Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/7d8cfd-8830-4fe3-bf75-bc64d3e62382/1/HtTQimYRtlo3CTAe6Q7GgHRXvgI.roa
File: HtTQimYRtlo3CTAe6Q7GgHRXvgI.roa (raw, json)
Hash identifier: yLFM7r+767q5VymWj2qz8V1Q411CpdR5I09HrErhWnQ=
Subject key identifier: 1E:D4:D0:8A:66:11:B6:5A:37:09:30:1E:E9:0E:C6:80:74:57:BE:02
Certificate issuer: /CN=d32f876231dcb5dfd7af4523120565d98006474a
Certificate serial: 018476C79C5DCC7E254AF7EB6036629F229B
Authority key identifier: D3:2F:87:62:31:DC:B5:DF:D7:AF:45:23:12:05:65:D9:80:06:47:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0y-HYjHctd_Xr0UjEgVl2YAGR0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/7d8cfd-8830-4fe3-bf75-bc64d3e62382/1/HtTQimYRtlo3CTAe6Q7GgHRXvgI.roa
Signing time: Mon 14 Nov 2022 15:35:03 +0000
ROA not before: Mon 14 Nov 2022 15:35:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59651
IP address blocks: 45.143.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:76:c7:9c:5d:cc:7e:25:4a:f7:eb:60:36:62:9f:22:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d32f876231dcb5dfd7af4523120565d98006474a
Validity
Not Before: Nov 14 15:35:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ed4d08a6611b65a3709301ee90ec6807457be02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:58:dc:3f:a7:b0:e6:d6:f0:2a:6e:a2:80:9f:
2c:35:98:fd:7d:e1:89:8b:8f:79:41:0e:b2:36:03:
b7:25:36:22:b7:5b:f3:96:72:08:ed:2d:cd:9e:d3:
d5:5c:6e:75:6c:71:63:ad:64:a7:d1:06:3b:1c:99:
d7:c8:36:d4:36:18:1a:da:11:ad:eb:13:bb:db:64:
e7:35:98:3a:b3:e0:07:2d:4b:76:c7:27:3a:3a:c0:
89:e1:e8:d6:48:2e:11:45:eb:b0:6d:6b:80:96:c8:
03:2c:33:7c:b4:32:83:c4:db:85:a7:03:95:13:f2:
df:c9:32:27:bf:79:3f:4e:0f:e8:6b:53:24:23:88:
5c:6b:b8:fb:55:73:7a:35:29:3b:93:24:e8:20:94:
8f:bc:8e:a5:20:f2:70:30:f6:54:d1:cf:48:f5:91:
10:fa:89:49:3e:b2:6c:99:da:a2:1b:b9:e1:29:8c:
a0:5f:19:c8:fe:d6:e4:a7:e3:9a:9f:71:90:ee:ae:
19:19:c2:c4:d1:ee:53:44:e4:fe:38:90:7b:02:f3:
c0:cf:2c:52:68:25:02:8f:13:c7:2a:8b:f4:21:50:
3b:76:b9:37:84:86:85:17:db:9d:c1:96:e1:51:24:
9e:23:08:11:59:0c:b3:67:c8:2a:38:37:10:d5:c8:
43:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D4:D0:8A:66:11:B6:5A:37:09:30:1E:E9:0E:C6:80:74:57:BE:02
X509v3 Authority Key Identifier:
keyid:D3:2F:87:62:31:DC:B5:DF:D7:AF:45:23:12:05:65:D9:80:06:47:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0y-HYjHctd_Xr0UjEgVl2YAGR0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7d8cfd-8830-4fe3-bf75-bc64d3e62382/1/HtTQimYRtlo3CTAe6Q7GgHRXvgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7d8cfd-8830-4fe3-bf75-bc64d3e62382/1/0y-HYjHctd_Xr0UjEgVl2YAGR0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.6.0/24
Signature Algorithm: sha256WithRSAEncryption
00:7a:52:f2:5f:da:20:d3:75:c9:f4:be:f1:db:3f:c5:94:89:
74:b4:ab:7d:4e:c4:1d:11:20:30:b7:4b:ec:9f:e7:dd:db:3a:
3e:73:bb:7b:d3:5c:e5:2a:3c:8b:8c:25:9d:2d:35:73:06:c5:
86:30:f2:5f:40:2d:08:2b:73:2a:44:db:d3:ab:42:db:0d:de:
e4:e1:4c:02:5d:d7:b7:bc:00:91:41:48:82:dc:6b:8f:6d:74:
f0:cd:d1:57:ae:a8:d2:39:97:82:f7:15:f9:6b:55:3a:ea:4f:
62:d6:0d:f6:43:12:6e:30:71:0e:4c:b2:85:4d:d5:49:21:e0:
2e:3b:0a:e9:b1:e5:77:77:2d:42:b0:84:0c:4d:06:e7:93:b2:
89:f3:a9:9c:71:8b:e6:67:b9:fd:18:a1:01:6e:6f:da:a8:34:
f8:bc:06:ce:14:4b:5d:49:80:a0:01:89:26:e3:ae:2d:16:ba:
4a:df:1a:6f:20:49:3f:41:ec:52:ea:57:ee:ab:d7:1c:eb:1b:
6c:95:e9:f6:94:30:95:f5:b4:e8:da:99:5e:f9:9a:8c:24:77:
9f:63:bb:7c:ee:f6:49:6d:dc:84:b4:b9:f6:bc:57:07:8e:e9:
c2:42:2c:d1:b6:a8:a9:0a:4e:ab:18:3a:2d:30:c0:ef:1c:bf:
f4:40:4f:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:18 2023 by rpki-client on console-fra.rpki-client.org