Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/UXbfx0Rtjz3puBWZB-w86xPfVYY.roa
File: UXbfx0Rtjz3puBWZB-w86xPfVYY.roa (raw, json)
Hash identifier: QSCUCqm2fwuPFCJZUMjQ0ywdbKSmpM+/WudQdGaC0C8=
Subject key identifier: 51:76:DF:C7:44:6D:8F:3D:E9:B8:15:99:07:EC:3C:EB:13:DF:55:86
Certificate issuer: /CN=45c491362b2e386197b9a0746124288bc0bcf031
Certificate serial: 01856D8AE1CFCE542939273CA15808C7E581
Authority key identifier: 45:C4:91:36:2B:2E:38:61:97:B9:A0:74:61:24:28:8B:C0:BC:F0:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RcSRNisuOGGXuaB0YSQoi8C88DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/UXbfx0Rtjz3puBWZB-w86xPfVYY.roa
Signing time: Sun 01 Jan 2023 13:34:56 +0000
ROA not before: Sun 01 Jan 2023 13:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42260
IP address blocks: 5.1.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:e1:cf:ce:54:29:39:27:3c:a1:58:08:c7:e5:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45c491362b2e386197b9a0746124288bc0bcf031
Validity
Not Before: Jan 1 13:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5176dfc7446d8f3de9b8159907ec3ceb13df5586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b3:f3:45:01:09:14:69:50:55:e7:d2:75:5c:
32:bb:d0:47:60:45:60:b2:28:89:71:f8:ec:c7:91:
c5:4d:fd:1b:8f:72:46:da:87:59:39:35:40:d6:b2:
8d:a8:30:ba:97:c5:12:fb:a0:4b:40:3a:ad:e4:7d:
3d:49:13:b3:7a:b2:8f:4c:53:55:0c:b6:49:3f:7c:
7d:e4:88:7b:0d:74:51:c1:25:a0:eb:2d:5a:f6:27:
6b:de:ae:f7:e0:dc:9e:c9:c3:b5:52:d8:d6:50:08:
d0:ac:4a:6b:b4:b9:13:c0:7d:52:b7:8b:e4:ca:cd:
1e:51:41:69:58:6b:cb:3c:a5:55:16:6d:32:a0:3a:
d6:59:eb:ef:7a:83:94:44:a6:17:2f:3f:64:53:08:
1f:4f:08:51:ec:f9:c7:b9:6a:73:49:3a:03:a2:fc:
86:b7:88:5f:b7:f1:dc:3a:80:f2:08:c9:a3:db:1a:
4d:0c:82:a9:c2:28:15:ef:15:b5:88:8c:f9:42:5b:
1e:27:69:6f:02:0a:9b:fe:12:f2:f5:09:e9:cb:c4:
7a:56:ae:ea:30:af:cd:33:9f:5b:49:f4:b2:bf:41:
59:00:24:8d:ad:ac:9b:0b:5e:a2:94:1b:cb:68:26:
3b:9a:a2:36:c9:cf:45:56:12:48:bf:65:c7:70:c7:
7e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:76:DF:C7:44:6D:8F:3D:E9:B8:15:99:07:EC:3C:EB:13:DF:55:86
X509v3 Authority Key Identifier:
keyid:45:C4:91:36:2B:2E:38:61:97:B9:A0:74:61:24:28:8B:C0:BC:F0:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RcSRNisuOGGXuaB0YSQoi8C88DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/UXbfx0Rtjz3puBWZB-w86xPfVYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/RcSRNisuOGGXuaB0YSQoi8C88DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.47.0/24
Signature Algorithm: sha256WithRSAEncryption
45:48:7d:24:bc:be:ee:4b:8c:54:21:ec:da:ee:59:74:09:66:
62:a9:99:d2:fc:c9:1c:70:6d:49:9f:5a:83:85:da:d6:39:89:
40:e8:f3:df:90:ee:a1:3e:50:58:22:d6:ae:ef:22:68:8e:e8:
4b:78:32:41:9b:c1:00:c9:4e:9c:fb:85:09:24:c5:44:c7:63:
d1:95:7e:ec:78:db:43:8c:61:eb:f3:27:9f:7a:f6:33:22:f7:
ba:05:e7:1b:68:14:ec:7a:59:9a:48:16:b3:42:b4:78:e7:09:
9f:14:b9:e6:b5:fc:f9:81:4d:9c:e6:20:50:b0:25:0d:bc:6f:
9d:e0:e6:1f:f0:78:8f:d2:6d:a2:51:09:ff:b7:f4:9b:4e:10:
48:17:60:db:7b:e5:84:0b:60:ac:c8:52:8f:f1:fe:d6:8c:0b:
2f:dd:4b:a4:ee:66:af:fa:29:a6:91:cf:c4:71:4b:95:ef:9a:
5b:69:a6:fb:7a:89:65:f5:28:48:74:a5:12:ea:ca:12:85:da:
0a:b9:54:c6:6a:f6:8b:73:21:fe:be:6d:da:c7:b5:aa:5f:32:
37:3e:2d:fb:96:13:25:69:5e:d1:f2:6c:90:83:be:cf:0f:7e:
a6:67:63:0c:52:a1:5e:71:77:66:f3:cc:13:16:f3:ff:8c:23:
0a:f1:a7:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:58 2024 by rpki-client on console-fra.rpki-client.org