Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/24d444-8377-49af-b3dc-d3ee790f48a4/1/O-swVltL0yygNBLRJYYQquqQdEw.roa
File: O-swVltL0yygNBLRJYYQquqQdEw.roa (raw, json)
Hash identifier: ErKDw8MdTZG9HBBR1ByWUbeeeWjM/JA4ogOQjbT8NZw=
Subject key identifier: 3B:EB:30:56:5B:4B:D3:2C:A0:34:12:D1:25:86:10:AA:EA:90:74:4C
Certificate issuer: /CN=f7aa24fdec47ae242bc4f97db4da588a8ebbc5f7
Certificate serial: 020BEF0F
Authority key identifier: F7:AA:24:FD:EC:47:AE:24:2B:C4:F9:7D:B4:DA:58:8A:8E:BB:C5:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96ok_exHriQrxPl9tNpYio67xfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/24d444-8377-49af-b3dc-d3ee790f48a4/1/O-swVltL0yygNBLRJYYQquqQdEw.roa
Signing time: Sat 01 Jan 2022 06:56:32 +0000
ROA not before: Sat 01 Jan 2022 06:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6939
IP address blocks: 45.132.68.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34336527 (0x20bef0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7aa24fdec47ae242bc4f97db4da588a8ebbc5f7
Validity
Not Before: Jan 1 06:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3beb30565b4bd32ca03412d1258610aaea90744c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:70:56:8e:6c:b4:1c:af:f6:8f:7a:8c:0e:7f:
35:c0:8e:3d:3b:75:4c:33:6b:ca:78:d1:c2:bf:61:
de:38:21:25:50:58:a9:d0:72:24:6a:1b:1f:17:83:
5a:95:af:90:19:2b:39:b1:6f:b0:61:94:e3:09:77:
9d:06:dc:18:c3:47:0f:1e:63:d7:b0:36:5b:15:d9:
d8:cf:c2:5a:37:0d:db:a3:ec:19:f1:60:e4:f9:6e:
5e:72:44:e3:8d:05:e1:e8:27:1e:3e:cf:84:81:30:
72:fe:a1:7b:d1:bf:98:bd:5d:a3:8b:1c:3b:b4:1e:
7f:32:37:70:71:85:f4:76:b4:95:42:61:c0:0a:29:
da:48:f7:d7:2d:2e:ba:b6:bb:cc:41:f6:e1:e2:ba:
38:ba:02:11:bb:96:c5:ab:86:1f:f1:33:86:53:70:
65:61:56:dd:a8:3f:a0:30:0b:12:50:35:cc:83:c6:
af:ec:1e:bb:0d:02:43:58:fa:36:0d:75:d7:db:83:
7b:98:36:a6:4d:8e:4a:e0:cc:c1:ed:d0:8d:a9:b0:
dc:b7:94:21:db:8f:5a:79:d6:d3:31:ca:9d:c2:58:
4c:a1:e0:5a:d0:99:86:45:31:cf:2b:eb:fa:0b:0e:
4a:f5:70:d3:29:f7:4e:f7:38:28:b8:5e:05:a1:b5:
73:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:EB:30:56:5B:4B:D3:2C:A0:34:12:D1:25:86:10:AA:EA:90:74:4C
X509v3 Authority Key Identifier:
keyid:F7:AA:24:FD:EC:47:AE:24:2B:C4:F9:7D:B4:DA:58:8A:8E:BB:C5:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96ok_exHriQrxPl9tNpYio67xfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/24d444-8377-49af-b3dc-d3ee790f48a4/1/O-swVltL0yygNBLRJYYQquqQdEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/24d444-8377-49af-b3dc-d3ee790f48a4/1/96ok_exHriQrxPl9tNpYio67xfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.68.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:f5:3f:2e:2e:83:4b:ec:80:8e:d9:d7:eb:0c:9c:cd:65:85:
10:76:e7:e5:64:47:1b:eb:0e:bd:86:d6:e4:d4:a0:2b:27:66:
14:ab:d4:f9:c2:c4:18:f7:9e:5a:0a:f7:bb:5c:1f:53:64:54:
53:7e:17:df:4f:65:e7:ac:5e:c6:ee:57:02:5a:e3:f0:c6:f7:
23:25:c9:d1:ce:ce:ee:a7:a8:af:23:80:1b:57:d1:a4:65:9e:
bf:fd:5a:c1:6c:34:1a:28:97:26:28:f4:66:88:e4:1a:bc:bd:
bc:0c:a4:52:ad:f6:d4:03:76:34:98:3c:42:3f:8a:6e:05:24:
44:71:64:eb:df:94:e5:ef:51:e6:f5:31:03:6d:ca:84:d6:e1:
51:4c:4d:38:7a:f7:f2:3b:13:61:8b:ff:6e:3c:e6:f2:07:25:
1e:bc:92:9d:c1:6c:2d:8b:44:a7:23:ef:26:3b:a7:1b:69:cb:
24:5c:1e:d4:92:16:05:0e:7f:a4:a0:db:38:42:21:72:75:91:
0b:6a:af:46:18:72:9e:97:70:89:c3:c8:20:99:6d:a2:c6:d2:
93:b7:70:76:20:7d:28:02:90:de:34:f1:91:ca:28:34:0a:fe:
37:f5:d0:9f:6b:ab:c9:d3:fa:f2:d2:67:28:b6:6a:69:16:6a:
2f:ad:54:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:17 2024 by rpki-client on console-fra.rpki-client.org