Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/4409b8-a81e-429a-97a2-46c391508436/1/cBcrAmCH0149vHQmxOUrKk-V8fg.roa
File: cBcrAmCH0149vHQmxOUrKk-V8fg.roa (raw, json)
Hash identifier: tHAfCwDCMJewlKkERQU8KLCbH/2dbRDKUnTRhaNCWYE=
Subject key identifier: 70:17:2B:02:60:87:D3:5E:3D:BC:74:26:C4:E5:2B:2A:4F:95:F1:F8
Certificate issuer: /CN=0795d47b63a0fe19d3f001845bcfe201c8e60aa3
Certificate serial: 028B1D09
Authority key identifier: 07:95:D4:7B:63:A0:FE:19:D3:F0:01:84:5B:CF:E2:01:C8:E6:0A:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B5XUe2Og_hnT8AGEW8_iAcjmCqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/4409b8-a81e-429a-97a2-46c391508436/1/cBcrAmCH0149vHQmxOUrKk-V8fg.roa
Signing time: Thu 21 Apr 2022 12:08:49 +0000
ROA not before: Thu 21 Apr 2022 12:08:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.91.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42671369 (0x28b1d09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0795d47b63a0fe19d3f001845bcfe201c8e60aa3
Validity
Not Before: Apr 21 12:08:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70172b026087d35e3dbc7426c4e52b2a4f95f1f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b6:11:6f:6a:f4:a2:50:ad:62:50:5f:fb:7b:
37:8e:93:b5:4d:2f:b9:21:01:2d:cb:f7:59:83:07:
c9:55:90:dd:8c:fc:97:66:db:db:4b:5e:c4:3b:6b:
d0:23:b9:dc:e0:0f:42:6b:93:81:d0:db:fb:12:74:
d1:ce:ed:9a:09:07:c8:a2:c9:eb:6f:48:e5:af:79:
63:5f:27:f4:15:91:45:5e:d8:66:07:39:48:3d:82:
3c:de:e2:63:0a:5c:4a:b6:0f:70:5d:e0:78:e4:cf:
06:29:50:1e:07:55:3e:67:1d:d4:2e:9d:b7:ae:f5:
0f:1d:f3:10:85:d7:9d:13:e3:0b:87:93:48:e5:d1:
de:00:b3:84:b8:83:67:df:be:bd:fe:d9:eb:8d:03:
cd:d7:55:e3:bd:b1:9a:e6:c2:ed:64:31:1d:db:7b:
9a:6e:ef:ee:d0:66:83:93:b5:b9:5d:ce:d6:37:9c:
8d:d2:65:57:0d:18:13:c1:68:6f:7c:cf:f9:3f:d6:
ad:e8:29:84:73:e9:b0:1b:89:5c:99:7b:b0:d6:49:
09:8d:71:d1:51:e6:04:2f:e4:f9:29:36:8b:ce:17:
ad:b8:09:59:f1:5f:64:5e:ca:18:62:e3:db:50:9e:
c1:66:61:c4:da:68:ab:50:19:54:04:95:45:72:95:
c3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:17:2B:02:60:87:D3:5E:3D:BC:74:26:C4:E5:2B:2A:4F:95:F1:F8
X509v3 Authority Key Identifier:
keyid:07:95:D4:7B:63:A0:FE:19:D3:F0:01:84:5B:CF:E2:01:C8:E6:0A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B5XUe2Og_hnT8AGEW8_iAcjmCqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/4409b8-a81e-429a-97a2-46c391508436/1/cBcrAmCH0149vHQmxOUrKk-V8fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/4409b8-a81e-429a-97a2-46c391508436/1/B5XUe2Og_hnT8AGEW8_iAcjmCqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.195.0/24
Signature Algorithm: sha256WithRSAEncryption
63:dc:4a:7a:21:5d:10:f9:5a:ad:97:bf:88:72:6d:a4:af:a0:
e5:a7:1e:f3:cd:91:e6:2c:0f:af:0d:ba:a3:30:61:e3:45:fe:
0a:ff:60:c8:02:64:47:41:9d:84:6f:26:cb:78:01:17:91:b1:
cb:aa:df:f3:72:cb:ad:56:42:47:7c:11:b1:e4:fe:43:a3:c2:
5e:ec:8f:bf:91:dc:73:65:c5:c3:25:cd:76:53:9d:91:7d:4a:
9f:40:b0:92:b3:71:fe:eb:8c:45:94:58:ae:f2:2c:31:d1:0b:
70:5f:2e:f3:ba:e4:c5:70:77:b7:09:96:b4:61:13:f4:05:fc:
a5:88:4b:a1:73:57:49:bc:0a:fe:9f:6c:e6:8e:d7:4c:55:c9:
c7:5c:85:58:9b:42:f2:4b:7b:da:0b:e2:a5:3d:ce:61:55:5c:
57:69:45:21:26:6e:7a:a8:30:51:29:64:ef:63:29:3f:f6:a1:
14:73:de:4b:53:6d:73:72:bd:2f:29:d4:ae:f9:75:cd:87:65:
af:8c:11:9f:39:4d:69:ec:2c:fa:dd:20:3f:82:40:d2:20:a6:
5c:34:26:e6:58:a6:8c:4e:bc:90:36:06:4d:6a:9c:bb:75:42:
ff:78:42:cf:3c:ef:14:18:7b:fe:99:e2:46:cf:de:fe:d9:11:
20:0b:16:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-ams.rpki-client.org