Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/017424-38c8-49c9-8b4c-2396a4fb57be/1/MVRwR-qq9fKW5AzDIMrMUpWLjI0.roa
File: MVRwR-qq9fKW5AzDIMrMUpWLjI0.roa (raw, json)
Hash identifier: sAnVRXvaTuldTvfYF3Ysb7aNBZ+wCw8YWK25AU2jmDg=
Subject key identifier: 31:54:70:47:EA:AA:F5:F2:96:E4:0C:C3:20:CA:CC:52:95:8B:8C:8D
Certificate issuer: /CN=2686d7e106b130ba85788dac3734cb628b139c49
Certificate serial: 01856E266C3054D650D393AFFF7BF15A5EAC
Authority key identifier: 26:86:D7:E1:06:B1:30:BA:85:78:8D:AC:37:34:CB:62:8B:13:9C:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JobX4QaxMLqFeI2sNzTLYosTnEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/017424-38c8-49c9-8b4c-2396a4fb57be/1/MVRwR-qq9fKW5AzDIMrMUpWLjI0.roa
Signing time: Sun 01 Jan 2023 16:24:49 +0000
ROA not before: Sun 01 Jan 2023 16:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 45.13.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:6c:30:54:d6:50:d3:93:af:ff:7b:f1:5a:5e:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2686d7e106b130ba85788dac3734cb628b139c49
Validity
Not Before: Jan 1 16:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31547047eaaaf5f296e40cc320cacc52958b8c8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c7:2c:08:70:e4:c5:75:7a:62:a3:c3:44:35:
24:84:53:51:5f:4f:33:35:57:2a:39:e0:cc:64:25:
66:6e:8a:ea:31:1e:36:df:ef:8a:80:82:4d:a0:d1:
23:fe:be:7b:dd:30:f9:2d:86:9c:3e:49:96:96:6a:
0e:fd:01:7b:29:e8:8c:67:53:a1:55:be:bf:cc:63:
23:39:cf:46:c0:dc:8a:cb:36:2b:9c:b5:53:fb:18:
28:83:02:b1:5d:61:b2:a2:7a:a6:35:77:d2:ef:16:
bd:65:51:bb:8d:75:af:e3:ca:af:4d:c7:78:95:1b:
5a:f9:02:81:10:90:4a:a8:01:fd:5e:d9:65:ef:a1:
a1:4f:5c:3a:eb:26:2f:15:38:71:c3:d2:73:1f:c1:
99:b8:6e:05:5d:ba:66:79:d7:cd:fe:59:dc:88:ce:
97:a0:4b:58:1b:cc:0b:73:b1:bc:3d:47:b5:db:16:
0d:50:5a:76:d3:75:35:e6:07:ab:f8:7f:15:1a:e8:
ae:c0:45:22:84:2d:d6:3a:4b:34:bb:d7:3e:f1:30:
1a:6b:1f:4a:ca:9d:db:4b:bb:a1:b3:59:b7:d2:85:
21:b0:3e:c7:1c:84:8b:1c:de:81:85:7f:70:c8:56:
3e:63:a3:35:f5:b0:62:23:bb:8c:b4:e0:af:ef:4b:
ab:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:54:70:47:EA:AA:F5:F2:96:E4:0C:C3:20:CA:CC:52:95:8B:8C:8D
X509v3 Authority Key Identifier:
keyid:26:86:D7:E1:06:B1:30:BA:85:78:8D:AC:37:34:CB:62:8B:13:9C:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JobX4QaxMLqFeI2sNzTLYosTnEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/017424-38c8-49c9-8b4c-2396a4fb57be/1/MVRwR-qq9fKW5AzDIMrMUpWLjI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/017424-38c8-49c9-8b4c-2396a4fb57be/1/JobX4QaxMLqFeI2sNzTLYosTnEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.11.0/24
Signature Algorithm: sha256WithRSAEncryption
23:0f:74:ec:78:2a:00:be:c3:49:08:42:5b:38:5b:6e:35:95:
ff:ce:1c:82:51:4e:fe:9e:79:ea:c4:91:1e:94:78:b0:94:85:
3d:59:a5:9a:c8:5a:29:d5:12:b8:00:bd:c1:df:2d:f1:b6:ed:
3f:61:8e:32:7e:64:7a:ec:0a:92:89:31:d7:90:bf:ef:a8:8c:
fe:e5:7a:15:e2:8f:29:64:8c:50:a8:a7:67:af:32:e3:0a:c4:
95:12:0b:e0:fa:68:9c:92:cb:0f:0d:66:f5:52:3f:86:c5:35:
37:5d:b4:53:56:b6:7b:f4:c9:a2:ec:bf:99:55:3c:e9:f4:27:
58:c7:0f:6f:ef:ca:53:91:a2:c0:b3:d0:3d:8e:79:38:89:fc:
26:4e:e5:fa:e8:ee:7b:15:e8:f4:9b:05:1e:1a:3c:c8:40:14:
9c:40:dd:d7:8f:77:5e:9a:d9:dd:b9:39:3f:50:3f:52:e3:c8:
81:0c:c7:a1:2d:14:09:9b:76:3f:f1:ec:5e:73:27:44:67:7d:
8d:85:8e:32:b8:6f:3b:78:f6:34:9a:ca:0f:c5:67:95:94:92:
12:33:42:3b:6d:2b:46:d8:d8:0e:ba:9b:0b:5a:ec:ca:31:7a:
ff:7d:25:da:6c:31:38:0d:d9:e8:99:b8:f5:e5:4a:99:95:04:
ae:64:d5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:50 2023 by rpki-client on console-ams.rpki-client.org