Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/cQNkcrwVggU7kb8rZ22t5B7tkC0.roa
File: cQNkcrwVggU7kb8rZ22t5B7tkC0.roa (raw, json)
Hash identifier: ZqugVOM4QK6w5PsCRjirp8Gtqb2TopcN4tcyeElJW6w=
Subject key identifier: 71:03:64:72:BC:15:82:05:3B:91:BF:2B:67:6D:AD:E4:1E:ED:90:2D
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D1B0621B960E61DEDB3F0DDB5263A
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/cQNkcrwVggU7kb8rZ22t5B7tkC0.roa
Signing time: Sun 01 Jan 2023 13:54:50 +0000
ROA not before: Sun 01 Jan 2023 13:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207992
IP address blocks: 45.132.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:1b:06:21:b9:60:e6:1d:ed:b3:f0:dd:b5:26:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71036472bc1582053b91bf2b676dade41eed902d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:72:00:a6:b5:cb:09:83:7b:01:04:37:05:ab:
3a:69:2a:e5:c7:e9:b7:af:2b:1a:17:89:41:a5:84:
c7:39:55:a1:85:29:d7:9a:d2:9b:a1:a3:6e:0b:1a:
ae:5c:56:80:9d:5c:83:fa:27:f8:7b:ec:85:07:df:
46:da:37:04:bd:c2:0d:a3:b2:4b:ad:4c:56:f8:14:
05:ca:bb:9b:03:f4:1f:15:8b:13:03:d1:26:23:91:
f3:2b:51:ff:34:f3:55:a4:19:21:96:72:a8:be:1e:
a3:83:1a:f6:86:d1:e7:c4:aa:ff:55:d7:c3:ea:8b:
70:b1:9f:e4:e3:51:c9:4f:17:d5:28:23:5f:c9:3a:
c4:11:24:54:31:4a:e8:07:21:be:47:30:b4:15:55:
1f:51:b5:92:22:01:77:f3:34:33:83:16:de:64:15:
bd:71:1b:38:b4:1b:6e:e3:5d:c4:5a:a6:39:1b:4f:
b0:c2:26:73:2b:ac:89:21:7e:54:86:1f:03:b4:28:
9f:bb:56:b2:0d:a9:86:99:57:96:1d:6f:a5:90:25:
84:cc:27:a4:ae:19:d6:2c:c9:a5:a1:f3:f7:6e:dc:
56:f1:ed:40:32:44:a1:7b:f5:24:aa:af:fe:df:6c:
e9:d3:d6:30:3d:58:e5:76:9f:08:5f:27:2a:e2:1e:
1e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:03:64:72:BC:15:82:05:3B:91:BF:2B:67:6D:AD:E4:1E:ED:90:2D
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/cQNkcrwVggU7kb8rZ22t5B7tkC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.96.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:d1:76:2b:9b:c6:ff:0e:7a:35:90:5c:c1:64:50:e9:36:3d:
16:37:be:47:1e:69:02:a3:4a:44:c3:8e:8a:51:b6:5d:c9:0b:
37:1c:4e:cb:ac:4a:c3:78:4d:b0:1b:4c:2e:88:26:9f:4b:91:
4a:fb:90:78:da:42:cd:69:74:27:1e:6c:d5:fc:00:5b:9c:fc:
1b:59:42:cd:1f:6a:1e:f9:0c:5b:88:36:29:57:6d:ad:75:0b:
2c:46:a9:ae:ea:be:e8:2f:09:e2:a1:dc:b5:c4:50:72:2e:a1:
06:e0:4d:86:a2:ed:bf:e5:8d:7e:74:59:12:2f:d6:97:d2:f7:
41:3d:db:26:ab:6d:ab:dd:46:86:83:a9:b8:44:87:eb:f5:7f:
3b:d7:4a:63:8e:63:d6:f9:a3:50:19:52:b3:51:28:fe:2d:93:
28:36:79:18:d2:bf:ac:b6:0f:e5:98:46:8a:6a:5f:da:c3:c0:
65:6d:c5:86:dd:54:66:b0:25:7f:a7:b3:c5:0e:32:45:8a:6f:
1c:0a:99:43:7a:f4:78:0f:49:df:2e:c2:6a:16:33:93:c7:76:
e0:d4:75:e8:f6:5b:7f:e7:c2:d0:55:e3:16:ee:93:58:46:d1:
50:92:24:63:fe:e4:52:14:53:53:33:02:d1:f4:5a:9c:b8:2b:
40:7d:0d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org