Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/ITcwElA3GhWj3_gZwhe8BKGFxbM.roa
File: ITcwElA3GhWj3_gZwhe8BKGFxbM.roa (raw, json)
Hash identifier: nzCPAv00JUYXRmlASu6vL0c+RNO9CxXLM1xIOTTinPc=
Subject key identifier: 21:37:30:12:50:37:1A:15:A3:DF:F8:19:C2:17:BC:04:A1:85:C5:B3
Certificate issuer: /CN=61aaf97d7a8eafb78152c4d575a2f96b04e3d9d0
Certificate serial: 112ADD75
Authority key identifier: 61:AA:F9:7D:7A:8E:AF:B7:81:52:C4:D5:75:A2:F9:6B:04:E3:D9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yar5fXqOr7eBUsTVdaL5awTj2dA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/ITcwElA3GhWj3_gZwhe8BKGFxbM.roa
Signing time: Sat 01 Jan 2022 02:00:43 +0000
ROA not before: Sat 01 Jan 2022 02:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2418
IP address blocks: 157.169.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 288021877 (0x112add75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61aaf97d7a8eafb78152c4d575a2f96b04e3d9d0
Validity
Not Before: Jan 1 02:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2137301250371a15a3dff819c217bc04a185c5b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1f:5f:c3:5b:75:83:43:84:34:0e:5a:f0:e0:
7b:a6:40:1c:43:80:58:fa:f8:05:f4:a3:be:ef:d5:
0b:3c:40:71:6f:bb:40:f1:06:80:74:ad:dd:ce:ae:
13:64:6d:a7:0a:d5:e1:fb:da:57:4d:2d:c7:32:4b:
5e:a5:b1:f8:35:2a:80:65:86:b3:62:a2:d5:35:5b:
4d:22:0f:5d:d6:c8:79:0d:7a:25:ca:bf:b9:b1:8d:
45:1f:7c:d7:b4:76:92:41:5a:67:bd:06:e5:b6:45:
c3:8d:c5:04:06:47:69:0f:29:6d:7f:fd:5d:4f:66:
c7:3d:2d:1a:63:dd:93:75:7e:1d:7e:5c:3b:70:3d:
6e:a2:d2:46:ba:88:76:1d:31:19:4b:ca:7a:65:c5:
c5:45:44:f6:da:a2:08:c6:1c:56:f4:d5:b7:b4:06:
9d:ea:34:61:a5:f0:c4:53:dc:1d:b0:03:4b:81:32:
e5:4f:e3:49:75:e0:48:bc:6f:22:18:0f:64:51:af:
8a:1e:1b:b0:0d:9e:08:67:b4:ac:af:db:8e:dd:af:
5c:a5:58:c2:bf:d3:74:ec:73:9d:f7:bb:ba:2d:d2:
33:24:d7:c9:12:98:55:71:a5:10:87:42:a9:73:27:
0e:03:d2:22:ca:46:74:9e:3c:9f:7c:bf:e6:f0:98:
8c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:37:30:12:50:37:1A:15:A3:DF:F8:19:C2:17:BC:04:A1:85:C5:B3
X509v3 Authority Key Identifier:
keyid:61:AA:F9:7D:7A:8E:AF:B7:81:52:C4:D5:75:A2:F9:6B:04:E3:D9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yar5fXqOr7eBUsTVdaL5awTj2dA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/ITcwElA3GhWj3_gZwhe8BKGFxbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/473f1b-fcbb-420c-8c5c-a30b81da5cee/1/Yar5fXqOr7eBUsTVdaL5awTj2dA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.169.0.0/16
Signature Algorithm: sha256WithRSAEncryption
86:23:71:dc:eb:00:15:ca:c6:d3:16:ec:29:62:9a:da:d8:5d:
b5:3d:22:f6:b0:4d:50:6a:1f:09:a3:51:76:57:aa:dc:21:4e:
6f:a7:d7:b9:2b:5b:9c:1f:48:a3:eb:59:f8:29:13:5b:9d:35:
e7:e2:e5:e2:d6:e0:eb:db:45:19:8f:68:5e:4e:91:12:e1:5e:
c2:1c:50:b7:53:6e:03:31:8e:03:ee:7f:31:7e:db:87:e5:ba:
bf:43:e6:93:2d:32:75:61:1b:9c:8c:20:65:5c:c7:36:3e:29:
99:35:c3:1d:99:6f:32:30:95:d8:4a:05:11:2d:85:3f:6c:1f:
0f:1f:c8:a8:f4:f4:39:27:98:f6:cd:3a:49:a0:31:9d:13:1d:
ad:aa:4b:2e:f7:41:93:04:b1:f5:ab:4f:50:af:61:f1:15:4b:
5e:73:37:20:29:99:c1:cf:c9:05:35:39:5b:78:80:3a:ce:2e:
e2:04:2f:67:69:70:59:38:1e:24:45:03:d5:80:f9:55:73:76:
71:01:21:76:4e:41:b2:ce:45:ec:34:77:8c:77:32:d1:c6:51:
08:13:6b:37:a4:d0:40:78:85:b2:80:06:5b:86:c3:38:9b:ea:
01:65:65:ff:f9:ce:0b:92:b5:7b:cf:1c:df:f1:7f:7d:68:2f:
b5:b4:0f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:35 2024 by rpki-client on console-ams.rpki-client.org