Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/KUBAnB8FVz6V6KKGF56cNHFSFmQ.roa
File: KUBAnB8FVz6V6KKGF56cNHFSFmQ.roa (raw, json)
Hash identifier: 5X+NHjYLQiQ4YZv3FEoxaZ5p9Z1xVdbLNRNWf2mxWq8=
Subject key identifier: 29:40:40:9C:1F:05:57:3E:95:E8:A2:86:17:9E:9C:34:71:52:16:64
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 09FE5130
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/KUBAnB8FVz6V6KKGF56cNHFSFmQ.roa
Signing time: Mon 07 Mar 2022 17:08:11 +0000
ROA not before: Mon 07 Mar 2022 17:08:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31898
IP address blocks: 45.137.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167661872 (0x9fe5130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Mar 7 17:08:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2940409c1f05573e95e8a286179e9c3471521664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:56:6a:cf:7b:6b:36:d5:94:b4:90:ed:58:ec:
85:09:ad:fe:1d:5b:1a:e2:a0:3c:11:8b:6f:a3:63:
d4:a0:f3:7c:bd:77:b1:8b:cb:d5:93:36:70:ca:43:
ae:80:a0:ea:a4:da:74:a9:4e:16:57:74:dd:69:dd:
a2:b5:54:1d:31:4d:3c:dc:cb:fa:fe:61:45:a9:c5:
85:d6:8a:6b:a2:6b:06:1c:e8:f8:04:a3:bc:39:93:
34:4c:6a:6a:14:14:ac:88:43:ab:88:c7:e1:1a:b3:
79:48:c8:e8:bd:aa:42:83:eb:5c:3f:4f:61:00:a1:
15:4a:03:ba:29:a6:7b:5a:d7:08:5d:60:09:9c:b8:
aa:da:a9:14:dd:d6:34:a4:5e:18:a8:cf:7b:af:0e:
28:c2:6a:bc:98:ac:7c:02:29:d1:3d:ac:72:0b:c6:
57:7a:8a:8d:39:39:28:44:f5:f5:46:de:7a:83:c3:
2c:36:b1:68:99:09:de:51:f3:86:b4:ef:00:1a:bd:
c2:93:a2:6b:85:45:84:d5:2c:cd:48:83:54:46:e5:
ce:95:ca:63:0d:4f:bf:26:d4:6f:29:c4:5c:be:d7:
5b:e1:d5:2e:22:7b:20:4f:8f:02:77:58:62:c3:b0:
14:16:2e:12:90:cf:17:4f:54:c0:bb:91:02:3e:61:
ac:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:40:40:9C:1F:05:57:3E:95:E8:A2:86:17:9E:9C:34:71:52:16:64
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/KUBAnB8FVz6V6KKGF56cNHFSFmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.96.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:8c:44:61:4d:c6:e9:6b:f7:30:1f:2b:67:7a:c4:f0:08:33:
53:a9:78:39:3b:e5:61:63:b0:6c:6b:6f:86:82:f7:3c:ac:87:
d9:8c:dc:f8:55:fa:a4:77:81:95:98:3d:4c:56:ec:a6:ee:8e:
71:0f:0c:2d:28:65:ca:ee:16:83:4d:98:6e:2f:b7:8e:cb:61:
bb:1c:82:55:23:7d:e5:7a:28:2f:37:ba:27:2b:de:ef:2a:1e:
aa:4d:8e:4a:2e:53:73:44:8d:f6:00:6c:da:aa:79:e6:e6:bb:
b3:91:28:21:e1:fc:c7:3c:ee:d8:6a:c5:88:da:40:63:1d:42:
6c:e2:b4:91:cc:9b:7f:24:89:a2:e5:04:81:11:43:93:03:36:
87:a0:bd:1f:81:d0:3d:66:ad:36:91:53:c4:d9:d3:5d:13:be:
71:8b:bd:fe:58:5c:ef:60:3d:0f:4d:27:76:96:98:1c:29:05:
b6:69:d8:0a:73:02:ba:25:7e:47:ce:02:3e:1c:76:bf:35:4b:
6e:b4:b7:d3:68:60:91:c7:15:3a:83:fc:c6:5b:51:79:ae:1d:
8b:06:b2:49:89:45:53:78:2d:7e:19:c3:db:f1:9e:22:06:c2:
8d:44:87:f6:74:17:5d:a8:42:b5:b2:24:53:69:9c:bc:89:7c:
26:99:d9:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:14 2023 by rpki-client on console-ams.rpki-client.org