Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/HfLTC0l6F5IBebOuDYS3CGyLSO4.roa
File: HfLTC0l6F5IBebOuDYS3CGyLSO4.roa (raw, json)
Hash identifier: lKPd6UXsiXZIyZjmZRb4JSnVuFstcIvBo+o4LWIfpME=
Subject key identifier: 1D:F2:D3:0B:49:7A:17:92:01:79:B3:AE:0D:84:B7:08:6C:8B:48:EE
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 01856F8C571CAFC5E0D1783A5663C644BEFC
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/HfLTC0l6F5IBebOuDYS3CGyLSO4.roa
Signing time: Sun 01 Jan 2023 22:55:46 +0000
ROA not before: Sun 01 Jan 2023 22:55:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395111
IP address blocks: 45.158.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8c:57:1c:af:c5:e0:d1:78:3a:56:63:c6:44:be:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Jan 1 22:55:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1df2d30b497a17920179b3ae0d84b7086c8b48ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ff:26:42:fb:55:ee:45:39:a2:03:0d:93:40:
bd:48:11:76:2d:73:4f:b6:a2:c1:06:84:31:10:cd:
ce:5d:54:c6:25:fb:f1:d2:55:9a:87:4d:5a:c2:a8:
86:e9:52:d2:62:80:27:93:dd:98:73:63:e9:7c:42:
5d:71:a6:ad:8d:07:9a:d0:3d:21:b2:5f:64:fe:62:
d0:d5:6e:08:7e:f2:8e:80:ed:71:c6:73:e6:94:b6:
7d:19:b2:16:3d:ed:25:0a:0c:2d:a7:3b:46:96:66:
60:b0:c1:c1:10:f3:75:13:b7:b3:a9:69:42:07:71:
b8:49:cc:15:cd:fd:9c:76:87:d1:c3:ea:74:55:2b:
23:8f:0b:60:22:7f:02:ab:1c:3b:1c:31:a6:a4:39:
a2:e0:3c:9a:42:a1:50:0f:3d:ba:54:4a:2b:bb:51:
c5:cc:70:46:f8:2b:5d:a3:c5:da:a6:8d:7b:24:84:
bd:57:12:d6:ad:6b:01:bf:1f:fa:45:ed:80:61:4a:
e9:01:26:ee:92:d9:8d:a5:d8:f5:05:53:ec:96:33:
e2:07:8c:e1:8e:d4:67:41:ef:75:5d:1f:78:e3:42:
bc:20:fd:7a:db:6e:4b:37:68:2c:80:53:a2:b1:4c:
4d:ad:11:40:0b:b7:74:df:db:69:c9:31:96:09:49:
18:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F2:D3:0B:49:7A:17:92:01:79:B3:AE:0D:84:B7:08:6C:8B:48:EE
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/HfLTC0l6F5IBebOuDYS3CGyLSO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.57.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:34:e0:c0:fc:fb:57:4f:05:8f:dd:8d:46:19:3e:73:3d:46:
d3:03:23:f7:ac:03:a8:e3:51:e7:92:59:d7:f4:e7:cd:6c:9e:
99:4d:66:ef:a0:2a:c5:5d:6b:ad:6d:06:ca:6a:a1:35:15:ab:
bd:f0:44:c8:d9:42:2e:86:82:e1:a4:fe:67:57:27:1c:fe:39:
f7:46:1a:77:1e:dc:9d:c0:57:4b:8f:64:f5:6b:ab:fb:3c:13:
9a:bf:46:f0:8d:0d:71:48:65:8f:04:b2:5b:84:2b:f5:1d:4c:
06:a6:52:b1:1e:ef:57:6b:b3:de:62:bf:c7:7f:bb:d9:7f:09:
8e:c6:bb:9a:c3:ad:2d:33:cc:59:8c:77:66:4c:0c:9d:f3:27:
7d:98:18:ab:61:12:8f:b6:d5:ac:5d:cd:09:c4:ec:b2:d5:05:
b4:27:df:fb:88:d7:20:fb:42:7a:c1:2d:38:3f:d2:3b:17:51:
d2:dc:a4:f5:b6:6a:9d:47:8a:a3:28:0e:5c:54:31:0a:af:12:
e6:8a:aa:17:1f:3e:27:31:16:8a:21:0a:91:1b:b7:f1:d0:e4:
1c:86:c6:c9:16:bf:d0:d0:78:49:84:9a:9c:a5:28:c0:a4:e1:
f6:45:1f:b6:e2:ee:85:54:02:ef:1d:d4:28:22:19:66:e8:e3:
07:8c:36:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:14 2023 by rpki-client on console-ams.rpki-client.org