Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/faa8db-1227-4b80-82af-33a8338bd111/1/buh9Dj94clVHYsXmGPa1J2hx-_g.roa
File: buh9Dj94clVHYsXmGPa1J2hx-_g.roa (raw, json)
Hash identifier: gbyB8H6LnaTI2fICo1ehJwWE0W2GOotSAnu0A7IIwZ0=
Subject key identifier: 6E:E8:7D:0E:3F:78:72:55:47:62:C5:E6:18:F6:B5:27:68:71:FB:F8
Certificate issuer: /CN=447c31946c610963ff1a55224fb460bb3e4a63f1
Certificate serial: 08A643FA
Authority key identifier: 44:7C:31:94:6C:61:09:63:FF:1A:55:22:4F:B4:60:BB:3E:4A:63:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHwxlGxhCWP_GlUiT7Rguz5KY_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/faa8db-1227-4b80-82af-33a8338bd111/1/buh9Dj94clVHYsXmGPa1J2hx-_g.roa
Signing time: Sat 01 Jan 2022 02:02:11 +0000
ROA not before: Sat 01 Jan 2022 02:02:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 45.12.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145114106 (0x8a643fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=447c31946c610963ff1a55224fb460bb3e4a63f1
Validity
Not Before: Jan 1 02:02:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ee87d0e3f7872554762c5e618f6b5276871fbf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:61:d1:f7:41:42:12:84:f8:61:12:dc:5e:fa:
a1:87:b4:ff:16:5d:9d:3e:23:ec:30:6e:03:a6:1a:
87:fc:0c:d1:4e:27:10:cc:8a:b5:2b:c9:7f:a2:0f:
8e:43:a5:29:bb:1d:a6:47:3e:1c:6d:24:ce:15:ba:
6c:dd:e9:b0:88:ac:b8:cf:c9:66:7d:4e:f4:4c:1b:
ea:83:10:41:60:84:fb:ea:63:78:b8:82:c5:ba:8b:
5a:f0:95:59:4f:3f:d4:f3:20:c6:c1:69:70:20:56:
e6:2d:67:bc:7d:c0:1f:ab:6f:fd:2a:8d:d7:d2:2d:
82:4a:56:18:36:6e:89:86:b0:e6:08:3b:24:71:7d:
b9:30:da:71:05:e5:87:c4:28:11:5e:7f:e3:c7:17:
bb:be:1d:a6:5c:2e:3c:71:e5:0c:a9:3e:ad:44:f8:
fe:96:06:e2:cd:a5:14:a0:99:bb:b4:3b:f2:f0:7f:
ae:eb:2f:c4:d3:4c:ea:a8:bb:fc:c8:70:b5:ef:38:
91:52:4c:b4:62:d3:9e:be:24:86:de:66:81:60:6c:
78:85:3d:b0:41:ae:69:2a:79:7c:3c:4d:c9:46:a7:
19:2a:9d:47:18:04:20:96:65:f1:d6:3b:3c:33:16:
5b:0e:ad:a3:20:10:64:10:d5:07:e1:2e:1e:4a:0a:
b1:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:E8:7D:0E:3F:78:72:55:47:62:C5:E6:18:F6:B5:27:68:71:FB:F8
X509v3 Authority Key Identifier:
keyid:44:7C:31:94:6C:61:09:63:FF:1A:55:22:4F:B4:60:BB:3E:4A:63:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHwxlGxhCWP_GlUiT7Rguz5KY_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/faa8db-1227-4b80-82af-33a8338bd111/1/buh9Dj94clVHYsXmGPa1J2hx-_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/faa8db-1227-4b80-82af-33a8338bd111/1/RHwxlGxhCWP_GlUiT7Rguz5KY_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.171.0/24
Signature Algorithm: sha256WithRSAEncryption
70:b1:3a:e8:27:fc:99:e7:31:c2:25:98:b4:31:b5:6e:63:1c:
12:a5:f5:c5:2b:8e:2f:f0:f9:2a:95:95:d9:d2:af:30:84:77:
4e:80:67:15:64:64:04:5b:5a:03:b2:e5:0f:57:1f:08:b8:f7:
ea:4e:b4:cf:9d:4b:aa:d5:e2:6d:09:ee:7a:f7:ab:93:1d:a2:
ec:4b:28:2a:e0:94:73:67:96:ae:c1:ed:39:2a:da:38:ee:f0:
f3:83:d8:94:a7:fd:12:31:a4:10:84:09:30:5a:0e:f7:c6:f6:
b2:e1:b5:4b:0b:96:27:c6:72:40:c1:7d:e2:a5:6c:1e:2b:a8:
45:10:f5:cd:7b:5f:c4:bf:2e:54:5c:74:e4:76:72:52:8f:05:
ad:7f:3f:42:4b:23:be:1a:d7:b7:05:de:e6:02:79:5a:e0:4f:
99:3c:ec:aa:79:b8:21:72:17:19:92:8b:b7:49:d4:a7:09:ee:
52:b1:2a:67:71:b2:fc:5e:91:ed:68:8d:13:e7:8b:77:58:4d:
e9:b2:12:9c:b2:b3:b3:e6:be:1c:2d:29:30:4d:1c:11:96:4b:
ff:c2:10:b3:51:27:cc:26:8f:0b:22:e4:2f:24:8e:6b:89:1e:
64:9f:51:c2:23:d4:f5:2f:67:45:cc:20:8f:4f:33:7b:4f:80:
7e:67:a7:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:25 2024 by rpki-client on console-ams.rpki-client.org