Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/g9LnassE9nIa1XXrGos4ZXvgv2I.roa
File: g9LnassE9nIa1XXrGos4ZXvgv2I.roa (raw, json)
Hash identifier: De1RJeItHX47mJGYRhaRfm5m15Rk0pTGQZ9inmkN760=
Subject key identifier: 83:D2:E7:6A:CB:04:F6:72:1A:D5:75:EB:1A:8B:38:65:7B:E0:BF:62
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 0186E19B28A1EF4307CB00A4214ACA3E74F7
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/g9LnassE9nIa1XXrGos4ZXvgv2I.roa
Signing time: Tue 14 Mar 2023 19:31:27 +0000
ROA not before: Tue 14 Mar 2023 19:31:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.181.178.0/24 maxlen: 24
45.137.98.0/24 maxlen: 24
2.56.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e1:9b:28:a1:ef:43:07:cb:00:a4:21:4a:ca:3e:74:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Mar 14 19:31:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83d2e76acb04f6721ad575eb1a8b38657be0bf62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:46:9f:5b:76:84:7d:64:5b:4e:f2:ac:44:d0:
a3:09:71:f9:cf:57:12:d2:83:4c:67:40:b4:e2:b1:
45:9b:35:03:c2:70:c8:c9:88:3c:a9:d2:bd:6c:84:
c5:af:39:3f:72:29:f2:b3:f4:ec:d4:cb:21:b7:db:
c4:d8:10:1e:45:d8:77:f6:50:75:c7:cd:0a:11:d7:
71:7f:4f:d9:e1:85:c9:a7:0a:a6:89:d9:8d:3a:dc:
5a:6e:c4:3e:e1:60:8c:fc:fd:b6:76:8b:18:1d:cc:
6d:03:74:a8:a8:5c:41:7d:7b:1d:13:f3:05:0f:23:
03:db:e1:97:2e:de:6d:36:4e:0d:32:37:3f:2d:fa:
77:db:7c:79:fe:ed:9d:fe:af:ac:f2:49:bd:19:f5:
d6:13:04:40:cd:58:80:8e:45:af:c9:0b:99:b0:ff:
db:9b:16:cc:a1:db:04:4a:4c:7e:a2:69:b7:9a:02:
c2:64:bf:60:75:35:b4:e8:ce:31:45:2f:59:5d:4a:
65:fe:d9:52:2f:eb:6d:01:86:87:b1:06:91:5d:7a:
e1:c3:03:5c:0c:45:98:6c:9e:92:76:60:d2:91:0c:
b4:6e:5f:51:2c:01:80:f5:6d:0f:20:87:ce:7d:68:
6a:bb:a8:0e:39:f3:dc:2d:d9:55:39:70:21:55:1b:
a9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D2:E7:6A:CB:04:F6:72:1A:D5:75:EB:1A:8B:38:65:7B:E0:BF:62
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/g9LnassE9nIa1XXrGos4ZXvgv2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.248.0/22
5.181.178.0/24
45.137.98.0/24
Signature Algorithm: sha256WithRSAEncryption
89:e1:8e:7a:23:8a:f5:36:be:54:7f:72:9d:75:a2:a8:8c:a6:
4a:ea:7e:a1:a0:47:ac:6c:c5:a8:68:a6:90:e3:a4:c7:ba:08:
87:17:3b:92:1d:44:01:e8:9d:dc:3d:47:b9:7a:1a:ea:62:c2:
58:45:80:12:d3:68:81:76:6f:ce:ff:85:e9:e5:67:b1:2a:b0:
9f:a2:3c:b7:27:39:d4:1a:13:0f:e7:62:cc:ba:a1:d8:50:0a:
0d:17:6d:cb:3f:a9:86:68:98:41:1c:7a:22:93:46:d5:a2:34:
7a:bc:8e:6e:31:21:8c:bb:c6:22:a6:af:60:0e:bb:b0:7c:e7:
df:46:c8:e3:a4:6f:9c:d6:aa:6d:96:2a:10:8d:90:5c:2f:a8:
bc:fd:fd:18:56:cf:67:ac:fb:5a:3e:78:2a:47:22:09:85:84:
fe:77:7e:6e:0d:36:b0:be:7e:59:cf:cd:6e:87:f7:0b:51:5c:
1a:40:e5:6d:68:10:ae:f7:c2:e5:ab:68:4a:54:f4:0a:e9:24:
ef:b4:ae:3e:87:b2:bd:20:f7:93:db:61:59:40:ea:ce:42:09:
f1:58:f8:c7:e7:76:97:ec:c0:50:65:60:f5:3f:9c:25:94:66:
c0:ec:ed:72:f2:30:6b:d0:e0:bd:77:3e:08:80:ee:67:d9:5d:
fc:3a:0a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:14 2023 by rpki-client on console-ams.rpki-client.org