Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/ka_njoDAAfHb8VuS-uFKDIm67do.roa
File: ka_njoDAAfHb8VuS-uFKDIm67do.roa (raw, json)
Hash identifier: MqxnA+d2q0xtiI6hVi7vuzcsJiODjzuUC+H6ybrLX3w=
Subject key identifier: 91:AF:E7:8E:80:C0:01:F1:DB:F1:5B:92:FA:E1:4A:0C:89:BA:ED:DA
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 04F2A36A
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/ka_njoDAAfHb8VuS-uFKDIm67do.roa
Signing time: Sat 02 Jul 2022 19:59:11 +0000
ROA not before: Sat 02 Jul 2022 19:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.132.98.0/23 maxlen: 24
45.132.96.0/22 maxlen: 24
45.132.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83010410 (0x4f2a36a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jul 2 19:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91afe78e80c001f1dbf15b92fae14a0c89baedda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3c:3d:8e:c0:ca:61:ad:f4:0a:02:3d:c4:a6:
9c:52:60:f2:c1:bc:c0:95:bd:82:c8:99:b7:aa:47:
ee:da:78:61:de:e2:d6:e9:9c:f1:6c:58:d3:0c:aa:
ed:ff:f4:b5:39:9d:38:bc:fd:47:a5:af:c0:b8:d4:
55:24:43:50:81:5a:8d:ad:8a:20:b6:d1:71:a2:fe:
24:be:96:ef:12:62:c4:00:a3:a6:26:5d:9d:0d:92:
ec:5d:1a:f8:50:b8:3b:08:42:ca:4e:07:4f:38:2c:
9f:b0:a8:74:a2:2c:76:56:45:a5:57:60:b0:61:8f:
27:00:52:cf:a0:e0:2a:93:d8:53:5e:11:c2:0d:b1:
a7:12:c2:b4:2c:d4:b6:1a:10:08:b7:62:52:a7:52:
7d:2a:65:f9:1f:ec:e6:ab:78:96:b8:88:e7:28:ae:
b6:e3:29:4e:af:cd:e3:1f:74:54:22:a9:68:52:d7:
fe:61:13:de:b8:7e:be:3f:6f:e6:bc:66:8a:61:08:
7d:23:22:6f:5c:11:b9:a4:08:f1:b3:04:86:76:80:
b0:26:8d:c5:1e:fc:61:54:be:16:3a:93:87:27:78:
63:9e:6a:0f:d8:ad:ce:a9:e5:b1:7e:38:95:a8:a7:
9d:20:1b:0b:fe:ac:be:31:c5:3a:3b:be:40:a1:f6:
1f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:AF:E7:8E:80:C0:01:F1:DB:F1:5B:92:FA:E1:4A:0C:89:BA:ED:DA
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/ka_njoDAAfHb8VuS-uFKDIm67do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.96.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:8f:d8:b0:7a:7c:21:85:26:ac:6b:85:92:46:94:4c:f2:03:
04:89:a5:33:b9:43:c0:8c:0a:74:52:73:01:d8:28:bb:a9:af:
0c:b2:64:eb:6f:fd:92:ed:95:9c:fc:26:b5:6f:7a:e2:7c:61:
2d:f9:ec:21:e6:a9:3e:10:74:9f:8e:b0:60:80:d4:4a:3b:52:
ad:e9:48:28:76:24:53:e7:0b:9e:91:8e:cb:53:b1:32:62:8e:
f2:e1:a2:48:6c:36:de:c4:80:f1:46:08:86:17:eb:1d:fd:80:
4a:ca:e1:b2:d1:d5:2e:d6:f2:75:09:51:07:1c:0b:69:e5:92:
32:ff:c0:75:6f:37:ad:a7:2a:dc:42:0e:52:6a:17:e5:6b:27:
bd:4b:dc:41:81:ac:e8:bc:97:4c:e1:6e:85:7c:bf:2d:c0:59:
8d:8f:67:3c:2a:0c:19:b6:02:f6:f5:ab:0f:ec:2a:ba:2b:be:
d2:fb:33:8f:94:fe:4f:b4:54:27:7c:20:ef:db:f7:68:3a:87:
e1:51:63:df:a8:15:53:c9:c9:5a:f2:de:79:88:0e:c8:48:f5:
8e:c3:e0:9a:b7:59:24:d5:a6:10:f8:64:c1:3b:3f:32:89:10:
be:73:e8:7e:9f:d8:b4:0d:5c:67:f5:ad:96:7c:01:7f:29:2b:
91:17:fc:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:41 2024 by rpki-client on console-ams.rpki-client.org