Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/OpXC5KyRBexgeO16p2M6hO6NWLY.roa
File: OpXC5KyRBexgeO16p2M6hO6NWLY.roa (raw, json)
Hash identifier: z/wbcYGEqVGZGrm6pJGEUZfmryUN4Y2KDvtYNj+66DI=
Subject key identifier: 3A:95:C2:E4:AC:91:05:EC:60:78:ED:7A:A7:63:3A:84:EE:8D:58:B6
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 03DA8C5D
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/OpXC5KyRBexgeO16p2M6hO6NWLY.roa
Signing time: Thu 10 Mar 2022 19:47:32 +0000
ROA not before: Thu 10 Mar 2022 19:47:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 45.152.242.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64654429 (0x3da8c5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Mar 10 19:47:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a95c2e4ac9105ec6078ed7aa7633a84ee8d58b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:69:39:6f:57:0f:22:8c:8f:ae:ce:a2:e3:36:
e3:d2:71:8c:cc:8b:3b:73:4a:02:a2:45:f8:59:3a:
cb:fd:7f:a0:81:f6:28:3c:1a:95:33:21:35:b6:b4:
d9:9e:d8:00:09:d9:b9:e0:05:dd:75:3f:f0:55:c5:
db:91:54:bc:f7:f4:cc:18:fe:38:85:ed:74:32:2a:
24:57:a8:67:07:a2:e8:21:67:36:45:13:26:f6:e1:
04:1a:c9:b1:73:24:6f:5b:c9:46:e4:c5:ce:db:7d:
8b:e2:cc:d0:72:fe:ef:db:20:10:af:53:7e:ca:d1:
43:0a:b0:db:1f:77:4c:63:7c:ff:b9:e4:d5:2a:16:
f5:4f:56:77:3f:88:63:c6:fe:99:d3:13:c8:d6:ee:
f3:aa:4d:63:c2:e6:96:11:e6:b3:98:eb:0f:a2:d7:
76:76:53:f1:15:76:47:41:a9:44:86:b9:58:e3:21:
83:9b:14:be:93:0a:ed:46:54:d3:7e:ff:e1:ae:8e:
3e:4f:c1:a3:2c:c2:6e:44:7e:09:f3:99:8e:de:67:
a0:6a:f8:f1:4d:81:d1:c1:e5:0c:88:a0:4b:e3:55:
aa:60:d2:9a:fa:07:fd:95:92:8f:66:7e:3d:a1:77:
d1:e0:0c:ca:b0:23:75:37:c3:00:3d:f6:09:4f:4a:
9e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:95:C2:E4:AC:91:05:EC:60:78:ED:7A:A7:63:3A:84:EE:8D:58:B6
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/OpXC5KyRBexgeO16p2M6hO6NWLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.242.0/23
Signature Algorithm: sha256WithRSAEncryption
93:b4:bd:c8:ad:06:c9:a0:e0:8f:97:72:b8:b0:5f:a4:94:0d:
08:d0:c5:3a:43:5b:55:aa:49:6b:36:f0:01:fb:18:bd:4a:ba:
28:ca:e5:04:a4:15:20:64:8f:9e:02:ec:94:8e:76:aa:23:8e:
6c:91:f0:41:a3:e8:fb:69:7c:53:11:76:19:9e:ef:e7:3a:bc:
fc:13:18:14:52:ad:08:4d:b5:d7:8e:8d:bb:54:e5:eb:41:ed:
55:f8:33:d8:a8:e1:f5:70:d5:54:14:28:16:df:a6:7d:e3:78:
d8:9e:fa:fd:81:ae:65:3f:94:bf:ed:9f:61:1b:92:cf:9f:40:
00:58:5e:0c:11:ed:13:ea:ab:f6:61:f6:bd:5e:46:a7:18:77:
50:60:6c:58:22:43:0f:fa:97:83:75:35:54:b6:2f:89:d0:89:
d2:90:14:bd:b4:19:99:2f:46:de:0d:74:5c:63:96:e1:d3:ad:
1f:ec:7f:27:b0:00:74:67:70:33:87:1f:90:3d:7a:4d:6f:52:
18:75:40:9b:e6:ee:3a:b9:0b:dd:f3:ab:f8:ea:57:11:20:7c:
93:39:67:58:68:d7:3a:53:86:d3:b2:a8:31:ff:9a:dc:0f:04:
3c:86:ad:b4:ff:e7:cb:f1:23:31:44:0a:4e:ca:54:76:5b:66:
99:95:9d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org