Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/ze1lkJV3Cg6HssBR1ipn1_QURvk.roa
File: ze1lkJV3Cg6HssBR1ipn1_QURvk.roa (raw, json)
Hash identifier: TwnBP792KzszHUg5X/o29d/HSjjdROdYhStAV/1+EmY=
Subject key identifier: CD:ED:65:90:95:77:0A:0E:87:B2:C0:51:D6:2A:67:D7:F4:14:46:F9
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 03DA44C4
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/ze1lkJV3Cg6HssBR1ipn1_QURvk.roa
Signing time: Thu 10 Mar 2022 19:47:32 +0000
ROA not before: Thu 10 Mar 2022 19:47:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 45.152.242.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64636100 (0x3da44c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Mar 10 19:47:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cded659095770a0e87b2c051d62a67d7f41446f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:20:2e:c2:1b:87:21:ae:64:0c:b7:51:fe:bc:
cb:e6:72:13:d7:66:45:4b:a9:94:42:27:93:bc:2a:
10:c8:28:56:61:52:50:73:bd:97:3a:24:d0:ad:fb:
38:53:40:7c:8c:70:3a:a0:ea:be:95:18:9d:1e:6d:
0f:52:f1:1a:08:44:20:63:79:c0:a2:55:aa:17:ee:
a8:b8:28:1b:cc:be:ba:2f:b4:a4:da:33:42:0f:81:
73:86:e9:1c:07:1b:be:ad:ab:e5:08:04:48:5c:9f:
a6:9d:db:b8:06:ca:e3:b3:b8:69:0a:ef:cf:95:29:
c8:f0:00:9e:77:e1:9b:53:c1:fe:a4:3e:c5:72:23:
de:6e:89:7d:cc:ab:8c:06:8d:de:eb:b1:12:9a:95:
54:aa:6d:8f:39:46:b1:28:a6:e1:cb:0a:53:f0:7d:
ea:43:75:a4:37:17:c7:6d:72:f4:99:86:5d:18:fe:
e2:6b:21:ab:0d:d2:e3:59:51:e1:75:02:01:4a:86:
44:79:6c:4b:eb:95:2d:2a:73:0f:dc:02:06:82:a3:
7d:69:30:ea:dc:05:d6:ee:77:45:74:87:36:83:c5:
fd:a1:e9:54:a1:ec:80:75:3c:3b:3a:f5:85:24:e0:
28:8e:04:eb:9a:45:41:8b:00:e3:c3:64:1f:e1:28:
45:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:ED:65:90:95:77:0A:0E:87:B2:C0:51:D6:2A:67:D7:F4:14:46:F9
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/ze1lkJV3Cg6HssBR1ipn1_QURvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.242.0/23
Signature Algorithm: sha256WithRSAEncryption
cd:41:4c:93:d5:01:2d:e6:f3:58:a1:af:3d:9e:06:2f:8f:c1:
26:da:1c:ed:16:2a:34:b5:15:41:b2:9e:2a:f0:01:56:94:c0:
71:ae:25:f5:93:28:ee:cd:97:fc:74:d4:f4:b3:89:eb:2f:7c:
ed:77:5d:8f:a9:45:56:ee:b7:fb:b6:2f:37:8e:15:09:aa:ed:
21:7e:dd:5c:0e:e5:7d:cb:68:71:2e:3a:6f:5c:57:4b:ce:1e:
71:52:bb:1d:34:fb:cd:44:7f:71:49:d1:f9:d8:84:bd:b8:dd:
91:b3:a9:10:05:f6:94:3b:7b:f5:44:9b:e4:ab:32:26:60:cd:
78:59:85:2e:ad:8f:42:e4:48:0e:5b:59:a5:63:3e:49:79:9b:
74:3b:26:40:2f:29:e7:64:be:9c:52:6d:51:cb:06:d8:d8:b9:
c5:7b:66:01:e9:fc:09:57:e0:85:7d:1b:eb:09:bc:62:d6:8a:
df:bd:d6:cf:cb:f0:da:1b:51:6e:83:d5:52:fd:04:af:81:36:
8f:5d:e5:12:31:54:35:0c:8d:0f:bf:40:3f:25:e8:e4:6b:4b:
e6:13:72:9f:7d:f7:de:da:28:7e:1f:6f:b1:ae:e3:5c:75:36:
2d:91:c1:91:73:da:9e:88:d8:77:f1:4e:70:59:78:b2:0b:cf:
44:ee:21:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:44 2023 by rpki-client on console-ams.rpki-client.org