Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/51f895-7b98-4604-b4d2-5ce11d6734c0/1/ByO2i-uuh7luzhjD3G60UutV5aI.roa
File: ByO2i-uuh7luzhjD3G60UutV5aI.roa (raw, json)
Hash identifier: /Yc+BcTt3PZ7M8y1xn/bC6dq+/aBFv0sjXtJI+Eb3dQ=
Subject key identifier: 07:23:B6:8B:EB:AE:87:B9:6E:CE:18:C3:DC:6E:B4:52:EB:55:E5:A2
Certificate issuer: /CN=b7ecf9d374cc0f739671ee55055bd58c5fb767a8
Certificate serial: 0785B4CA
Authority key identifier: B7:EC:F9:D3:74:CC:0F:73:96:71:EE:55:05:5B:D5:8C:5F:B7:67:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t-z503TMD3OWce5VBVvVjF-3Z6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/51f895-7b98-4604-b4d2-5ce11d6734c0/1/ByO2i-uuh7luzhjD3G60UutV5aI.roa
Signing time: Sat 01 Jan 2022 14:01:09 +0000
ROA not before: Sat 01 Jan 2022 14:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3549
IP address blocks: 45.150.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126203082 (0x785b4ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7ecf9d374cc0f739671ee55055bd58c5fb767a8
Validity
Not Before: Jan 1 14:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0723b68bebae87b96ece18c3dc6eb452eb55e5a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:88:32:6e:25:52:c2:f9:67:49:30:61:39:67:
20:1f:03:97:68:af:9c:63:10:32:fe:b7:10:e7:5b:
78:01:a2:6b:9e:19:45:31:f2:94:da:e7:9a:1a:4e:
df:73:78:29:34:89:9b:2c:c6:2a:06:46:d2:a6:f9:
5e:f2:db:a2:fb:0a:0a:48:63:18:48:8b:b8:a6:27:
4a:f6:17:c0:f7:7b:96:61:17:63:9c:d5:22:17:1d:
77:3f:00:1e:73:00:10:b9:d0:33:b0:2a:b1:c3:36:
35:f5:17:77:ff:ab:7c:70:dc:20:86:8c:cf:b0:d3:
b6:6d:1f:b2:57:3a:e9:c8:0f:76:33:97:6c:05:95:
d7:c8:d0:7a:8a:8e:b0:59:ae:49:92:35:c0:bc:30:
f7:ba:a5:d0:a7:ee:86:cf:0b:c1:75:e1:b7:41:c9:
b0:97:6e:ca:40:d6:d2:96:e8:c3:a8:e2:37:b2:e3:
4b:fe:26:ae:d1:41:6c:4f:b0:a1:3c:65:44:a9:ec:
c6:9b:5d:bc:1b:eb:fe:a9:20:26:bf:ef:1d:5c:33:
07:94:68:b0:19:be:b0:14:75:0d:1f:4b:85:bd:3f:
66:bb:29:48:8e:94:f3:6e:db:b3:f5:1f:a7:15:f1:
a2:84:d4:a9:71:ba:43:43:48:c2:db:8f:ae:37:63:
f6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:23:B6:8B:EB:AE:87:B9:6E:CE:18:C3:DC:6E:B4:52:EB:55:E5:A2
X509v3 Authority Key Identifier:
keyid:B7:EC:F9:D3:74:CC:0F:73:96:71:EE:55:05:5B:D5:8C:5F:B7:67:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t-z503TMD3OWce5VBVvVjF-3Z6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51f895-7b98-4604-b4d2-5ce11d6734c0/1/ByO2i-uuh7luzhjD3G60UutV5aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51f895-7b98-4604-b4d2-5ce11d6734c0/1/t-z503TMD3OWce5VBVvVjF-3Z6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.220.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:bb:23:4d:21:9c:07:d0:5a:25:42:44:64:47:e5:6d:7a:a4:
25:16:84:e6:78:2d:41:9c:fc:e8:7b:c9:8d:9e:47:b1:b1:33:
97:60:d8:7e:e7:d9:7b:78:98:fa:bd:13:c0:6f:9c:10:c5:ee:
96:7b:69:08:14:29:e1:d0:6b:19:1c:3b:14:5a:95:12:59:5a:
c6:fa:90:c6:91:d4:25:58:58:a2:70:e6:f9:a7:5e:6f:c2:97:
db:f7:a3:40:e8:1d:e2:7a:58:35:0f:31:0b:1f:ba:89:03:60:
7b:ec:94:33:31:2e:29:a9:05:bc:5f:03:f2:1b:5f:64:80:2b:
81:1e:8f:bd:7f:20:46:61:48:d0:88:e4:4c:44:7f:5c:ce:a4:
94:1e:c3:1b:62:22:24:93:34:75:dd:fa:65:d2:32:a2:66:c3:
73:8f:e3:25:7e:8a:d7:a7:8b:4c:ab:bd:98:d7:c8:3b:c7:3a:
93:8c:25:f0:2f:5e:96:fa:c6:2c:8e:03:87:17:db:81:55:e7:
bf:a5:37:ec:6d:29:6f:57:82:4c:04:15:59:54:6c:7d:4f:17:
9d:c0:5b:03:16:fc:f6:48:d0:2b:18:8c:3c:e6:c8:2b:c0:db:
14:26:a1:3a:21:ad:69:37:4b:d9:11:65:61:56:3d:8e:5c:76:
c4:fc:5d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:39 2024 by rpki-client on console-fra.rpki-client.org