80:86:3c:50:39:
38:b7:57:c3:6b:2d:c3:67:db:77:50:11:8e:e0:03:67:9d:50:
1b:13:7c:a5:87:7e:3c:9e:0b:fc:ef:6c:aa:fe:79:6c:14:59:
c7:bc:f5:a4:54:d7:28:cc:78:57:d0:0f:7f:31:dd:f5:1f:8f:
7e:cc:41:64:f3:a5:98:3b:66:8d:f9:fd:89:dc:c8:c3:b4:5c:
2a:ef:3e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org