Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/igCWK3_PtDpnoTVsk9V0A3AuDDI.roa
File: igCWK3_PtDpnoTVsk9V0A3AuDDI.roa (raw, json)
Hash identifier: AWEu0ONaAtuGzNRK9HdT0xUklTiqUuErp7xsJ8KXuU8=
Subject key identifier: 8A:00:96:2B:7F:CF:B4:3A:67:A1:35:6C:93:D5:74:03:70:2E:0C:32
Certificate issuer: /CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Certificate serial: 018378850CE1D0C9DDF4C2437BC6208F9664
Authority key identifier: 37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/igCWK3_PtDpnoTVsk9V0A3AuDDI.roa
Signing time: Mon 26 Sep 2022 06:38:48 +0000
ROA not before: Mon 26 Sep 2022 06:38:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.128.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:78:85:0c:e1:d0:c9:dd:f4:c2:43:7b:c6:20:8f:96:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Validity
Not Before: Sep 26 06:38:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a00962b7fcfb43a67a1356c93d57403702e0c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5b:9b:bc:0c:85:1e:00:c0:c3:57:c3:b7:5c:
9f:a1:40:38:d0:18:09:5b:bc:59:fb:a8:f2:82:84:
07:8c:a2:80:b9:6a:be:cf:21:17:a8:a2:00:f1:9d:
3a:82:b2:b4:e6:af:89:63:bc:74:9b:e4:9c:51:fb:
05:7c:dc:0d:dd:9c:38:48:2f:5d:4a:fc:3f:4e:a8:
47:b1:6c:e3:3e:ad:3d:b4:89:0f:3e:a4:cf:d9:cf:
b3:3b:27:6c:12:5e:f7:f6:f6:cd:83:69:6b:91:11:
b2:08:64:f5:37:9f:f4:17:21:e7:a1:9f:ab:e7:c8:
47:cf:0a:56:13:97:91:85:2d:d9:32:5e:55:65:43:
5e:20:47:3b:c2:67:ce:17:d1:7a:9d:be:78:39:ff:
62:c5:79:cd:b4:f0:fd:76:b1:5d:4c:14:d9:b2:66:
30:37:c5:c6:90:e3:4f:e7:c8:bc:a3:fa:bc:4f:77:
87:47:e5:15:76:69:1d:2f:7e:c2:26:9b:52:94:f8:
8e:e6:5f:4c:ed:54:8f:cc:70:35:7d:39:98:04:e6:
bb:74:90:cf:83:46:32:dd:cb:56:91:51:5a:51:e9:
b6:f0:61:51:ae:4d:00:1f:f6:47:0d:cf:1c:e3:5b:
f7:a1:c4:8d:87:7c:a9:9d:32:ab:a1:d8:48:0f:64:
db:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:00:96:2B:7F:CF:B4:3A:67:A1:35:6C:93:D5:74:03:70:2E:0C:32
X509v3 Authority Key Identifier:
keyid:37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/igCWK3_PtDpnoTVsk9V0A3AuDDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/N6i1oYlcUIggUJXC96Xv6R1TnkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.233.0/24
Signature Algorithm: sha256WithRSAEncryption
45:0d:a3:49:da:2e:99:fb:eb:51:37:43:8f:a9:b5:1d:54:83:
26:a5:bd:fd:33:2f:00:3a:aa:30:76:6f:21:85:8b:f4:1d:5e:
6c:12:86:59:fe:89:47:f0:29:e3:8b:8d:56:69:fc:51:45:b9:
fc:8c:9e:ee:6e:c2:10:63:03:a8:dc:41:82:2a:f1:d6:5b:4f:
2f:36:0c:d5:c2:52:dc:0a:4a:41:f4:54:bc:b4:e0:41:93:22:
e1:32:8c:d2:fa:ef:1e:f5:31:6d:30:d3:fc:ca:9f:81:b9:ec:
7a:91:91:70:ed:16:2a:88:18:3b:4d:fe:9c:bf:97:2d:df:76:
98:7b:3b:5c:cd:8e:12:33:63:c1:bf:98:aa:43:1a:9e:d4:12:
8d:c4:02:a1:81:6c:6c:a8:c7:5f:5f:4a:d6:43:a9:28:56:bd:
a0:4b:3f:90:67:76:83:2c:c6:a1:50:6b:f4:29:ab:6b:ed:20:
a8:1f:e5:b5:cb:c5:3c:05:d3:c6:12:20:28:a3:bd:0f:38:85:
03:56:e6:d5:c3:a5:b6:22:09:28:34:7b:98:99:e6:6e:21:ff:
9a:6e:09:89:d6:5e:02:80:c3:dc:7d:c8:2b:08:10:f0:da:53:
a6:c8:a9:5e:f1:27:81:a4:76:d1:d5:68:e4:de:c0:24:ce:7a:
3a:97:4d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org