Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/3bd00f-6dfe-4d78-8d87-10a37f8d9606/1/eTR8k6ZxYV_KdUSz2gcEcHqmOOk.roa
File: eTR8k6ZxYV_KdUSz2gcEcHqmOOk.roa (raw, json)
Hash identifier: howZf+ncw+jwtcfF/nDjEDaw7TACssvjz58qtRySNj0=
Subject key identifier: 79:34:7C:93:A6:71:61:5F:CA:75:44:B3:DA:07:04:70:7A:A6:38:E9
Certificate issuer: /CN=3904942cffb3c55607c96bd3c7d77aac2e243657
Certificate serial: 0187F8A8C3B211B5210D87EBF62F188D7750
Authority key identifier: 39:04:94:2C:FF:B3:C5:56:07:C9:6B:D3:C7:D7:7A:AC:2E:24:36:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQSULP-zxVYHyWvTx9d6rC4kNlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/3bd00f-6dfe-4d78-8d87-10a37f8d9606/1/eTR8k6ZxYV_KdUSz2gcEcHqmOOk.roa
Signing time: Mon 08 May 2023 00:00:22 +0000
ROA not before: Mon 08 May 2023 00:00:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 45.95.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f8:a8:c3:b2:11:b5:21:0d:87:eb:f6:2f:18:8d:77:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3904942cffb3c55607c96bd3c7d77aac2e243657
Validity
Not Before: May 8 00:00:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79347c93a671615fca7544b3da0704707aa638e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1f:84:9a:2f:94:03:e3:aa:d7:9d:8d:03:54:
14:e6:fa:44:ca:34:45:91:97:e8:fa:d8:fd:a4:ad:
40:b5:0e:fe:d3:eb:71:20:4e:52:42:a8:f3:02:30:
98:02:1b:f6:10:37:eb:59:f7:e7:92:c3:0c:0f:4b:
39:14:0e:c0:90:b6:4a:23:9d:ff:cd:77:ca:92:16:
74:0b:6b:2a:e5:e9:bb:f6:4b:6f:80:18:ca:41:9e:
04:3c:6d:04:07:1f:bc:54:70:28:60:2d:66:c9:6f:
c6:65:84:e7:a5:1d:8a:9d:35:c1:dc:b2:2a:4c:da:
1d:6d:c6:78:06:a0:88:28:85:c0:48:54:b1:fc:79:
17:73:22:27:a2:d4:b0:88:87:20:56:15:61:a3:29:
7b:86:dd:dc:bf:cf:bb:7e:0b:04:09:06:f9:bc:f1:
52:4d:56:d4:3d:84:2e:3f:21:35:bf:4c:ed:bb:e5:
48:ed:de:97:ba:1c:3e:b2:3d:0f:de:07:18:bc:da:
83:6e:62:b4:99:b5:81:21:ec:f3:cd:54:13:2e:34:
08:92:eb:84:f6:d7:1f:bf:5f:78:d4:fa:9b:7c:67:
71:2c:ac:7d:28:6d:35:bf:50:cf:37:f0:ca:c3:51:
8c:27:1b:1d:b4:8d:c8:e1:34:a0:19:9f:f7:40:91:
90:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:34:7C:93:A6:71:61:5F:CA:75:44:B3:DA:07:04:70:7A:A6:38:E9
X509v3 Authority Key Identifier:
keyid:39:04:94:2C:FF:B3:C5:56:07:C9:6B:D3:C7:D7:7A:AC:2E:24:36:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQSULP-zxVYHyWvTx9d6rC4kNlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/3bd00f-6dfe-4d78-8d87-10a37f8d9606/1/eTR8k6ZxYV_KdUSz2gcEcHqmOOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/3bd00f-6dfe-4d78-8d87-10a37f8d9606/1/OQSULP-zxVYHyWvTx9d6rC4kNlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.11.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:43:a2:89:01:6a:1d:8d:51:bd:c3:c2:e0:35:98:cf:88:e9:
be:32:c6:b2:57:27:cc:6d:5a:de:38:3c:6b:0a:d8:b9:b4:09:
9c:27:b0:c6:2c:13:09:12:e0:d8:92:99:fb:83:70:9e:47:8e:
43:2b:a9:cc:83:82:85:1e:14:5a:49:c0:e1:d5:3f:64:e7:42:
d3:c7:91:86:33:34:49:e1:c1:96:99:32:9c:35:3a:79:e1:08:
53:f7:a0:1f:02:bb:dc:fb:f6:0d:d3:a9:b7:28:34:bc:dd:7d:
d5:e6:bb:dc:e3:48:81:93:2f:0a:90:71:68:3f:38:b9:e3:80:
dc:f7:a3:63:69:17:45:a6:2c:4a:98:ad:05:f8:b1:45:35:35:
63:1c:80:e7:d6:7e:b5:6b:41:72:35:5f:08:92:1a:0d:63:26:
a0:af:92:73:da:84:a4:19:3a:4f:c3:53:ae:99:e8:0b:0e:3e:
e9:d5:77:ac:f8:e1:67:5b:85:f2:2e:c2:15:b8:d0:f3:d3:da:
0d:f6:a7:3d:9a:59:c8:6c:b2:47:f5:1f:f2:99:5a:3c:8d:39:
d0:ae:ce:79:d9:6f:d1:1a:6d:b0:70:e5:9d:ab:12:02:ab:95:
ed:74:03:48:0c:95:84:e1:b7:61:28:a1:0e:8b:91:06:32:cb:
d0:4c:66:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:13 2024 by rpki-client on console-ams.rpki-client.org