Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/RaMd0vu6S6igBan8D44wP49zghM.roa
File: RaMd0vu6S6igBan8D44wP49zghM.roa (raw, json)
Hash identifier: xP4yKtK9Lc7WprqaSPs67XlLtiUvmh/yTa5T4y+7PCI=
Subject key identifier: 45:A3:1D:D2:FB:BA:4B:A8:A0:05:A9:FC:0F:8E:30:3F:8F:73:82:13
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 0313F691
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/RaMd0vu6S6igBan8D44wP49zghM.roa
Signing time: Sat 01 Jan 2022 07:53:55 +0000
ROA not before: Sat 01 Jan 2022 07:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26636
IP address blocks: 45.158.8.0/22 maxlen: 22
45.153.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51639953 (0x313f691)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Jan 1 07:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45a31dd2fbba4ba8a005a9fc0f8e303f8f738213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3d:ba:80:60:51:3a:75:9c:21:d0:c8:3b:83:
b6:3c:95:f1:7f:df:97:bf:ad:8f:f6:e8:d1:ce:5a:
35:68:9a:6d:5d:76:69:54:43:99:47:68:e2:87:b3:
87:ca:00:79:08:ba:12:ab:d2:2b:d4:81:89:b2:85:
f4:a3:f1:ca:9a:a1:37:c1:25:9c:01:63:98:b3:ff:
43:8a:b3:13:e6:f7:72:69:e1:58:ae:53:dc:59:76:
5e:c7:49:d5:4e:fa:92:d9:55:55:03:1f:40:10:1c:
d1:d3:34:1e:cb:62:2b:f1:b0:31:bf:36:fd:41:3d:
e4:de:d2:3d:08:f8:2f:28:80:41:37:54:aa:99:d9:
4b:e7:4c:46:c6:15:be:35:b7:a7:22:d0:9b:38:42:
2f:aa:c0:13:76:0a:18:73:06:4d:6f:56:b0:98:b4:
ab:ad:ea:5c:34:7c:94:42:a3:6b:17:f4:98:cd:ca:
68:92:42:47:9e:14:24:54:89:e2:c2:26:97:98:d4:
5b:a6:b4:ec:01:e9:6f:ae:f4:62:7b:18:d3:e4:d7:
c9:64:27:4f:b5:9b:f9:f5:b7:84:30:41:02:aa:ae:
1f:8d:75:ce:a5:f0:96:04:e1:62:33:30:71:41:0e:
2d:56:29:82:06:a0:dd:d9:c0:d6:90:18:69:22:4a:
1d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A3:1D:D2:FB:BA:4B:A8:A0:05:A9:FC:0F:8E:30:3F:8F:73:82:13
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/RaMd0vu6S6igBan8D44wP49zghM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.4.0/24
45.158.8.0/22
Signature Algorithm: sha256WithRSAEncryption
32:31:53:92:4a:86:89:43:f6:32:c5:35:ef:a9:ea:fc:6d:b8:
15:79:3a:94:21:3d:a9:93:28:dd:88:82:d1:37:8c:1e:0f:91:
a1:88:f2:4f:e0:75:ff:dc:e9:2e:b3:60:6e:4c:e6:33:84:96:
d0:e7:72:32:a6:58:8f:71:e8:08:42:1e:ff:3a:78:69:c8:17:
f3:6b:bf:38:b4:85:5d:01:a6:a6:ec:c3:62:26:6d:3c:fa:32:
9a:3c:0c:c7:2e:c7:c9:da:f7:c5:d7:d2:52:12:b6:94:9c:04:
6d:b7:07:64:c8:df:0a:4b:86:a8:e8:97:d3:cc:ac:be:6a:2c:
93:b1:42:2f:04:f5:43:f3:d0:8e:e1:b5:84:34:4a:56:3f:5d:
72:98:fd:14:39:9e:e1:8c:b4:78:c8:d7:ab:c7:97:c5:38:f6:
79:72:cd:e3:7a:77:c1:ad:38:76:29:c8:02:71:63:24:e7:f7:
07:1d:dc:45:a2:0a:30:90:2e:29:b0:ea:c1:18:99:8e:61:00:
4b:69:9f:71:35:70:ae:4d:cf:19:40:95:10:0b:91:49:82:19:
9a:ca:ee:6d:5b:32:6a:7a:69:64:65:f2:b1:ad:13:82:5a:3d:
42:a9:08:2e:e9:46:0a:6d:28:fa:f6:2f:b0:a9:48:0d:7c:d4:
d5:19:fe:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:51 2024 by rpki-client on console-ams.rpki-client.org