Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/tQykQCC2_FZNTR3H45oURAALJcs.roa
File: tQykQCC2_FZNTR3H45oURAALJcs.roa (raw, json)
Hash identifier: /X4Fj4fvrjiyVWN3B7UIuJyAdT371ifZyTCwX5AMPDc=
Subject key identifier: B5:0C:A4:40:20:B6:FC:56:4D:4D:1D:C7:E3:9A:14:44:00:0B:25:CB
Certificate issuer: /CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Certificate serial: 0183E604BC96C8C6391075876B07DC65718A
Authority key identifier: 37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/tQykQCC2_FZNTR3H45oURAALJcs.roa
Signing time: Mon 17 Oct 2022 12:56:53 +0000
ROA not before: Mon 17 Oct 2022 12:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 45.128.232.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:04:bc:96:c8:c6:39:10:75:87:6b:07:dc:65:71:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Validity
Not Before: Oct 17 12:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b50ca44020b6fc564d4d1dc7e39a1444000b25cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:00:21:ff:a6:25:34:d9:28:a8:f7:9c:5b:5e:
84:ce:f4:99:66:01:50:ad:e6:09:9b:68:5f:65:9b:
d0:b5:43:80:ad:56:48:56:b3:24:f3:d1:2d:14:97:
c2:48:86:19:c9:5c:6d:6b:89:bb:1c:a2:03:59:2e:
c3:c0:3c:30:28:94:d3:4e:59:fb:6f:e1:fb:5e:95:
a5:17:31:58:d3:4d:0c:6f:61:42:00:e3:31:b3:fe:
e0:ae:45:6f:d5:75:d9:cf:6b:5c:63:e5:30:5d:e6:
61:22:c6:d0:79:df:ac:5d:bc:d4:af:6c:4f:37:50:
9b:9d:fb:30:e2:9d:49:ab:6f:dd:c8:8e:bd:d5:b5:
59:85:07:a2:cf:b7:3c:7f:f0:f8:3f:95:d2:1c:79:
e4:f9:5d:0a:80:33:ab:f1:50:a0:0e:e9:85:41:8a:
33:f1:89:f7:65:8f:ee:9c:ce:27:03:65:f5:05:31:
90:7b:82:a5:e8:b3:ee:da:bf:00:e3:4f:3a:ca:7f:
6c:78:74:84:7d:fd:a5:65:20:4a:88:76:fd:d1:5b:
15:2a:d0:b7:b7:60:40:4d:d3:23:ac:14:63:ae:13:
7b:d7:a0:2e:f3:b8:d2:5d:40:77:9f:f4:cc:b9:54:
9a:a6:b3:b3:4d:6b:c9:c1:a8:56:e3:8e:d1:b9:4b:
a8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:0C:A4:40:20:B6:FC:56:4D:4D:1D:C7:E3:9A:14:44:00:0B:25:CB
X509v3 Authority Key Identifier:
keyid:37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/tQykQCC2_FZNTR3H45oURAALJcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/N6i1oYlcUIggUJXC96Xv6R1TnkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.232.0/23
Signature Algorithm: sha256WithRSAEncryption
56:c4:00:46:47:87:4e:2f:2b:af:19:fe:c9:86:6b:fb:2a:f9:
ca:5a:b6:5c:50:48:87:cc:b1:70:72:1e:1a:8a:b4:4b:8c:49:
0f:2e:d1:f2:0b:7c:41:e9:a8:16:2d:1f:1d:9f:76:8a:85:34:
5f:fe:dc:c2:83:8b:c2:57:b0:e7:03:83:24:3e:82:fc:8e:38:
d2:48:d2:70:23:c8:35:9e:4f:6d:0c:69:e8:3f:a2:5e:df:8b:
a1:bf:53:d3:6d:36:a3:36:dc:7a:17:b7:b0:bd:b6:03:70:29:
70:bd:50:fd:0b:7b:70:b7:f9:da:5f:37:15:1b:79:bf:3c:59:
c6:f8:eb:1b:bc:22:a9:51:1a:c9:b3:a2:9c:2e:77:73:74:0f:
9c:ad:77:c6:0a:9c:4a:9b:e8:cf:7c:00:36:17:75:5c:19:f9:
cb:34:ef:1e:4a:3d:a6:4f:c9:ab:8b:af:a3:09:35:f7:1a:62:
4e:ac:3d:a1:20:2c:99:42:39:c8:10:d1:86:54:c2:cf:71:2f:
0e:39:63:75:4b:ca:f4:e9:df:ae:2d:2b:43:d5:79:32:47:f1:
58:47:e5:2d:20:bd:5f:42:1e:1c:73:a5:65:a7:09:00:52:42:
8a:14:c4:36:cd:4f:d6:e9:7a:3a:2a:af:26:eb:cf:69:1e:71:
05:2f:b9:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org