Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/a1b79e-4a93-41cf-b7c9-b60aaa0f949e/1/27CTkySH_PfPGNqmoG_Ky36vLmY.roa
File: 27CTkySH_PfPGNqmoG_Ky36vLmY.roa (raw, json)
Hash identifier: 8ey8acdIx2CZhlpcfH1Uo2On+tYgIjO6JVyGiLSanwE=
Subject key identifier: DB:B0:93:93:24:87:FC:F7:CF:18:DA:A6:A0:6F:CA:CB:7E:AF:2E:66
Certificate issuer: /CN=d03a51d7823cc513430bf08c5abc89897fdb81ed
Certificate serial: 0773978A
Authority key identifier: D0:3A:51:D7:82:3C:C5:13:43:0B:F0:8C:5A:BC:89:89:7F:DB:81:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0DpR14I8xRNDC_CMWryJiX_bge0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/a1b79e-4a93-41cf-b7c9-b60aaa0f949e/1/27CTkySH_PfPGNqmoG_Ky36vLmY.roa
Signing time: Sat 01 Jan 2022 04:53:08 +0000
ROA not before: Sat 01 Jan 2022 04:53:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57704
IP address blocks: 45.146.12.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125015946 (0x773978a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d03a51d7823cc513430bf08c5abc89897fdb81ed
Validity
Not Before: Jan 1 04:53:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbb093932487fcf7cf18daa6a06fcacb7eaf2e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d6:c9:42:2d:f6:46:10:b9:43:88:01:62:4c:
85:9f:f6:ea:c0:81:aa:35:b0:67:09:b5:4e:70:82:
49:b8:89:da:e6:8e:59:46:31:7f:0c:f5:c7:94:48:
c2:34:40:9c:58:bf:bb:77:a9:3d:10:17:e8:c4:82:
10:94:26:2c:86:56:16:28:e8:5f:bd:74:28:ed:75:
2f:45:2d:c9:fe:94:3c:e2:63:9f:1b:1b:1b:72:94:
9d:e8:85:d0:16:e9:88:1c:1c:67:d3:0b:b7:35:d7:
9c:36:58:f5:30:73:42:8f:e0:57:20:20:d9:15:98:
f8:6b:ce:83:b2:b6:37:e2:af:3a:ef:0c:98:2d:ca:
0e:49:eb:e7:80:1a:e0:32:77:6c:72:b1:ee:6d:e2:
85:94:9d:06:ad:ed:76:73:5c:66:16:94:af:54:6c:
a3:69:7f:78:96:5f:f6:df:7c:94:93:7d:21:cf:44:
92:94:e4:84:89:d2:c8:b0:b2:66:56:88:e2:82:e0:
4e:c2:03:2d:df:26:ea:d9:81:a1:44:06:80:af:5d:
37:d9:48:24:e6:79:6f:b1:47:9c:ed:b9:94:1f:f1:
bf:06:4a:cc:e7:19:cb:d6:4c:f9:c5:09:b6:27:9f:
e8:51:9b:0c:c8:c6:72:ab:cc:6f:75:d6:0f:6c:17:
6f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B0:93:93:24:87:FC:F7:CF:18:DA:A6:A0:6F:CA:CB:7E:AF:2E:66
X509v3 Authority Key Identifier:
keyid:D0:3A:51:D7:82:3C:C5:13:43:0B:F0:8C:5A:BC:89:89:7F:DB:81:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0DpR14I8xRNDC_CMWryJiX_bge0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/a1b79e-4a93-41cf-b7c9-b60aaa0f949e/1/27CTkySH_PfPGNqmoG_Ky36vLmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/a1b79e-4a93-41cf-b7c9-b60aaa0f949e/1/0DpR14I8xRNDC_CMWryJiX_bge0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.12.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:21:92:b2:53:65:3d:cb:06:9c:22:e8:10:f1:a8:47:de:eb:
9a:de:09:72:b5:21:76:f3:82:23:55:76:de:bf:2d:87:86:6f:
8b:dc:4e:75:86:84:a9:2a:2b:3b:3a:5c:de:e2:49:53:e9:37:
2c:6e:09:7e:98:3b:6e:f3:ba:29:a1:c3:fe:52:83:85:f6:26:
eb:10:3f:69:2f:19:7d:44:c3:25:3d:17:62:2a:59:44:39:d2:
d7:4c:68:9b:f8:cf:b4:9b:a1:ae:38:15:55:83:dd:f1:c7:8e:
ea:3c:63:0f:27:c5:89:4b:ac:f6:42:23:3f:89:60:ff:c0:f9:
e3:29:58:9a:84:d3:92:56:ea:77:76:25:a7:13:35:c1:c6:f8:
f6:e4:aa:25:60:fd:86:c6:3e:ce:34:18:8e:43:fa:3a:49:23:
7b:62:af:e7:61:fd:a9:b6:82:35:8a:0a:4e:45:d5:e1:da:29:
22:9b:1b:ca:60:e1:78:01:d1:5e:56:2b:41:e5:2a:af:56:ed:
4f:6f:04:fe:3b:75:60:0f:17:1b:f7:e7:ae:71:cd:21:80:97:
79:e3:de:af:f0:68:90:c3:73:6e:5e:6b:b9:0f:ff:b8:fb:2c:
fb:57:a0:38:68:98:1b:e6:35:10:66:9b:6f:87:71:3b:0b:a7:
76:43:6b:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:22 2023 by rpki-client on console-fra.rpki-client.org