Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/7d8cfd-8830-4fe3-bf75-bc64d3e62382/1/tGUBTGPhR4PMgCNWUXZa-uMS8TU.roa
File: tGUBTGPhR4PMgCNWUXZa-uMS8TU.roa (raw, json)
Hash identifier: fyH2slcpLyVmtSCufNrLvQbqzq5YvYxwcqS6fjuSMg0=
Subject key identifier: B4:65:01:4C:63:E1:47:83:CC:80:23:56:51:76:5A:FA:E3:12:F1:35
Certificate issuer: /CN=d32f876231dcb5dfd7af4523120565d98006474a
Certificate serial: 0185B9B29AF709818AC4460729F349892448
Authority key identifier: D3:2F:87:62:31:DC:B5:DF:D7:AF:45:23:12:05:65:D9:80:06:47:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0y-HYjHctd_Xr0UjEgVl2YAGR0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/7d8cfd-8830-4fe3-bf75-bc64d3e62382/1/tGUBTGPhR4PMgCNWUXZa-uMS8TU.roa
Signing time: Mon 16 Jan 2023 08:29:28 +0000
ROA not before: Mon 16 Jan 2023 08:29:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59651
IP address blocks: 45.143.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b9:b2:9a:f7:09:81:8a:c4:46:07:29:f3:49:89:24:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d32f876231dcb5dfd7af4523120565d98006474a
Validity
Not Before: Jan 16 08:29:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b465014c63e14783cc80235651765afae312f135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ce:99:94:8a:67:28:32:69:3d:9b:87:b6:b7:
8d:4f:e0:e4:16:c3:bb:1c:56:99:f0:a3:db:e8:15:
15:cc:6d:50:4e:45:b9:5b:b6:89:63:f1:44:8f:b0:
39:79:48:50:cd:e0:78:71:e5:16:8d:f2:e7:00:a7:
c8:16:23:c1:8d:32:91:66:ab:a7:be:8f:19:8a:f1:
f9:fa:95:32:a0:3b:10:cd:4c:d4:f4:be:40:f0:67:
57:bb:8c:29:6d:ff:52:d4:58:7a:03:b7:6b:e3:d4:
d6:04:c1:29:68:6e:98:27:b8:e0:4b:03:47:0e:fb:
43:79:f5:63:8b:84:dd:7d:9e:36:8a:bf:df:a7:ae:
75:eb:81:5f:c2:ff:b9:7f:60:56:ea:19:b3:e7:47:
de:d1:1d:30:d2:d2:25:11:60:27:2b:aa:10:09:2e:
a2:8e:8e:ac:99:c3:13:8a:1e:7c:f4:90:2f:70:05:
cb:67:cb:e6:d8:37:18:29:d0:79:19:44:46:f3:06:
dc:9f:06:e9:b6:de:70:3c:ff:b2:e4:4c:b9:f2:58:
63:84:8f:40:e7:6b:4e:29:60:8c:05:a8:7a:f4:96:
ad:28:4f:16:64:e3:fd:61:90:24:c4:98:0e:26:a9:
66:71:68:14:c1:d3:57:83:6e:6a:a2:73:a8:42:3d:
3a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:65:01:4C:63:E1:47:83:CC:80:23:56:51:76:5A:FA:E3:12:F1:35
X509v3 Authority Key Identifier:
keyid:D3:2F:87:62:31:DC:B5:DF:D7:AF:45:23:12:05:65:D9:80:06:47:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0y-HYjHctd_Xr0UjEgVl2YAGR0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7d8cfd-8830-4fe3-bf75-bc64d3e62382/1/tGUBTGPhR4PMgCNWUXZa-uMS8TU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7d8cfd-8830-4fe3-bf75-bc64d3e62382/1/0y-HYjHctd_Xr0UjEgVl2YAGR0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.5.0/24
Signature Algorithm: sha256WithRSAEncryption
57:04:34:44:22:a8:a4:fe:e0:fc:67:18:da:99:14:b8:7c:e8:
a9:f1:92:a6:a8:1d:2f:4b:8f:8b:4d:b3:ee:5e:c3:f0:a5:e9:
44:ac:08:e4:e2:84:c8:38:5b:ae:84:3a:a8:3a:9a:37:29:67:
38:5f:56:c1:49:63:fe:94:7c:b9:be:b9:76:0f:5c:c2:b1:18:
b3:20:3b:05:84:8a:49:79:79:f0:43:0e:09:0a:41:0e:f8:25:
33:80:0c:88:f7:74:91:86:24:a5:19:94:69:71:56:2b:98:91:
8d:56:5e:b3:87:1c:f7:66:70:9c:ae:ac:46:7d:8d:80:ed:56:
1a:b3:dd:c7:e3:a1:61:b5:d0:6f:e2:03:b9:49:2e:13:88:10:
70:6b:a4:d3:30:7c:78:48:8b:64:1e:a8:d7:42:4b:8b:1b:73:
10:8c:13:b2:44:3c:9a:af:05:13:52:5d:f8:8d:9c:98:9c:fc:
cd:73:de:f3:e1:a0:20:a2:0b:4a:96:55:2d:dd:48:d6:1d:03:
2a:6c:e7:7c:b1:f6:25:99:95:f2:3e:8f:6f:d3:ce:65:39:91:
c0:00:22:72:03:c0:7c:7c:e6:29:ee:ab:88:94:32:98:3f:ec:
d9:63:02:a6:9f:fc:d6:0e:18:cf:5e:6a:a2:31:6d:cf:07:71:
1a:f3:c3:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:22 2025 by rpki-client