Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/62a55a-e565-4214-99ae-5bd34c959d05/1/mxw6kSdYeEMfwnZpScFDvqMPptg.roa
File: mxw6kSdYeEMfwnZpScFDvqMPptg.roa (raw, json)
Hash identifier: ifjV2KcCyeogqRSUeTEXSPTxass7vpVnTpohP7vj2BU=
Subject key identifier: 9B:1C:3A:91:27:58:78:43:1F:C2:76:69:49:C1:43:BE:A3:0F:A6:D8
Certificate issuer: /CN=d474ea8fa9311771eb8f07e8e5f5da9a698c034b
Certificate serial: 0A69AB80
Authority key identifier: D4:74:EA:8F:A9:31:17:71:EB:8F:07:E8:E5:F5:DA:9A:69:8C:03:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HTqj6kxF3Hrjwfo5fXammmMA0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/62a55a-e565-4214-99ae-5bd34c959d05/1/mxw6kSdYeEMfwnZpScFDvqMPptg.roa
Signing time: Sat 01 Jan 2022 09:04:21 +0000
ROA not before: Sat 01 Jan 2022 09:04:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 145.1.96.0/21 maxlen: 21
145.1.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174697344 (0xa69ab80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d474ea8fa9311771eb8f07e8e5f5da9a698c034b
Validity
Not Before: Jan 1 09:04:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b1c3a91275878431fc2766949c143bea30fa6d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:14:39:7b:2f:6b:df:66:46:94:e2:23:97:30:
fa:6f:ac:14:b2:cf:96:cf:66:4f:fe:95:90:5c:78:
95:38:e1:3a:2e:89:71:1a:9b:45:8e:09:a7:95:3a:
5e:4f:84:28:c9:b8:2b:9e:87:d0:9c:1e:62:df:10:
6f:fe:c5:82:fa:a8:e4:b0:9d:33:20:08:fc:04:0b:
64:9b:b2:0c:fc:10:11:8e:a6:34:74:29:60:a1:54:
56:8d:f2:2a:12:cd:a1:59:e3:ca:7f:e0:d3:8c:93:
b8:f8:e6:aa:3b:c0:24:e4:71:f0:0c:11:f7:e9:03:
83:a6:55:0c:e1:91:32:34:0c:0b:7f:f8:4b:76:a7:
6f:5b:36:90:a6:20:09:75:7c:f2:cc:48:99:fa:14:
3f:a2:a1:4e:62:19:65:a0:d9:a3:c9:38:50:46:b0:
2f:ed:88:b3:cc:6c:f2:08:7b:03:7e:d3:14:2f:4e:
2a:d7:fc:52:45:2d:dc:2a:e6:a9:33:ae:37:f9:cb:
b4:ab:91:c3:ea:39:bd:3a:f5:80:ae:cb:c0:35:42:
82:f3:d6:37:6f:4c:15:64:0e:91:05:13:9b:cc:c0:
03:bb:6b:c4:33:33:3f:7e:94:82:11:60:48:ad:ef:
e8:e8:78:01:7d:ba:df:92:d8:19:19:fd:88:38:b7:
57:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:1C:3A:91:27:58:78:43:1F:C2:76:69:49:C1:43:BE:A3:0F:A6:D8
X509v3 Authority Key Identifier:
keyid:D4:74:EA:8F:A9:31:17:71:EB:8F:07:E8:E5:F5:DA:9A:69:8C:03:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HTqj6kxF3Hrjwfo5fXammmMA0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/62a55a-e565-4214-99ae-5bd34c959d05/1/mxw6kSdYeEMfwnZpScFDvqMPptg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/62a55a-e565-4214-99ae-5bd34c959d05/1/1HTqj6kxF3Hrjwfo5fXammmMA0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.1.0.0/17
Signature Algorithm: sha256WithRSAEncryption
59:b6:ba:68:a5:d5:30:f6:7c:c9:33:a4:5e:37:28:67:7e:7c:
5b:54:38:50:a6:d7:2d:bb:88:c8:5f:54:fb:5b:49:2f:a2:b7:
4f:a7:db:54:30:cb:e2:59:11:47:e1:cd:7f:0b:ac:df:fa:59:
80:93:6e:32:bd:38:9e:6d:ad:58:d2:e1:99:59:49:3e:38:7d:
e9:c1:4d:fc:98:c0:d5:b9:54:85:8a:b1:46:cc:73:f6:59:48:
6a:12:b8:5e:1f:d7:cb:d6:04:35:e9:dd:df:6d:3a:49:80:7f:
44:3b:a2:07:d4:37:3d:90:de:ef:03:c9:50:a6:ec:f5:e9:4a:
37:e5:6b:33:dc:29:12:6a:87:ef:18:6f:5c:e2:52:17:e3:6e:
05:f7:02:85:98:f4:0e:9c:a5:0a:2c:f3:5b:cd:15:61:29:74:
c1:e2:0a:e9:96:90:e2:32:c6:b3:12:1f:76:84:d6:a2:26:b3:
73:4a:f9:3c:70:de:0d:9f:ef:40:44:62:0e:f8:81:df:76:58:
fb:24:11:06:9a:d9:e1:a5:8d:7d:f5:86:d1:47:ef:1d:e7:e2:
40:e5:52:92:29:56:af:57:55:b4:5b:de:f5:10:f1:00:ae:0a:
e2:9a:6c:be:f6:2b:c6:e7:03:2b:f4:91:35:3a:62:b1:cd:80:
97:a2:e6:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:11 2023 by rpki-client on console-fra.rpki-client.org