Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/V4oVRr4tkg-o2fncH6l-xs8OZLY.roa
File: V4oVRr4tkg-o2fncH6l-xs8OZLY.roa (raw, json)
Hash identifier: OBmQIPNQyUdT9/CHJ/e/WMbAxmyAGrmG++i5qLatD9M=
Subject key identifier: 57:8A:15:46:BE:2D:92:0F:A8:D9:F9:DC:1F:A9:7E:C6:CF:0E:64:B6
Certificate issuer: /CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Certificate serial: 018CC801F25BC40AA02F939DD27557FBB3A9
Authority key identifier: D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/V4oVRr4tkg-o2fncH6l-xs8OZLY.roa
Signing time: Tue 02 Jan 2024 02:30:19 +0000
ROA not before: Tue 02 Jan 2024 02:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 45.145.176.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:f2:5b:c4:0a:a0:2f:93:9d:d2:75:57:fb:b3:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Validity
Not Before: Jan 2 02:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=578a1546be2d920fa8d9f9dc1fa97ec6cf0e64b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:28:d1:ff:c8:47:82:b5:cc:79:39:7e:55:72:
0a:ab:09:56:f3:76:4c:23:5b:b0:ef:a1:35:0a:a9:
0b:51:28:fc:8f:b6:dd:51:1c:40:bd:ba:b6:ec:e3:
e2:50:31:58:e4:b1:c1:0d:3c:e7:bb:68:48:62:13:
88:48:a9:df:c6:25:b3:4a:4c:05:99:df:3a:eb:71:
54:aa:e2:ea:7a:62:56:bd:9a:d6:24:17:ee:02:18:
94:2a:d5:35:2c:77:5f:36:e1:f0:80:26:6d:4c:db:
d7:3a:f0:d4:e7:3d:7a:81:51:4a:81:98:b7:95:80:
fd:25:ff:38:e6:1c:dd:4a:5e:9e:51:44:eb:35:71:
d8:77:65:af:42:81:43:18:85:b5:1b:61:70:c5:8b:
2c:36:92:d2:c1:0e:28:f2:36:55:83:98:f3:e2:77:
a0:6f:b1:5c:7b:8a:12:3d:90:c5:32:bb:fe:f4:5d:
75:82:f8:56:41:73:3d:77:cd:b8:bc:44:9c:5c:d2:
2e:4a:dc:3f:e6:4b:7e:33:b0:84:f3:b6:53:c1:4d:
d0:a1:52:9a:3d:bb:83:db:01:91:78:3b:f4:67:4c:
72:9b:bb:c5:d7:df:39:7d:e0:5f:d1:f2:d8:73:f3:
ec:de:85:c7:e7:3f:7f:99:6b:1c:96:d0:d6:c8:d1:
cc:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:8A:15:46:BE:2D:92:0F:A8:D9:F9:DC:1F:A9:7E:C6:CF:0E:64:B6
X509v3 Authority Key Identifier:
keyid:D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/V4oVRr4tkg-o2fncH6l-xs8OZLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/0romGKtLYELuJcRnngd15DBtccY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.176.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:60:8a:52:ef:87:c3:df:9e:5e:71:71:16:14:d0:55:42:5b:
f6:0d:ce:c5:26:bb:c4:13:b7:68:67:db:36:9d:72:be:5e:2f:
a5:96:92:b2:f9:ff:04:bc:11:f8:1c:48:5b:e3:90:b6:e7:99:
00:5f:46:a2:d4:96:6c:e6:cb:9f:25:61:bb:1f:d8:02:ca:85:
85:2f:3d:68:54:87:ed:80:69:24:e9:97:9d:aa:48:43:e9:4f:
c5:ae:2b:70:3c:b4:d4:d2:09:4a:55:cb:5a:45:96:7a:29:50:
b1:3f:ef:a0:76:25:40:cc:32:d1:e8:05:ec:16:ac:65:fa:64:
d0:af:7b:82:7a:e2:4e:43:1d:d4:3b:97:d0:8e:e9:23:32:78:
41:0a:30:8c:39:21:cb:e9:33:bc:ab:bd:18:6d:57:34:0e:ed:
ec:af:58:5d:65:27:71:45:f4:72:d5:f6:66:1a:e0:d3:34:06:
cb:a8:61:49:64:a2:ba:a1:4a:24:1a:2b:4f:54:3c:3c:1a:54:
d0:5a:50:8e:92:89:17:b5:8f:b4:56:fa:01:06:0d:a0:49:16:
a5:03:27:62:db:f9:a5:5a:69:6f:b6:e0:b5:2e:92:b9:5d:38:
71:84:23:7f:f3:db:1b:ed:be:53:e4:25:00:3e:b7:5a:6a:43:
37:70:66:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:56 2024 by rpki-client on console-fra.rpki-client.org