Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/79ff9c-69eb-4f8a-b7c9-b3217534f270/1/L8rmQswLVA_9s1nCUm6rsfYACOY.roa
File: L8rmQswLVA_9s1nCUm6rsfYACOY.roa (raw, json)
Hash identifier: jxZeBgTum2Iih/hEKm0iFPe3fdUAyTKDibIMNk9sXxk=
Subject key identifier: 2F:CA:E6:42:CC:0B:54:0F:FD:B3:59:C2:52:6E:AB:B1:F6:00:08:E6
Certificate issuer: /CN=b8dd97d554fcfc59ddfd062e262a4b3962fe6796
Certificate serial: 039B668D
Authority key identifier: B8:DD:97:D5:54:FC:FC:59:DD:FD:06:2E:26:2A:4B:39:62:FE:67:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uN2X1VT8_Fnd_QYuJipLOWL-Z5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/79ff9c-69eb-4f8a-b7c9-b3217534f270/1/L8rmQswLVA_9s1nCUm6rsfYACOY.roa
Signing time: Mon 07 Mar 2022 16:31:00 +0000
ROA not before: Mon 07 Mar 2022 16:31:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22653
IP address blocks: 45.8.74.0/24 maxlen: 24
45.8.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60515981 (0x39b668d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8dd97d554fcfc59ddfd062e262a4b3962fe6796
Validity
Not Before: Mar 7 16:31:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fcae642cc0b540ffdb359c2526eabb1f60008e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5f:17:03:35:be:f9:87:ba:78:5a:9a:e6:b7:
fb:45:39:0d:50:d1:99:4a:54:52:0b:38:44:25:44:
4e:fd:56:3b:ab:32:58:71:99:e1:a0:67:9a:cf:9a:
32:be:0f:42:5e:04:c2:f0:75:c0:94:d6:e0:07:c4:
e9:cb:39:b9:54:ee:30:b8:27:a4:16:c8:c4:80:9e:
f8:dd:07:8f:4a:ad:88:a2:92:5a:75:56:c8:d9:22:
2a:fa:c3:84:43:0a:88:43:80:b8:36:69:86:68:cf:
f2:aa:20:44:eb:16:ea:a7:6e:60:74:2f:0b:b2:8b:
64:f4:0b:94:d5:bc:b4:db:d1:8f:bd:fe:36:0a:72:
41:5f:6a:99:24:94:0f:04:79:9e:27:3c:a0:5e:d8:
12:33:20:ad:ff:a7:2b:d3:52:ee:f1:48:a3:5e:c7:
da:f6:92:db:fe:63:d8:6f:1d:25:65:60:27:12:56:
65:31:be:22:5a:68:f8:c3:4c:3c:23:08:97:24:a2:
22:29:d2:a1:8c:4e:dc:83:be:2d:33:fe:a1:aa:03:
42:bd:b6:42:75:db:13:fb:6f:ab:e3:38:cf:d4:55:
72:88:9d:1a:96:8f:53:73:96:ec:dd:3f:e9:1a:e7:
28:8e:70:1e:a1:45:28:95:96:73:e5:6b:6c:cb:f9:
bd:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:CA:E6:42:CC:0B:54:0F:FD:B3:59:C2:52:6E:AB:B1:F6:00:08:E6
X509v3 Authority Key Identifier:
keyid:B8:DD:97:D5:54:FC:FC:59:DD:FD:06:2E:26:2A:4B:39:62:FE:67:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uN2X1VT8_Fnd_QYuJipLOWL-Z5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/79ff9c-69eb-4f8a-b7c9-b3217534f270/1/L8rmQswLVA_9s1nCUm6rsfYACOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/79ff9c-69eb-4f8a-b7c9-b3217534f270/1/uN2X1VT8_Fnd_QYuJipLOWL-Z5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.74.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:af:5d:f4:7a:36:24:9c:db:2a:42:8e:3e:aa:5b:61:d0:0c:
64:ee:1e:96:5b:33:e8:f5:e9:72:36:c8:78:13:36:0c:5a:e8:
d5:d9:77:e8:89:9e:d6:35:24:3b:0b:68:59:e1:41:fc:cf:ef:
32:a2:22:45:cf:7f:06:b6:46:1f:72:d9:9f:ba:3d:45:51:85:
dc:09:50:f4:40:6b:d8:71:e7:c1:62:f6:9c:de:b4:5d:75:1d:
d0:57:c1:11:0b:44:91:4c:5c:49:94:ac:09:34:6f:56:8c:30:
d5:ec:38:b2:52:7a:e8:3e:59:e4:b4:79:12:7d:61:e1:74:2d:
19:ce:28:0b:03:ae:e5:d3:1f:bf:cb:d7:96:f3:a5:c4:5f:f0:
48:1e:0c:98:b5:ef:c1:09:7b:6c:e4:c9:12:9d:30:94:6f:d1:
38:08:27:16:17:f1:eb:5f:1b:93:66:d8:2e:fb:04:c3:93:49:
fc:65:b9:0a:1a:23:a4:ee:ee:76:9b:72:ca:0d:6a:23:3f:90:
5d:9c:fb:05:da:10:01:8f:fc:58:71:d9:86:ea:2b:75:14:a0:
bc:25:50:5e:5a:c8:12:06:71:87:3d:01:70:1e:23:f4:b7:ca:
0b:f1:65:db:bb:53:e9:62:a0:8a:89:d8:0e:3b:56:a2:ee:ae:
c9:1b:26:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:54 2024 by rpki-client on console-fra.rpki-client.org