Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7b0514-2591-4087-92dd-2df3b4e754df/1/mndaKwFz8V65cRuUUHAm0q6eT6o.roa
File: mndaKwFz8V65cRuUUHAm0q6eT6o.roa (raw, json)
Hash identifier: 41lE2lyXEsV7ZSXXxlqnmadUa4b6X+vCI4DGnTxob4U=
Subject key identifier: 9A:77:5A:2B:01:73:F1:5E:B9:71:1B:94:50:70:26:D2:AE:9E:4F:AA
Certificate issuer: /CN=73dc93691de10592e403358c9688556296387c5d
Certificate serial: 018736B1CCBCC7BC73890B2E4D466BA2761D
Authority key identifier: 73:DC:93:69:1D:E1:05:92:E4:03:35:8C:96:88:55:62:96:38:7C:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9yTaR3hBZLkAzWMlohVYpY4fF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7b0514-2591-4087-92dd-2df3b4e754df/1/mndaKwFz8V65cRuUUHAm0q6eT6o.roa
Signing time: Fri 31 Mar 2023 08:03:54 +0000
ROA not before: Fri 31 Mar 2023 08:03:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 45.128.12.0/23 maxlen: 23
45.128.14.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:36:b1:cc:bc:c7:bc:73:89:0b:2e:4d:46:6b:a2:76:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73dc93691de10592e403358c9688556296387c5d
Validity
Not Before: Mar 31 08:03:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a775a2b0173f15eb9711b94507026d2ae9e4faa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:59:e3:87:9a:b1:4b:f2:1e:65:78:b9:f9:cf:
d1:30:48:ee:90:37:e6:4d:50:9b:6d:63:b9:eb:2f:
37:6b:fa:da:34:9b:a7:d4:4a:2e:17:28:c7:a3:4a:
35:0e:d0:39:8b:9e:55:10:56:08:86:f9:1f:08:eb:
58:f0:26:3c:fb:0d:6b:53:7d:c2:16:16:ae:31:4d:
df:13:0a:c3:f4:1f:bd:30:20:b6:9b:aa:7f:89:4c:
b9:8c:f4:2b:41:c9:15:be:15:b6:6c:6b:8c:b5:d9:
e6:5a:e2:b8:e5:54:ec:4f:49:b3:4d:0b:4b:4b:3d:
a1:3a:c9:10:b2:40:20:d5:7e:3c:b2:2d:ed:4a:ce:
e3:08:c0:5f:5a:86:56:c1:aa:44:85:d2:bd:6e:ce:
1b:8b:ef:47:04:21:31:9d:e2:11:d0:72:3b:7b:3d:
10:ce:a9:fb:43:8e:6d:91:3d:5f:17:db:ab:65:48:
89:74:53:6d:17:bc:45:3f:84:a1:3a:f2:e9:71:d7:
b8:38:86:80:c1:5f:31:86:bd:91:2c:8d:b4:e9:cf:
ee:b8:3d:83:17:da:0b:31:0a:84:a6:f3:de:22:0c:
78:5e:cf:2f:b9:72:ee:3d:a3:e4:f5:5e:9a:14:7c:
28:6c:a8:8b:ff:29:6c:b5:15:4c:2b:60:3d:b4:96:
3f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:77:5A:2B:01:73:F1:5E:B9:71:1B:94:50:70:26:D2:AE:9E:4F:AA
X509v3 Authority Key Identifier:
keyid:73:DC:93:69:1D:E1:05:92:E4:03:35:8C:96:88:55:62:96:38:7C:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9yTaR3hBZLkAzWMlohVYpY4fF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7b0514-2591-4087-92dd-2df3b4e754df/1/mndaKwFz8V65cRuUUHAm0q6eT6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7b0514-2591-4087-92dd-2df3b4e754df/1/c9yTaR3hBZLkAzWMlohVYpY4fF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.12.0/22
Signature Algorithm: sha256WithRSAEncryption
49:bb:6c:cd:3e:db:f1:85:2d:62:e5:e2:04:9f:d5:08:24:bb:
ff:03:b8:c3:29:99:98:41:25:de:0d:0d:e0:04:5b:71:c5:96:
83:3a:b4:de:de:04:c7:d3:a9:5f:2b:3b:03:b5:09:30:cd:28:
38:df:c1:a1:f3:96:79:35:fe:5d:df:c0:6e:23:66:dc:78:5c:
de:3e:e6:6b:b4:d3:6d:cb:ca:5c:fb:67:b4:99:d8:85:3d:5c:
c5:7f:0f:8a:6c:ec:68:c9:2a:9f:cb:3a:98:7c:2b:bc:3c:eb:
0a:d4:13:26:61:84:55:ee:c3:f5:27:25:11:ee:35:65:aa:f9:
e6:fd:29:53:d1:b7:a1:21:2e:19:18:f2:bb:8d:18:88:f5:af:
2b:76:49:59:a7:3a:7c:3a:10:b8:d9:28:85:87:67:92:7d:14:
5f:09:55:3a:b0:6a:2c:dd:b1:e5:c3:0f:b6:30:de:df:b6:86:
e9:bb:a8:b2:ce:cf:35:22:f4:49:cc:3a:02:f5:89:42:bc:2c:
77:0e:6d:23:b6:d3:d6:53:8a:ad:aa:07:26:f9:66:8d:69:e3:
4d:c4:fd:58:e7:bc:10:0d:f3:06:91:e1:32:fa:a1:9c:86:30:
72:cb:97:fd:fd:b8:37:44:7c:d0:ae:69:3c:cd:73:f9:f3:7e:
44:50:17:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org