Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/2gHBgQ5q4tsvm3z68Dm072ST_zQ.roa
File: 2gHBgQ5q4tsvm3z68Dm072ST_zQ.roa (raw, json)
Hash identifier: 9l1f7HIjoJtkBnL1h4Hj0kakdu/w/kC1KmpF3pDdqL8=
Subject key identifier: DA:01:C1:81:0E:6A:E2:DB:2F:9B:7C:FA:F0:39:B4:EF:64:93:FF:34
Certificate issuer: /CN=84808b8234181ff48d3210ddfc87090ed67d02bf
Certificate serial: 01856D785D7BCECFBDA4223EB1E24DB15AAC
Authority key identifier: 84:80:8B:82:34:18:1F:F4:8D:32:10:DD:FC:87:09:0E:D6:7D:02:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hICLgjQYH_SNMhDd_IcJDtZ9Ar8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/2gHBgQ5q4tsvm3z68Dm072ST_zQ.roa
Signing time: Sun 01 Jan 2023 13:14:42 +0000
ROA not before: Sun 01 Jan 2023 13:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57335
IP address blocks: 45.146.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:5d:7b:ce:cf:bd:a4:22:3e:b1:e2:4d:b1:5a:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84808b8234181ff48d3210ddfc87090ed67d02bf
Validity
Not Before: Jan 1 13:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da01c1810e6ae2db2f9b7cfaf039b4ef6493ff34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b6:88:4d:38:f9:b9:97:55:88:1d:a5:18:b4:
6c:8f:93:70:e6:f0:3d:5a:3f:6b:24:12:62:50:de:
61:e6:c0:c0:34:cf:05:11:7a:17:33:e2:a9:e2:4f:
5a:d7:47:7f:7b:1a:96:7f:95:f2:a7:73:a5:4a:bb:
98:37:f2:bf:53:22:61:e9:35:21:f0:2a:6e:a5:a1:
96:44:e1:f6:c7:c1:2f:11:12:1a:db:73:7c:e6:f6:
c6:f1:f4:7e:31:6b:4b:43:9e:a4:a4:dd:f4:df:3f:
5d:4b:db:35:c5:2f:ee:9e:ad:7e:1d:4e:9d:a6:eb:
a9:8a:7b:5a:9c:a7:02:9f:53:25:ab:59:da:cf:30:
76:9f:77:41:6e:58:f6:e1:05:5d:c5:f0:27:be:5b:
94:39:f2:7b:ff:be:05:34:22:54:7a:b2:a5:f6:28:
c2:cc:a2:3c:50:cc:b3:e6:32:8d:de:a8:5e:54:24:
9e:d5:bf:c9:c7:cb:6f:90:da:e2:98:1e:64:5d:7a:
a0:fd:19:ea:81:64:47:47:e8:dc:90:b5:b2:13:f3:
dc:c1:41:f7:8a:7d:cd:18:21:88:ff:51:d9:fd:b2:
6c:71:bc:85:c0:a6:b1:f1:3e:61:3f:35:7f:ba:15:
26:f2:32:41:ad:9d:bd:1b:1e:b8:df:d6:3a:e7:a1:
99:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:01:C1:81:0E:6A:E2:DB:2F:9B:7C:FA:F0:39:B4:EF:64:93:FF:34
X509v3 Authority Key Identifier:
keyid:84:80:8B:82:34:18:1F:F4:8D:32:10:DD:FC:87:09:0E:D6:7D:02:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hICLgjQYH_SNMhDd_IcJDtZ9Ar8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/2gHBgQ5q4tsvm3z68Dm072ST_zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/hICLgjQYH_SNMhDd_IcJDtZ9Ar8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.21.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:e6:06:ad:2b:27:2e:03:0d:cd:2c:3f:db:80:5a:6a:f9:4b:
6a:22:b5:0e:07:ff:f5:6b:6b:6b:7b:43:0d:cd:76:52:0c:69:
d9:5d:63:46:8a:18:13:fb:1e:da:2f:4e:c0:4a:91:ce:4c:0c:
cc:5e:99:3a:df:e3:e3:e9:b3:7b:bc:31:f8:89:b3:8b:09:51:
1b:6d:d8:fe:ab:64:34:fe:d9:ae:43:f8:ba:09:24:a0:88:cf:
29:f0:51:7f:25:7b:2d:89:24:7e:e8:92:db:2e:18:0b:e5:7c:
08:53:2c:96:d7:30:ae:a6:3b:8c:f9:56:b1:be:11:dc:a9:2c:
e2:53:a1:99:a6:c0:36:bb:0b:5a:5b:bf:12:21:6c:fa:04:84:
53:14:42:33:84:cd:07:81:c4:1e:96:4c:94:84:3c:98:b0:c0:
48:96:ab:3b:48:15:84:8e:c4:76:fb:1e:bb:07:78:d9:2e:4d:
a2:1b:1b:82:13:15:90:ed:88:9b:f5:62:a3:08:2d:ed:09:8e:
b8:a2:54:73:b1:86:f4:0c:8e:57:f5:fd:30:1b:06:d8:43:96:
43:f6:10:2c:f5:5a:06:ef:d3:8f:22:cb:3d:0f:8b:03:2e:08:
0c:d8:50:22:0f:a8:99:0a:59:72:9b:1d:6d:c4:a6:cb:38:13:
8c:7c:39:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:53 2023 by rpki-client on console-ams.rpki-client.org