Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/OpdIM4S0btoY3jQ3RyTFGGx7Kng.roa
File: OpdIM4S0btoY3jQ3RyTFGGx7Kng.roa (raw, json)
Hash identifier: nlPTFTAMwhOB1DFt1WH5hFBIc8Qm07g/mNW5AF4lQK0=
Subject key identifier: 3A:97:48:33:84:B4:6E:DA:18:DE:34:37:47:24:C5:18:6C:7B:2A:78
Certificate issuer: /CN=f655558b616794a4f77a648fc33609d977f5a780
Certificate serial: 018CC64AF78AFB17F1CF0A304569CDED393D
Authority key identifier: F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/OpdIM4S0btoY3jQ3RyTFGGx7Kng.roa
Signing time: Mon 01 Jan 2024 18:30:50 +0000
ROA not before: Mon 01 Jan 2024 18:30:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 45.157.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:f7:8a:fb:17:f1:cf:0a:30:45:69:cd:ed:39:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f655558b616794a4f77a648fc33609d977f5a780
Validity
Not Before: Jan 1 18:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a97483384b46eda18de34374724c5186c7b2a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:64:9c:42:e0:3c:d9:4c:80:1d:26:c4:a6:93:
63:11:8b:3b:fd:00:49:6f:24:37:e6:96:ae:8a:01:
91:e0:c7:bb:a5:8f:9f:15:f1:f8:d3:93:f7:44:fe:
b3:0e:19:02:38:7a:d3:ff:62:1b:28:93:c9:c4:45:
6d:2c:2b:a8:26:9a:b0:5a:a4:af:9c:65:c6:bf:5d:
fa:2d:b9:b9:10:0c:1f:62:ee:ea:4d:bc:33:1a:58:
94:34:c3:aa:ce:91:1f:ee:0e:64:a1:b2:76:d5:76:
fa:8f:0c:66:58:e6:63:84:5e:29:90:00:2e:53:1d:
f2:b1:3b:7b:15:8e:3d:9c:cd:38:c0:32:c2:08:a5:
8f:fd:26:9d:90:bc:b1:c4:ba:90:48:80:31:86:2d:
3d:ca:fe:91:38:1f:e0:b2:f0:03:13:46:c5:24:87:
07:b3:76:87:54:05:2a:f0:d2:bc:db:17:fc:01:49:
0e:3a:eb:12:ba:f9:5a:85:22:ee:7e:3a:f7:5d:6c:
23:4b:21:c5:ca:52:ea:69:17:0a:b5:33:83:bc:1b:
28:af:de:0d:2b:83:57:96:b4:55:09:3a:3e:8c:9e:
af:a4:60:ad:0d:a3:51:5c:00:ad:14:21:72:6a:7f:
b1:5b:9c:e8:a7:13:ca:f5:23:82:57:2d:89:e6:96:
70:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:97:48:33:84:B4:6E:DA:18:DE:34:37:47:24:C5:18:6C:7B:2A:78
X509v3 Authority Key Identifier:
keyid:F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/OpdIM4S0btoY3jQ3RyTFGGx7Kng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.136.0/24
Signature Algorithm: sha256WithRSAEncryption
20:85:99:0d:7b:55:52:da:08:7c:80:97:89:dc:0d:7b:f2:51:
2c:ed:5b:bf:32:2e:5d:71:7b:af:59:05:c3:40:49:ce:84:99:
f9:61:3d:9c:2b:eb:2a:da:89:55:36:81:d6:fd:a1:a1:d1:05:
b7:3b:1a:8a:27:df:9a:d1:a9:7f:8c:88:b0:e9:38:11:c2:f3:
33:9d:4d:00:4f:ee:cc:aa:01:49:6c:d1:73:04:92:ed:b4:24:
38:76:40:51:bd:9d:9b:46:50:ba:df:91:eb:3f:74:9a:d5:f1:
36:4d:8c:2b:b9:38:ff:30:06:b2:de:55:f5:f7:99:f5:f9:2e:
15:f8:4e:c8:85:d2:20:34:14:6e:fd:72:2a:9e:13:6d:5e:0f:
4a:48:fd:59:40:86:20:4a:29:8f:00:a9:a2:b8:9e:a7:89:36:
04:6b:2b:5d:0b:c8:24:c9:95:25:ea:ae:e3:ad:c2:d4:61:c9:
77:9e:62:11:da:ce:b0:25:15:63:9f:26:58:a1:f4:25:a3:fa:
f1:31:67:5d:12:ee:64:b3:85:b7:94:3f:0a:d5:18:17:18:50:
f1:86:db:4f:9b:80:a6:8b:99:b8:56:e2:aa:95:de:5d:b6:15:
2b:58:23:4a:37:c0:cb:0b:58:a8:b0:98:ed:60:a5:9c:cf:b4:
51:db:5c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 5 11:36:19 2024 by rpki-client on console-ams.rpki-client.org