Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8035f0-520d-4612-aab7-7dd7e13d165f/1/he-wwlGTg51incdVwueJOvrymGE.roa
File: he-wwlGTg51incdVwueJOvrymGE.roa (raw, json)
Hash identifier: 8iKYNNWPWdQLbaF7MSCX4MSlXJDiGRpKgC42GFcbW5c=
Subject key identifier: 85:EF:B0:C2:51:93:83:9D:62:9D:C7:55:C2:E7:89:3A:FA:F2:98:61
Certificate issuer: /CN=55698a5dfd2bbacaa0c2bb18d5afed1a3b98de95
Certificate serial: 01181208
Authority key identifier: 55:69:8A:5D:FD:2B:BA:CA:A0:C2:BB:18:D5:AF:ED:1A:3B:98:DE:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VWmKXf0rusqgwrsY1a_tGjuY3pU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8035f0-520d-4612-aab7-7dd7e13d165f/1/he-wwlGTg51incdVwueJOvrymGE.roa
Signing time: Sat 01 Jan 2022 06:59:15 +0000
ROA not before: Sat 01 Jan 2022 06:59:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.82.168.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18354696 (0x1181208)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55698a5dfd2bbacaa0c2bb18d5afed1a3b98de95
Validity
Not Before: Jan 1 06:59:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85efb0c25193839d629dc755c2e7893afaf29861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c6:01:cd:72:85:cb:f1:62:00:68:8b:9e:96:
69:35:fa:77:29:25:a7:cb:e2:17:a7:32:be:80:e4:
70:b8:5b:fe:cf:bc:11:85:42:96:e7:9a:f9:ca:62:
4e:f3:da:3d:ae:c2:c1:f5:ba:f3:d9:90:d1:8e:ce:
00:e0:c2:71:7d:3e:d6:8c:23:8c:59:8a:f3:c0:6b:
1d:76:4f:67:88:42:74:fd:1c:27:c1:43:a2:9c:76:
e8:1a:f3:ec:3e:fd:0c:09:90:81:89:42:0d:1f:f0:
6b:a0:47:be:e9:c6:22:4a:c4:e4:2e:30:6c:11:03:
99:64:0c:1c:04:4e:d8:af:c5:fa:34:65:ee:a0:36:
df:5c:24:33:39:1b:3c:1c:9a:68:d8:6e:5a:67:03:
cc:67:bc:91:22:33:69:34:92:14:51:d0:8d:f4:fe:
b2:26:d0:1d:86:c9:5f:cf:95:4e:ab:78:13:43:6a:
d4:29:48:11:da:f8:8e:82:02:12:ca:bc:e5:5b:f8:
c1:04:06:12:67:70:5e:eb:de:cd:b9:d5:a9:17:0c:
83:98:d6:bc:f1:4b:37:ef:d0:7d:83:fe:8e:10:bf:
22:81:57:85:3b:cf:c2:cf:c7:0e:02:ff:7f:28:ac:
b3:9a:90:6b:50:cc:10:7e:02:cf:25:29:05:19:7d:
96:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:EF:B0:C2:51:93:83:9D:62:9D:C7:55:C2:E7:89:3A:FA:F2:98:61
X509v3 Authority Key Identifier:
keyid:55:69:8A:5D:FD:2B:BA:CA:A0:C2:BB:18:D5:AF:ED:1A:3B:98:DE:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VWmKXf0rusqgwrsY1a_tGjuY3pU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8035f0-520d-4612-aab7-7dd7e13d165f/1/he-wwlGTg51incdVwueJOvrymGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8035f0-520d-4612-aab7-7dd7e13d165f/1/VWmKXf0rusqgwrsY1a_tGjuY3pU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.168.0/22
Signature Algorithm: sha256WithRSAEncryption
60:5e:6c:da:9e:73:b0:18:4a:0b:3e:bb:70:5b:a7:52:21:a6:
68:a2:ff:bf:12:7b:08:ad:e5:a5:2e:e3:30:0a:5f:a0:d7:cb:
29:5d:d0:2c:4a:63:e2:65:d0:1b:6a:82:0c:84:b2:32:84:ca:
5e:71:51:a9:89:d6:85:27:69:85:6e:d6:84:2e:b5:df:af:36:
b6:f1:5b:f0:72:00:40:dc:9d:fe:6b:d4:fb:16:e4:d7:6b:47:
75:8e:40:80:5e:ff:02:3f:55:1b:85:df:bb:56:08:54:25:c4:
64:ba:a4:fd:95:08:7b:99:a0:74:15:a6:58:aa:4a:fa:09:f3:
4c:d8:9e:a0:1c:45:93:ab:df:9b:02:d5:1b:b3:e4:7b:53:aa:
e3:b7:6e:d4:e3:04:30:c0:02:ab:24:b7:8d:d3:ca:84:ba:9a:
e6:b0:1a:93:0f:ac:0c:59:14:f9:44:82:61:43:eb:a0:c3:45:
36:84:af:ba:0c:fd:3b:91:dd:ec:5f:2e:41:0a:9f:da:48:ef:
0d:66:f4:2c:5c:fe:e6:4a:1d:8f:96:81:4d:32:9b:ec:e5:f2:
c4:1a:3e:a0:83:5e:37:7a:56:5e:bc:bc:81:f0:8d:74:da:17:
d2:7b:32:85:67:75:4d:0d:6b:98:5e:28:cc:1a:f7:23:e0:3e:
4d:80:8d:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:00 2024 by rpki-client on console-fra.rpki-client.org