Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/83233c-898e-491d-958c-4fea624413e4/1/sKqnd0IOl4XKvcual09Dp0EsQXs.roa
File: sKqnd0IOl4XKvcual09Dp0EsQXs.roa (raw, json)
Hash identifier: SqeTiEzU7jIwk4eHimyFiumnz5mxKYS9VsA2IsSiIbI=
Subject key identifier: B0:AA:A7:77:42:0E:97:85:CA:BD:CB:9A:97:4F:43:A7:41:2C:41:7B
Certificate issuer: /CN=00138af66eb4d557fa4b3939c6cbd961a9123560
Certificate serial: 03F31359
Authority key identifier: 00:13:8A:F6:6E:B4:D5:57:FA:4B:39:39:C6:CB:D9:61:A9:12:35:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABOK9m601Vf6Szk5xsvZYakSNWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/83233c-898e-491d-958c-4fea624413e4/1/sKqnd0IOl4XKvcual09Dp0EsQXs.roa
Signing time: Sat 01 Jan 2022 03:53:18 +0000
ROA not before: Sat 01 Jan 2022 03:53:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206238
IP address blocks: 45.155.156.0/22 maxlen: 24
45.155.156.0/23 maxlen: 24
45.155.158.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66261849 (0x3f31359)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00138af66eb4d557fa4b3939c6cbd961a9123560
Validity
Not Before: Jan 1 03:53:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0aaa777420e9785cabdcb9a974f43a7412c417b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fe:7c:6f:20:ad:b2:57:a5:e0:38:2f:16:73:
79:ce:d3:47:d7:a1:15:8c:0a:cc:05:60:ed:b4:46:
49:b8:e9:64:de:20:a4:96:be:f8:3b:2c:02:e2:72:
7b:ec:6e:f0:da:84:bd:7b:2b:00:1a:71:55:a8:dd:
d0:18:0d:f5:8f:4f:4f:f9:a7:a0:cb:a3:a3:74:38:
cb:53:13:73:4d:38:41:88:de:eb:2a:f3:08:d6:59:
64:24:e3:fb:c2:57:d3:19:78:f5:36:29:ba:26:ea:
bf:3f:bb:7b:3a:04:73:c6:0b:7f:04:92:22:82:96:
36:69:23:d4:db:ad:00:9d:34:bc:c2:d3:91:20:18:
e0:a7:27:49:4e:cb:db:46:31:06:33:c9:fb:cb:20:
84:b1:20:5e:bf:a4:fa:c1:1f:0f:65:ff:27:f1:70:
58:98:e6:d4:ae:aa:bb:d5:16:52:34:da:84:a7:98:
3b:ad:78:8b:b4:f1:1f:da:1f:b4:12:83:ad:e0:d7:
7f:68:95:15:c8:f5:d7:84:7e:8f:74:5c:16:47:39:
03:78:de:ab:0d:a8:2f:b5:1d:d7:a6:77:42:93:d1:
af:02:19:98:0b:9c:49:02:14:a1:ab:73:24:d1:db:
6a:73:4d:9f:ae:2f:e5:3e:ec:2b:76:9e:40:d5:f2:
1b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:AA:A7:77:42:0E:97:85:CA:BD:CB:9A:97:4F:43:A7:41:2C:41:7B
X509v3 Authority Key Identifier:
keyid:00:13:8A:F6:6E:B4:D5:57:FA:4B:39:39:C6:CB:D9:61:A9:12:35:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABOK9m601Vf6Szk5xsvZYakSNWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/83233c-898e-491d-958c-4fea624413e4/1/sKqnd0IOl4XKvcual09Dp0EsQXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/83233c-898e-491d-958c-4fea624413e4/1/ABOK9m601Vf6Szk5xsvZYakSNWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.156.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:2d:21:47:12:a8:49:45:2e:ef:5b:74:ea:e2:bd:86:ed:bd:
85:ac:a2:86:98:e0:cc:23:ef:50:b8:50:6c:88:bd:ce:30:25:
e8:d7:63:8d:01:51:63:93:a2:17:45:2b:68:ec:99:c0:29:48:
0d:71:be:36:2e:4d:cf:9f:fc:78:d5:06:41:c5:cb:ad:6b:85:
23:ff:9c:92:23:4c:a1:93:4b:68:c1:69:5d:bc:17:fc:37:71:
47:62:b6:c0:5f:bd:67:c5:5a:33:d0:24:99:51:b1:3a:ff:7e:
cd:bb:61:da:1d:72:1b:a1:d6:1a:bc:c8:a9:35:78:d2:db:4d:
79:ef:1c:a0:b1:ca:73:e4:66:f2:3c:72:a8:bb:1f:e9:cf:77:
a4:1c:ea:7d:76:9b:65:41:2b:35:70:30:4a:c5:dd:7e:f4:fd:
63:dc:1d:28:d5:fb:c0:d4:b5:a2:e9:e6:a6:2a:5e:ac:fc:6f:
f1:50:62:38:ec:69:1b:02:20:ea:7b:2b:44:ae:77:0a:48:df:
c6:18:7e:ac:30:64:89:09:93:2e:b6:2d:46:df:1b:ef:37:82:
6d:e1:c3:b4:3e:39:b9:9a:e8:ee:05:43:a3:25:ff:ee:e4:db:
5e:8a:b5:2a:17:a5:3a:fe:4a:0b:fa:a4:90:47:dd:8c:05:1e:
a3:23:9f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:50 2023 by rpki-client on console-fra.rpki-client.org