Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/3nenqtHvAL4TF12BT6S4DnhsQ9A.roa
File: 3nenqtHvAL4TF12BT6S4DnhsQ9A.roa (raw, json)
Hash identifier: i19rwE1d4JRVs1ANsdnzNjw+gvyj+foUzyuyYfGAnZA=
Subject key identifier: DE:77:A7:AA:D1:EF:00:BE:13:17:5D:81:4F:A4:B8:0E:78:6C:43:D0
Certificate issuer: /CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Certificate serial: 018224F26BC4B3FFE7A8481EB651E725F160
Authority key identifier: 37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/3nenqtHvAL4TF12BT6S4DnhsQ9A.roa
Signing time: Fri 22 Jul 2022 08:07:23 +0000
ROA not before: Fri 22 Jul 2022 08:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22653
IP address blocks: 45.128.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:24:f2:6b:c4:b3:ff:e7:a8:48:1e:b6:51:e7:25:f1:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Validity
Not Before: Jul 22 08:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de77a7aad1ef00be13175d814fa4b80e786c43d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:50:15:7a:a5:c0:76:c6:f2:64:5f:6b:a3:de:
2f:51:b2:fe:f2:e9:f9:8d:12:a5:a7:f7:27:56:c1:
1c:06:3a:b2:65:13:bf:26:59:4f:c6:22:76:17:67:
82:f7:ad:04:f0:e6:7c:96:98:c2:be:f7:68:8e:ec:
2d:76:eb:9a:96:31:dd:d3:ec:a8:9b:42:dc:44:b7:
1f:db:71:81:ca:17:dd:0d:ef:d5:3d:e3:e7:df:cd:
db:b5:c2:ce:75:e0:5e:f2:21:cc:2a:61:16:c8:08:
38:42:d7:1f:79:c6:11:5b:a2:40:56:e9:b5:75:45:
80:ab:29:da:81:5b:c7:90:2c:ca:4b:87:3c:4b:30:
90:9d:b0:a3:07:fd:3b:56:15:ac:4b:8c:a5:76:d0:
82:c1:d2:ba:f4:02:f7:64:36:06:55:92:bf:0e:f3:
b2:18:4a:38:c0:3e:f5:c6:95:19:81:67:92:2e:90:
3d:2c:9b:bb:e7:dd:62:91:8f:ad:05:79:89:91:33:
d4:12:92:6c:69:7e:c1:bd:4f:cb:1e:1b:81:62:f9:
32:91:04:1f:0e:08:9b:06:0f:0a:7f:40:6f:5d:56:
b6:9c:e6:fd:8c:ca:c2:fd:44:5f:8e:ab:6a:c1:eb:
77:0e:e1:60:fb:93:7f:63:be:2c:3c:2d:b8:7b:7c:
cd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:77:A7:AA:D1:EF:00:BE:13:17:5D:81:4F:A4:B8:0E:78:6C:43:D0
X509v3 Authority Key Identifier:
keyid:37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/3nenqtHvAL4TF12BT6S4DnhsQ9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/N6i1oYlcUIggUJXC96Xv6R1TnkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.234.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:ca:0e:6a:96:42:3a:5a:ef:fa:47:07:9f:e1:ff:2c:01:e7:
60:24:6f:fa:66:28:b2:9c:66:0d:08:a1:c3:25:eb:f4:f9:6c:
51:a9:b0:24:92:ad:77:80:d8:1c:d6:ca:51:17:45:84:75:5d:
e2:66:67:50:b2:da:95:9b:2e:3e:76:53:51:12:43:24:be:2e:
29:43:86:06:86:2b:fd:65:4d:6e:9e:2c:a7:91:2b:2a:c8:ac:
25:de:66:bd:fd:df:ca:8f:3e:c8:15:b5:ca:6e:b7:56:6e:3a:
a8:8e:9e:cc:9c:0e:a7:ad:3a:0a:d2:a2:39:47:18:fb:94:d2:
c2:00:0a:04:e7:1c:69:ec:06:4a:3d:6d:1a:db:12:ad:5e:0d:
c5:cd:de:4e:10:37:15:db:81:61:20:c3:57:a3:ac:45:71:8f:
ef:29:35:f4:36:1c:24:ab:dc:2d:3b:54:e7:15:bf:11:cc:5c:
30:f9:78:41:bd:c4:0c:19:c6:47:f4:29:db:26:ac:26:b3:86:
03:2b:91:02:e5:0c:b4:5b:27:51:27:d4:b3:2c:17:9c:91:a8:
43:c6:62:5c:48:53:0b:de:e6:ca:87:37:7a:69:da:79:5d:03:
5f:62:47:69:ab:13:b0:60:88:99:6b:9c:cb:6d:ea:d0:2b:91:
8d:f2:03:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org