Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/67d1d4-cbd8-45f9-8c48-ec66f239fe0c/1/Cf3hDQExOa83E6psRE5BNKLS2Q4.roa
File: Cf3hDQExOa83E6psRE5BNKLS2Q4.roa (raw, json)
Hash identifier: vIdT+8vYTswqfcBnVNqkUaIJmV/dTjplklga+Yovt/4=
Subject key identifier: 09:FD:E1:0D:01:31:39:AF:37:13:AA:6C:44:4E:41:34:A2:D2:D9:0E
Certificate issuer: /CN=424e8bd525b199edc1b7392da20225f74896da9d
Certificate serial: B24BF6
Authority key identifier: 42:4E:8B:D5:25:B1:99:ED:C1:B7:39:2D:A2:02:25:F7:48:96:DA:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk6L1SWxme3BtzktogIl90iW2p0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/67d1d4-cbd8-45f9-8c48-ec66f239fe0c/1/Cf3hDQExOa83E6psRE5BNKLS2Q4.roa
Signing time: Sat 01 Jan 2022 00:58:50 +0000
ROA not before: Sat 01 Jan 2022 00:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.9.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11684854 (0xb24bf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424e8bd525b199edc1b7392da20225f74896da9d
Validity
Not Before: Jan 1 00:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09fde10d013139af3713aa6c444e4134a2d2d90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a9:61:ff:be:61:09:f1:4e:05:49:b3:0b:29:
dc:13:f9:d2:62:7b:4d:ab:0b:03:9c:41:ba:4b:e0:
57:fb:36:d5:29:88:38:19:68:76:2c:84:5c:c8:1f:
0c:61:7c:6e:10:ef:07:42:57:90:98:7d:3f:de:0b:
41:cd:45:82:4e:16:3c:e9:2b:52:6a:5e:18:aa:5a:
38:47:86:b5:a7:bf:2e:7c:d8:c1:1c:f5:aa:bb:97:
d8:fc:6e:80:61:cd:b0:4f:00:36:01:e6:60:23:be:
fb:18:02:69:52:3d:56:8e:9a:53:0e:78:99:6b:a7:
00:86:7a:7d:bf:29:bc:45:5c:a5:04:21:4c:87:8e:
57:41:fd:d2:5c:12:90:be:e0:6f:b0:1c:2b:cf:c0:
88:57:4b:eb:80:d0:71:9c:62:a6:61:a1:e2:47:43:
de:38:23:b0:c8:1d:8d:44:23:62:3a:88:ad:9f:78:
cb:89:08:ed:75:c3:ce:85:83:36:b4:98:64:cc:a2:
a2:d9:d8:74:ca:92:df:3b:21:db:d2:77:36:1b:da:
4f:fe:87:81:0f:4b:9e:bf:34:d5:90:8d:d4:21:6c:
f5:f7:cf:05:b4:6e:ca:79:07:5f:28:df:56:d3:d4:
eb:a0:48:a4:bf:f6:2c:77:fe:a2:45:b4:13:59:1a:
3d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:FD:E1:0D:01:31:39:AF:37:13:AA:6C:44:4E:41:34:A2:D2:D9:0E
X509v3 Authority Key Identifier:
keyid:42:4E:8B:D5:25:B1:99:ED:C1:B7:39:2D:A2:02:25:F7:48:96:DA:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk6L1SWxme3BtzktogIl90iW2p0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/67d1d4-cbd8-45f9-8c48-ec66f239fe0c/1/Cf3hDQExOa83E6psRE5BNKLS2Q4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/67d1d4-cbd8-45f9-8c48-ec66f239fe0c/1/Qk6L1SWxme3BtzktogIl90iW2p0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.156.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:f3:82:7d:22:27:b7:a5:5f:58:cc:9c:27:6d:d6:22:51:0e:
77:b4:11:3f:0c:44:cb:78:fa:d0:24:0e:11:53:2d:b7:97:e1:
3e:f9:b0:d0:e5:ce:8e:66:ce:10:29:6d:8d:78:32:cb:b2:c0:
5f:48:fd:1e:cb:8d:24:95:6d:5f:5b:0d:5d:91:70:f5:c4:79:
e7:7f:c8:20:b9:e2:3c:68:ef:cb:ec:07:13:82:d4:a3:ea:ca:
57:22:20:0e:99:09:28:8d:a9:89:ee:4c:61:a7:26:48:4a:64:
55:b4:7d:a8:a8:2e:06:ca:cb:4c:5a:f6:16:7b:e4:4f:4e:cc:
15:12:f8:da:e3:d2:f4:17:2b:c9:29:cd:c3:f5:5c:9e:61:38:
d3:98:b9:15:e1:10:7f:a4:f4:88:16:d5:1c:a4:36:76:03:73:
05:5a:84:f0:e1:72:57:9b:1a:8b:ec:cf:46:7c:68:fc:0c:71:
39:ff:f9:38:76:92:b2:75:73:a3:b9:48:1c:48:bb:bb:40:08:
b5:d7:28:dd:ce:d5:6b:00:5c:b5:ef:5a:85:7a:86:c3:d9:53:
0e:be:11:69:6e:4a:13:07:7d:08:7d:87:44:90:ac:47:9f:76:
8d:1a:02:80:ae:99:2d:3d:5d:9e:30:2d:b3:56:d8:f1:6c:06:
d5:a7:13:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:31 2024 by rpki-client on console-fra.rpki-client.org