Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/4a22bb-2862-421c-b071-da99251b1328/1/iuZjl9CKMz5AIivGgsTijXXQYdg.roa
File: iuZjl9CKMz5AIivGgsTijXXQYdg.roa (raw, json)
Hash identifier: Yj/ULH+iJ+RcCmDEq38ZP9pN6bkR/EBEPXb5v+mQUjo=
Subject key identifier: 8A:E6:63:97:D0:8A:33:3E:40:22:2B:C6:82:C4:E2:8D:75:D0:61:D8
Certificate issuer: /CN=12608e7181a303df044911ab4f2d51c2887ef278
Certificate serial: 018CC8DE6A5C695E4F5628527A07EDAC887C
Authority key identifier: 12:60:8E:71:81:A3:03:DF:04:49:11:AB:4F:2D:51:C2:88:7E:F2:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmCOcYGjA98ESRGrTy1Rwoh-8ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/4a22bb-2862-421c-b071-da99251b1328/1/iuZjl9CKMz5AIivGgsTijXXQYdg.roa
Signing time: Tue 02 Jan 2024 06:31:08 +0000
ROA not before: Tue 02 Jan 2024 06:31:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40065
IP address blocks: 45.149.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:6a:5c:69:5e:4f:56:28:52:7a:07:ed:ac:88:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12608e7181a303df044911ab4f2d51c2887ef278
Validity
Not Before: Jan 2 06:31:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ae66397d08a333e40222bc682c4e28d75d061d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3f:ad:15:05:7a:7d:e1:3e:5b:fc:81:0a:a6:
6e:40:d3:b6:53:92:2d:3c:d7:83:3f:06:d6:7f:a1:
29:86:cb:93:3e:cc:f8:f6:aa:41:17:76:be:bd:a1:
73:a7:96:e1:11:5d:c7:a4:34:1c:f3:8d:1f:de:56:
2f:3d:35:da:1a:00:b5:7a:0d:28:39:58:0a:bb:65:
11:c1:4b:40:22:f7:46:6e:8d:2b:2f:ee:70:06:92:
a2:dd:dd:1c:fc:88:2a:ad:47:b9:4f:52:25:2b:bc:
c4:15:0c:b5:b5:cb:73:25:63:c5:b5:79:e7:e1:9c:
ad:15:ac:19:57:54:57:ad:82:fd:cf:52:df:d4:70:
c3:1e:24:3b:85:1b:e2:82:b2:9f:03:0f:9b:80:b4:
25:6a:f3:6a:cd:c7:88:a0:1c:1e:5e:8b:7a:12:39:
ec:e4:f3:ef:41:a0:c8:0c:27:e9:f2:4f:89:31:73:
10:cd:8f:f5:fa:88:65:4e:85:9f:f0:95:46:27:fe:
ef:9a:09:46:70:8a:aa:a6:e4:c9:a1:b7:61:32:21:
b1:cb:18:99:54:ac:72:cf:1c:aa:f3:cf:13:4e:60:
23:bf:b3:49:c4:eb:28:13:fd:f0:18:ca:5c:9c:4a:
e6:93:d2:5c:05:50:41:d4:88:a4:1b:3b:2d:e2:b7:
6d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E6:63:97:D0:8A:33:3E:40:22:2B:C6:82:C4:E2:8D:75:D0:61:D8
X509v3 Authority Key Identifier:
keyid:12:60:8E:71:81:A3:03:DF:04:49:11:AB:4F:2D:51:C2:88:7E:F2:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmCOcYGjA98ESRGrTy1Rwoh-8ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/4a22bb-2862-421c-b071-da99251b1328/1/iuZjl9CKMz5AIivGgsTijXXQYdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/4a22bb-2862-421c-b071-da99251b1328/1/EmCOcYGjA98ESRGrTy1Rwoh-8ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.17.0/24
Signature Algorithm: sha256WithRSAEncryption
13:15:f6:99:76:be:86:ac:84:3e:7b:21:af:ab:3b:ca:6c:ef:
8d:a0:66:13:37:57:b3:43:9d:f8:06:c4:78:2a:c2:13:aa:08:
0e:01:7c:5e:f6:e3:c4:07:8a:59:7b:cb:45:79:2d:88:c0:04:
e5:8b:f0:72:c9:0a:75:24:81:f5:47:8d:f2:49:52:1e:b1:5b:
db:22:14:a5:00:ca:65:d0:dc:4c:22:f3:11:04:66:51:c5:a0:
0f:74:38:f6:27:60:3f:8b:50:25:f7:95:7b:a5:7e:0b:b3:ab:
72:c6:e2:b9:51:47:ab:86:3b:a6:7e:7e:66:79:d8:f8:e2:ef:
80:ee:b4:2f:6a:9c:c6:b3:fe:0f:9e:38:76:5c:57:90:51:fe:
2c:a9:d7:ad:00:ec:8f:6f:87:85:99:db:46:b9:7d:af:17:48:
ff:ce:79:c7:89:a8:20:61:c8:96:cd:ea:c5:10:4b:65:ac:da:
4b:db:14:11:d8:e2:56:18:02:15:19:be:7e:3e:72:01:c9:b4:
10:db:94:bf:5a:9e:aa:46:3e:da:12:7b:3a:03:28:6e:c3:e0:
ff:eb:4c:75:2d:42:c4:a4:f5:28:71:5e:f4:53:09:c7:6b:c9:
fc:af:c0:a6:a6:56:c9:44:78:eb:a4:2f:1f:95:7c:45:39:f7:
8c:9f:cb:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:53 2024 by rpki-client on console-ams.rpki-client.org