Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/s2nNiBposjhYfN4SG8M6Y2nk0p4.roa
File: s2nNiBposjhYfN4SG8M6Y2nk0p4.roa (raw, json)
Hash identifier: xzYjZkn2CBaHlNKubmfLVmZ02ydKZWNDL1PXyQPhdEQ=
Subject key identifier: B3:69:CD:88:1A:68:B2:38:58:7C:DE:12:1B:C3:3A:63:69:E4:D2:9E
Certificate issuer: /CN=45c491362b2e386197b9a0746124288bc0bcf031
Certificate serial: 01680048
Authority key identifier: 45:C4:91:36:2B:2E:38:61:97:B9:A0:74:61:24:28:8B:C0:BC:F0:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RcSRNisuOGGXuaB0YSQoi8C88DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/s2nNiBposjhYfN4SG8M6Y2nk0p4.roa
Signing time: Sat 01 Jan 2022 12:56:18 +0000
ROA not before: Sat 01 Jan 2022 12:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42260
IP address blocks: 5.1.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23593032 (0x1680048)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45c491362b2e386197b9a0746124288bc0bcf031
Validity
Not Before: Jan 1 12:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b369cd881a68b238587cde121bc33a6369e4d29e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e8:29:41:fd:1e:9e:cd:f1:39:ed:c9:fd:0f:
f7:0d:2b:33:e9:fb:19:95:46:fb:ad:32:85:2b:c0:
b4:a3:85:ac:90:c6:80:b2:02:5f:bb:42:cf:8e:64:
b0:8d:f5:54:2c:da:b0:c4:41:e4:75:ff:04:cb:4e:
5e:57:b0:a9:12:dc:a7:f0:c1:9b:0b:4b:40:d4:df:
7d:e4:91:f7:d0:df:c1:68:6a:22:ce:25:e9:80:66:
63:d2:9f:94:ac:49:c3:9b:06:6f:0a:8c:ff:4f:23:
14:bc:1f:52:4c:03:e9:bc:45:98:26:9e:13:1c:6a:
47:7d:fa:cf:c5:b9:f4:92:b2:f2:b0:76:8e:a6:27:
f8:5f:28:2f:8f:bf:fd:dc:ac:87:56:9b:78:fa:03:
b4:4f:1d:15:7d:ff:77:3d:2c:67:4f:a3:ce:77:8f:
ec:6a:44:1d:08:33:ba:a9:8e:65:88:ad:60:1e:9e:
0e:db:ab:a8:3a:21:48:3d:df:58:cd:63:78:0d:45:
b3:17:84:86:b5:3c:e0:07:6d:ce:74:7a:6b:3f:f0:
ba:5c:da:27:83:6e:9d:4d:f9:cb:2d:97:d7:17:59:
08:d8:48:01:72:c1:ec:23:96:09:b0:0f:01:67:23:
a2:1d:8f:c6:09:1a:a7:e1:00:7c:e4:7f:00:54:61:
71:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:69:CD:88:1A:68:B2:38:58:7C:DE:12:1B:C3:3A:63:69:E4:D2:9E
X509v3 Authority Key Identifier:
keyid:45:C4:91:36:2B:2E:38:61:97:B9:A0:74:61:24:28:8B:C0:BC:F0:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RcSRNisuOGGXuaB0YSQoi8C88DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/s2nNiBposjhYfN4SG8M6Y2nk0p4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/86c181-4f5c-45fc-baac-1f9a19c37e08/1/RcSRNisuOGGXuaB0YSQoi8C88DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.47.0/24
Signature Algorithm: sha256WithRSAEncryption
06:a7:77:4f:2a:ee:ea:b0:36:f9:db:c9:46:d9:10:14:dc:97:
b8:02:de:16:f4:ac:f7:08:7b:0f:7a:af:c2:58:6d:1c:fe:c9:
21:0d:8b:1f:1f:f3:7a:82:84:02:37:55:a6:5d:f1:ce:8c:c5:
39:1f:a0:3e:2a:c3:5e:db:b5:03:cc:50:41:d8:80:7f:a8:5a:
79:04:1b:15:0b:74:10:e9:a3:75:b2:eb:77:2e:5b:1b:27:a9:
90:cb:6b:51:1c:49:7c:3d:98:b1:23:4c:7b:c1:44:45:4a:0c:
5d:8f:1a:a1:be:37:a1:b6:0f:67:42:f9:75:8f:68:2b:3f:5d:
b1:0b:33:92:49:73:d3:0c:d6:65:53:98:8b:ca:04:a3:12:3b:
79:dd:2e:2e:2c:97:13:ac:74:fa:a1:bd:00:a1:7d:a0:da:03:
1b:bb:b4:95:57:3a:47:96:74:52:dc:8b:bd:90:a2:32:27:3e:
ec:05:18:96:27:4f:38:0d:0a:c0:12:c1:2f:ae:36:bb:07:0a:
ba:51:95:02:ca:76:ab:0d:52:dc:85:bf:31:fb:93:29:c4:46:
48:52:c1:6a:c5:07:3b:16:a1:aa:2e:5e:b0:16:cd:08:8d:8f:
95:aa:33:54:f1:25:bb:7f:fa:ac:f9:fc:a5:1b:d3:94:97:39:
ea:34:4b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:58 2024 by rpki-client on console-fra.rpki-client.org