Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/9b69ea-5d9a-49e1-bab2-52ffd4099973/1/BjNH1r5pHZkO4E0BKSO2RE0A59o.roa
File: BjNH1r5pHZkO4E0BKSO2RE0A59o.roa (raw, json)
Hash identifier: 0r0Vjz2oe4WqR0mkPPn669NQQTTrmXQVVWwlx9fLiko=
Subject key identifier: 06:33:47:D6:BE:69:1D:99:0E:E0:4D:01:29:23:B6:44:4D:00:E7:DA
Certificate issuer: /CN=6d5d7c4d54e4cd5cdda878c7bb7c61964a30244f
Certificate serial: 01848AB51EDD09C906AAF49EB84F9304F508
Authority key identifier: 6D:5D:7C:4D:54:E4:CD:5C:DD:A8:78:C7:BB:7C:61:96:4A:30:24:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bV18TVTkzVzdqHjHu3xhlkowJE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/9b69ea-5d9a-49e1-bab2-52ffd4099973/1/BjNH1r5pHZkO4E0BKSO2RE0A59o.roa
Signing time: Fri 18 Nov 2022 12:27:16 +0000
ROA not before: Fri 18 Nov 2022 12:27:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.66.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8a:b5:1e:dd:09:c9:06:aa:f4:9e:b8:4f:93:04:f5:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d5d7c4d54e4cd5cdda878c7bb7c61964a30244f
Validity
Not Before: Nov 18 12:27:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=063347d6be691d990ee04d012923b6444d00e7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:27:55:62:28:ff:f9:d8:c1:1f:13:ca:1d:9b:
d2:0f:b9:49:2d:dd:ee:da:1b:a9:85:25:3a:d2:83:
32:a7:09:a3:16:28:f3:09:63:ab:5e:57:b5:46:4d:
f3:06:e1:da:5a:e1:af:23:ac:41:89:9e:fe:d8:01:
f6:b3:ab:c6:04:d2:71:cc:72:da:bd:b9:80:63:36:
d9:b6:24:6c:99:ac:d1:fe:fb:08:35:06:98:44:93:
98:fa:f9:2b:45:24:aa:79:58:78:cf:84:c0:c4:49:
49:e8:2a:a6:fd:40:5a:da:9e:0f:5e:2f:42:02:2c:
bb:26:24:65:c3:47:24:3e:e6:a6:c6:e2:dc:35:c1:
fc:d5:8f:3e:50:6a:cd:32:06:19:74:18:b8:4e:85:
3b:66:1a:0c:15:f6:55:13:79:f0:77:52:3e:cd:76:
b7:c0:b1:e2:a3:6d:f5:a4:12:46:ef:dd:d8:84:f4:
5a:ce:3b:a6:04:31:bf:e9:2b:94:98:d4:b3:49:65:
c5:4b:83:14:42:39:66:5c:61:7b:ff:60:3b:7d:a4:
f3:4e:72:66:c1:fa:c8:fc:3a:b3:b3:81:da:c3:89:
35:65:af:f7:1e:8f:50:b1:34:5a:2a:6f:50:dd:3d:
66:15:8b:eb:8a:09:97:de:b4:5e:fa:04:9e:f2:f3:
56:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:33:47:D6:BE:69:1D:99:0E:E0:4D:01:29:23:B6:44:4D:00:E7:DA
X509v3 Authority Key Identifier:
keyid:6D:5D:7C:4D:54:E4:CD:5C:DD:A8:78:C7:BB:7C:61:96:4A:30:24:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bV18TVTkzVzdqHjHu3xhlkowJE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b69ea-5d9a-49e1-bab2-52ffd4099973/1/BjNH1r5pHZkO4E0BKSO2RE0A59o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b69ea-5d9a-49e1-bab2-52ffd4099973/1/bV18TVTkzVzdqHjHu3xhlkowJE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.230.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:6b:90:83:d2:61:49:10:c6:90:47:03:ec:5f:15:6c:56:f1:
09:e0:43:fc:e7:3f:67:b5:db:d0:23:ee:ca:27:72:eb:be:bc:
a7:04:e6:cf:57:d8:d0:a6:44:c8:14:29:3e:84:fa:09:be:ae:
86:1f:79:1b:2a:e6:9f:f3:5c:79:0a:28:0e:0b:38:70:fe:21:
2c:22:67:ef:83:7b:c2:c5:fd:b5:a2:e4:f8:e4:2d:a2:76:b3:
da:bc:71:7b:db:ff:2d:b4:a5:58:fb:54:c6:c9:11:af:a1:64:
fd:d3:c2:3f:a3:50:7d:a4:45:08:e7:d4:fc:f0:10:67:77:c7:
cc:e3:21:b8:2b:50:74:14:43:36:b7:c1:9c:8f:97:98:3c:d5:
77:0a:37:9d:64:f9:01:53:e2:4e:31:5c:50:68:66:93:68:3c:
c7:28:0d:1e:50:b8:3c:b6:fe:70:1b:8d:3a:eb:31:25:49:f0:
61:62:56:29:df:42:34:cb:8c:93:3c:12:e5:22:6a:57:af:42:
02:50:52:5e:7e:2e:db:ee:bb:33:0a:96:76:2d:70:c1:fe:3c:
18:8b:45:0b:f4:06:05:25:a6:3d:29:12:4f:3a:07:79:ac:b4:
4e:74:71:d7:90:ec:2f:db:4d:13:a6:8e:7f:0a:8c:8a:d8:a9:
53:1c:c4:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:27 2024 by rpki-client on console-ams.rpki-client.org