Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/d78506-02d3-4ba5-bb94-a536f9b977ec/1/eOPiu9jmSeBm-WysLN9QJirvfJ8.roa
File: eOPiu9jmSeBm-WysLN9QJirvfJ8.roa (raw, json)
Hash identifier: slAc7SOgKlLIPZKov9+WWGedxbp1K+1wX/mzYMyAtto=
Subject key identifier: 78:E3:E2:BB:D8:E6:49:E0:66:F9:6C:AC:2C:DF:50:26:2A:EF:7C:9F
Certificate issuer: /CN=3b822b20cea391e8c91e74808496bb50cfc897be
Certificate serial: 01856ECB98CFAA2E4A2A061BDCA7DDB76F19
Authority key identifier: 3B:82:2B:20:CE:A3:91:E8:C9:1E:74:80:84:96:BB:50:CF:C8:97:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4IrIM6jkejJHnSAhJa7UM_Il74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/d78506-02d3-4ba5-bb94-a536f9b977ec/1/eOPiu9jmSeBm-WysLN9QJirvfJ8.roa
Signing time: Sun 01 Jan 2023 19:25:14 +0000
ROA not before: Sun 01 Jan 2023 19:25:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34959
IP address blocks: 45.139.24.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:98:cf:aa:2e:4a:2a:06:1b:dc:a7:dd:b7:6f:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b822b20cea391e8c91e74808496bb50cfc897be
Validity
Not Before: Jan 1 19:25:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78e3e2bbd8e649e066f96cac2cdf50262aef7c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:0b:d7:0d:1a:ec:92:2d:a8:d1:0c:62:bc:58:
e8:bc:23:72:fc:91:e5:be:0f:58:92:da:60:38:99:
ce:6a:20:ec:db:e2:9c:eb:ce:a3:e1:97:76:95:11:
b6:33:51:77:2d:9d:56:41:a3:61:72:35:e1:56:f0:
80:04:63:24:d9:d5:5c:b1:b3:06:12:59:6e:72:ae:
15:9b:bb:19:23:9c:ab:0e:1a:76:84:68:f0:6c:ad:
92:4b:89:05:7f:70:f2:3c:41:45:48:68:77:cb:52:
34:2b:d5:40:93:8d:c5:3d:a4:40:91:14:26:db:4d:
54:b2:3c:cd:f6:79:78:f3:59:52:d9:32:50:80:4d:
7b:82:54:3d:32:36:6b:92:ac:48:f4:b4:68:0a:f3:
4c:7b:4a:3b:6d:95:09:af:5e:b5:20:2b:02:4c:36:
15:58:2d:fd:54:5a:ed:44:df:51:38:f6:73:be:08:
b1:0c:71:5a:dc:ad:37:5d:5f:8e:ce:3d:0b:6f:61:
74:c8:20:7b:46:4a:06:5f:c3:a2:36:5b:62:90:80:
c9:d2:fa:ca:c5:13:ac:d0:ee:69:8c:f9:45:a6:e2:
6f:f9:3f:ca:41:e8:10:54:6b:48:2f:08:32:69:1f:
99:9e:f7:43:e5:ba:58:9d:c0:a2:10:46:2c:de:7a:
4f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E3:E2:BB:D8:E6:49:E0:66:F9:6C:AC:2C:DF:50:26:2A:EF:7C:9F
X509v3 Authority Key Identifier:
keyid:3B:82:2B:20:CE:A3:91:E8:C9:1E:74:80:84:96:BB:50:CF:C8:97:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4IrIM6jkejJHnSAhJa7UM_Il74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/d78506-02d3-4ba5-bb94-a536f9b977ec/1/eOPiu9jmSeBm-WysLN9QJirvfJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/d78506-02d3-4ba5-bb94-a536f9b977ec/1/O4IrIM6jkejJHnSAhJa7UM_Il74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.24.0/22
Signature Algorithm: sha256WithRSAEncryption
56:cb:a2:8d:f5:2f:6e:9d:70:c9:9d:b1:18:a4:11:ab:83:c5:
cc:e7:7a:5a:1c:f0:61:43:7f:d7:16:b6:6a:a4:16:12:87:1f:
9e:23:74:2a:66:2e:a5:04:86:f7:d9:e4:58:40:78:db:15:4b:
cb:b2:5d:b1:93:d3:3c:31:f3:e4:02:5d:cd:72:4c:65:35:b8:
4d:40:df:27:ac:f3:00:34:1c:57:7e:22:bd:cf:08:3e:e5:f3:
f9:db:e6:1a:fa:dd:74:db:07:61:48:ec:3c:7c:06:28:4a:a0:
7a:5d:93:c0:52:2f:cf:7f:1b:ea:24:08:6b:34:c9:3b:34:9d:
00:3b:1e:0f:96:16:92:0a:84:21:df:65:32:a8:56:29:61:ad:
76:6c:33:4f:30:9b:78:d9:0e:7a:e3:c7:cc:b3:fd:ab:49:98:
1a:b5:f2:52:b8:66:ca:f6:d6:ef:88:3c:21:a7:2e:11:73:f9:
c1:69:c1:5a:e9:2b:89:79:35:bd:08:5e:0a:e7:d7:cb:b7:41:
7c:86:3b:75:cd:c4:40:bf:e7:f1:fa:8e:bd:f8:e6:32:d1:49:
27:74:51:8f:20:e0:60:40:53:70:35:4b:70:b1:d4:b7:9e:d6:
ae:d8:38:22:7c:49:ed:38:6c:c0:bf:9e:21:9f:f1:11:f3:b6:
6c:ed:76:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:20 2024 by rpki-client on console-fra.rpki-client.org