Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/3fd213-f593-4297-a8cc-f10a9c5bcb2d/1/5VnBVeGnOQCJ0OJeT-rvMGFWr2A.roa
File: 5VnBVeGnOQCJ0OJeT-rvMGFWr2A.roa (raw, json)
Hash identifier: dNLpCsZ5nZLyf5IDDRjQvxdjoMFttyqviYBOZlGAGQ8=
Subject key identifier: E5:59:C1:55:E1:A7:39:00:89:D0:E2:5E:4F:EA:EF:30:61:56:AF:60
Certificate issuer: /CN=aaa4055ae158938d240f1bd4c6166e9ff251e6a5
Certificate serial: 07FE8FB7
Authority key identifier: AA:A4:05:5A:E1:58:93:8D:24:0F:1B:D4:C6:16:6E:9F:F2:51:E6:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqQFWuFYk40kDxvUxhZun_JR5qU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/3fd213-f593-4297-a8cc-f10a9c5bcb2d/1/5VnBVeGnOQCJ0OJeT-rvMGFWr2A.roa
Signing time: Sat 01 Jan 2022 04:57:11 +0000
ROA not before: Sat 01 Jan 2022 04:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1136
IP address blocks: 145.70.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134123447 (0x7fe8fb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaa4055ae158938d240f1bd4c6166e9ff251e6a5
Validity
Not Before: Jan 1 04:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e559c155e1a7390089d0e25e4feaef306156af60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:40:f9:5c:9d:35:47:7a:78:dc:58:c1:86:76:
c1:9c:d9:73:06:ab:c8:fb:0f:73:fc:96:c4:c6:f3:
3c:e6:46:ff:4e:65:55:74:62:fa:ec:9c:8f:66:94:
46:01:1c:63:8f:4e:15:6c:fe:d4:09:a5:4c:8e:b0:
54:b6:15:94:76:28:be:21:4a:40:11:ac:d8:e5:e8:
57:0b:72:1e:78:b3:70:71:c3:0a:3a:b2:a2:18:64:
30:74:cc:5b:3e:c3:54:8d:2a:ff:7c:f9:b1:30:38:
2b:d5:59:b6:a5:b2:48:b3:6b:5a:1a:7e:24:25:00:
a3:01:d8:7a:50:ca:1e:55:91:c2:cd:2a:b6:78:49:
19:aa:e2:7f:18:6b:b3:86:8e:5a:9f:89:fc:37:f4:
bd:46:46:91:96:5d:ee:5c:f9:98:15:67:3a:22:bf:
6d:9d:63:f2:05:c0:46:fc:19:5e:9e:8f:77:67:f9:
4a:47:d0:23:cd:00:e4:3e:e4:fa:64:ab:31:39:e3:
00:75:54:c6:90:71:35:55:b5:5a:75:62:a3:02:dd:
ef:06:e6:16:de:71:e2:e6:ab:8d:e6:d1:f1:90:cb:
43:e0:9a:6c:8f:f3:92:60:a0:7c:52:49:39:be:93:
8d:d6:a7:f7:12:7d:55:7d:0e:e6:89:37:be:08:1f:
aa:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:59:C1:55:E1:A7:39:00:89:D0:E2:5E:4F:EA:EF:30:61:56:AF:60
X509v3 Authority Key Identifier:
keyid:AA:A4:05:5A:E1:58:93:8D:24:0F:1B:D4:C6:16:6E:9F:F2:51:E6:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqQFWuFYk40kDxvUxhZun_JR5qU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/3fd213-f593-4297-a8cc-f10a9c5bcb2d/1/5VnBVeGnOQCJ0OJeT-rvMGFWr2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/3fd213-f593-4297-a8cc-f10a9c5bcb2d/1/qqQFWuFYk40kDxvUxhZun_JR5qU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.70.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:97:53:6e:fc:9d:de:f1:c2:94:ab:c1:77:c5:6c:ff:a7:93:
10:3d:42:9b:ac:ab:89:7f:da:d2:f0:33:c2:f4:44:d7:36:9b:
7e:3a:40:b2:49:ef:69:49:ae:d4:79:fb:ae:ba:d6:c0:ed:86:
d8:0c:a7:b4:c6:52:46:01:04:4c:2b:72:33:0b:11:36:44:d4:
d8:6c:78:9c:78:fc:fe:95:f7:40:8b:37:46:65:42:09:74:b2:
4c:14:85:7c:92:f9:71:5a:8f:38:13:d1:69:dd:56:2f:91:2c:
5a:03:b6:ea:95:10:ab:49:e2:d2:77:83:4c:3f:40:d5:27:2f:
ea:5a:e4:19:49:27:01:93:cb:8e:ab:ea:4c:f3:da:2a:d9:80:
cf:11:96:e2:94:ff:97:8c:79:1d:0a:69:fc:9d:dd:82:55:7e:
d8:d2:bc:1a:94:db:ef:33:dd:42:2f:3d:2e:12:48:9f:bd:29:
f5:ff:31:e3:15:f2:55:93:a5:b0:43:3a:1c:fa:cf:6a:49:50:
6b:75:f9:4e:5a:2c:51:2b:c2:31:66:72:c2:78:df:e0:2d:96:
ab:47:e0:b1:3a:ca:1d:2a:4e:24:c7:d9:71:bd:ee:47:41:ec:
54:f1:ed:0e:7e:0a:ec:cd:93:91:4e:77:98:ce:c1:60:2c:3c:
f5:70:6f:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:08 2024 by rpki-client on console-ams.rpki-client.org