Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/Vsv5DSRw5minOKEjU3dz5ug4-hU.roa
File: Vsv5DSRw5minOKEjU3dz5ug4-hU.roa (raw, json)
Hash identifier: C73Ookb2RIG3h7pJAm8mmCDxZ0kUotbyiL7mMSSHcDI=
Subject key identifier: 56:CB:F9:0D:24:70:E6:68:A7:38:A1:23:53:77:73:E6:E8:38:FA:15
Certificate issuer: /CN=60c9aa8b71e548bd7565ba663fa32f7d1aec41ab
Certificate serial: 0188B7B6B102A6FC1EDE1D3BCE247EEBCE45
Authority key identifier: 60:C9:AA:8B:71:E5:48:BD:75:65:BA:66:3F:A3:2F:7D:1A:EC:41:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMmqi3HlSL11ZbpmP6MvfRrsQas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/Vsv5DSRw5minOKEjU3dz5ug4-hU.roa
Signing time: Wed 14 Jun 2023 02:23:03 +0000
ROA not before: Wed 14 Jun 2023 02:23:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57097
IP address blocks: 45.156.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b7:b6:b1:02:a6:fc:1e:de:1d:3b:ce:24:7e:eb:ce:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c9aa8b71e548bd7565ba663fa32f7d1aec41ab
Validity
Not Before: Jun 14 02:23:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=56cbf90d2470e668a738a123537773e6e838fa15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:87:59:ea:26:24:64:56:ad:b5:5a:7b:ae:ca:
2e:1c:1a:42:6a:98:69:e5:98:02:f7:76:4d:17:a3:
d7:a5:72:10:bc:a3:a6:9d:df:fd:5e:74:c7:86:39:
74:c9:a0:0c:d6:3c:2d:fc:35:4f:3c:97:75:35:d2:
c9:c8:0b:ba:ae:09:e6:47:26:ff:94:c8:be:6b:ac:
80:b4:6b:09:9c:72:ad:f6:67:7f:6f:30:2f:49:da:
ff:96:5d:53:a0:5a:a7:b6:47:bb:01:fd:cd:d3:58:
b7:f2:31:f7:2c:0c:b9:47:ad:39:70:99:1c:1d:81:
0c:75:f2:76:2f:12:65:c7:cd:be:a0:c8:47:93:ca:
b0:77:c5:b0:a6:11:5e:b1:12:5e:34:60:cd:ff:22:
9a:5b:2e:33:85:c6:06:94:c0:07:d6:29:02:5b:4b:
69:68:5d:c5:03:d2:c4:af:2a:54:c5:39:68:8a:96:
2c:d9:bd:35:26:8e:e3:87:f5:27:5a:ca:a4:70:aa:
c8:92:13:22:70:9a:a9:51:7f:d1:07:bf:e2:c1:d5:
7c:0c:28:9f:6b:3b:db:ea:31:cf:9b:72:7b:bf:d2:
c2:89:17:8d:50:ce:cc:dd:ee:82:2f:8c:d7:fa:39:
a9:7d:53:22:fc:fa:96:0e:9f:27:d1:66:37:0a:21:
61:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:CB:F9:0D:24:70:E6:68:A7:38:A1:23:53:77:73:E6:E8:38:FA:15
X509v3 Authority Key Identifier:
keyid:60:C9:AA:8B:71:E5:48:BD:75:65:BA:66:3F:A3:2F:7D:1A:EC:41:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMmqi3HlSL11ZbpmP6MvfRrsQas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/Vsv5DSRw5minOKEjU3dz5ug4-hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/YMmqi3HlSL11ZbpmP6MvfRrsQas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.223.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:1b:59:d3:48:53:4f:e7:53:d8:8e:b3:71:f4:ac:f0:bc:b1:
8d:d1:ca:d6:67:eb:9b:bf:88:de:c7:2d:86:02:d8:dd:5f:f7:
37:a3:30:b3:ec:29:2d:70:51:c6:c2:aa:e6:a7:8c:66:fd:d5:
c3:e5:9e:ef:78:6c:b5:d1:08:92:8c:ac:bd:94:a4:e3:b9:ef:
0b:05:e4:cc:66:ff:ae:3b:ae:ee:8f:a3:0f:01:c6:d3:8f:d8:
6c:16:d2:6a:0c:d4:50:8a:2b:39:ae:2f:c8:17:a1:c6:c6:87:
6e:1c:12:8b:e2:00:0e:f8:43:cc:71:ff:a9:70:ac:d3:ae:48:
de:82:c2:e4:46:81:dc:32:19:3f:b9:a6:5e:95:a2:b3:57:0b:
a4:3f:a8:91:42:41:a7:32:8e:5b:36:b7:cf:29:e3:f2:5f:73:
9e:f3:f1:79:54:1f:85:08:1a:30:f8:4b:de:3c:82:64:45:79:
4a:cd:56:19:27:13:c5:e9:76:f2:80:10:af:8a:50:5a:77:10:
8e:a7:53:3e:52:c6:76:2a:6c:81:c4:2c:05:9a:4b:c9:ab:ef:
0f:47:8a:80:f9:40:c0:51:36:ec:eb:6b:02:ec:33:6f:0f:0d:
f4:5d:34:23:60:2c:eb:b7:8c:d0:71:6a:12:fa:96:7e:7d:29:
93:69:06:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:37 2024 by rpki-client on console-ams.rpki-client.org