Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/lRmrnGJb4fzqZDauPRDGQothCO0.roa
File: lRmrnGJb4fzqZDauPRDGQothCO0.roa (raw, json)
Hash identifier: PMGlwfFnauw/L17czcZib1Yh178kJN06qgpZVqPI31E=
Subject key identifier: 95:19:AB:9C:62:5B:E1:FC:EA:64:36:AE:3D:10:C6:42:8B:61:08:ED
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 0184A50EB9947C08830092FCC09BA82D2B44
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/lRmrnGJb4fzqZDauPRDGQothCO0.roa
Signing time: Wed 23 Nov 2022 15:15:16 +0000
ROA not before: Wed 23 Nov 2022 15:15:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 270353
IP address blocks: 45.91.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a5:0e:b9:94:7c:08:83:00:92:fc:c0:9b:a8:2d:2b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Nov 23 15:15:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9519ab9c625be1fcea6436ae3d10c6428b6108ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3c:88:8f:b3:d7:00:28:22:5a:66:49:a9:20:
61:1c:32:d5:77:34:9c:07:08:f5:32:dc:69:a4:17:
00:7d:7c:70:37:ea:11:85:2e:98:70:c3:fd:46:6e:
c3:b2:19:4d:6a:e2:75:29:2e:8c:fe:df:de:0a:40:
d7:c7:38:6b:99:17:f8:57:44:14:7c:39:58:83:55:
1d:1b:c6:5f:51:c4:62:20:b0:c2:b6:51:6e:92:e5:
51:25:33:ea:81:a0:fb:cd:b5:91:72:62:e5:e8:fe:
d8:89:c4:1d:be:95:a0:ad:92:c0:b2:6e:c2:d9:90:
73:35:87:0b:2e:43:4e:0d:e2:1f:c6:5c:75:86:44:
59:3a:ee:90:ba:23:74:3a:5f:ba:43:b6:67:28:ab:
5e:7e:95:e0:d6:e2:31:72:1a:18:e4:9c:7b:52:31:
b6:3c:82:a7:9e:11:c0:1c:4b:35:4f:1a:8d:da:4b:
73:03:25:b8:04:1b:7d:c4:86:fb:63:ec:81:e8:f8:
87:1e:1a:73:67:b0:0e:b7:5d:14:8a:69:87:57:5c:
48:cf:e6:ae:e4:83:f4:09:f4:39:db:f8:06:e9:d5:
bd:c0:3d:3c:34:76:fe:cd:8b:a7:92:7b:bb:38:cf:
39:44:8b:92:76:ae:0a:77:39:d6:5a:88:a1:c6:33:
d5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:19:AB:9C:62:5B:E1:FC:EA:64:36:AE:3D:10:C6:42:8B:61:08:ED
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/lRmrnGJb4fzqZDauPRDGQothCO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.137.0/24
Signature Algorithm: sha256WithRSAEncryption
12:5d:f4:db:7f:73:fb:df:cf:e8:57:f6:1c:06:f7:21:44:a2:
ac:59:da:7e:20:ba:99:34:69:7b:ca:1f:2b:6d:61:1a:09:9c:
61:d3:9e:03:6c:60:0a:2b:b4:0c:1a:15:5e:89:31:19:9c:b1:
7b:3d:52:b8:3e:95:84:99:a4:d0:02:e5:ba:0f:fe:51:5a:4a:
38:fa:0d:a8:bb:f3:81:7b:40:c3:43:fd:6d:4d:60:74:51:47:
cf:c7:d3:8e:31:46:c4:9f:0a:f3:48:fd:50:88:db:4c:3d:e8:
8b:bc:f0:ee:cb:44:81:d2:ca:cc:0e:49:c1:89:d3:d8:35:ab:
9c:df:52:2f:5a:dd:93:10:75:97:86:41:d9:63:cc:23:29:7b:
ea:44:e1:79:9d:7b:90:4f:46:8a:4c:d0:f5:62:0c:43:82:a4:
f4:91:db:d5:49:3f:16:c0:3e:d1:16:d4:ae:d4:8c:2d:b5:9d:
ab:93:fe:6f:a7:8a:65:56:31:82:38:73:85:07:a2:3b:a9:db:
7a:da:04:5e:3f:61:a1:56:39:c3:a5:54:48:fe:95:37:46:fd:
60:50:b8:bf:8a:2c:67:dd:a2:e6:7e:a4:f9:fd:c2:f7:c9:ba:
e1:f6:6b:22:32:66:07:b1:54:a4:80:37:78:55:21:01:88:89:
17:8c:32:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:15 2023 by rpki-client on console-ams.rpki-client.org