Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/fkjwb5bgshez4JjZjFrsiTSpkm8.roa
File: fkjwb5bgshez4JjZjFrsiTSpkm8.roa (raw, json)
Hash identifier: 1ZvxSMBJ/2tswYSFIudHRfc5WPYteeV2U58b54Aifyc=
Subject key identifier: 7E:48:F0:6F:96:E0:B2:17:B3:E0:98:D9:8C:5A:EC:89:34:A9:92:6F
Certificate issuer: /CN=60c9aa8b71e548bd7565ba663fa32f7d1aec41ab
Certificate serial: 03463CAE
Authority key identifier: 60:C9:AA:8B:71:E5:48:BD:75:65:BA:66:3F:A3:2F:7D:1A:EC:41:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMmqi3HlSL11ZbpmP6MvfRrsQas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/fkjwb5bgshez4JjZjFrsiTSpkm8.roa
Signing time: Sat 01 Jan 2022 01:55:01 +0000
ROA not before: Sat 01 Jan 2022 01:55:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213030
IP address blocks: 45.155.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54934702 (0x3463cae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c9aa8b71e548bd7565ba663fa32f7d1aec41ab
Validity
Not Before: Jan 1 01:55:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e48f06f96e0b217b3e098d98c5aec8934a9926f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:11:b7:c8:07:34:5f:cb:20:0b:80:96:fb:83:
5e:b8:05:ca:66:08:24:dc:dd:bd:45:a1:88:c3:53:
4e:6e:79:95:2b:8e:3c:49:23:83:9c:52:49:b7:65:
be:81:ee:2d:1f:0e:f7:6c:98:79:67:d7:42:b0:30:
89:ab:2e:d7:6c:dd:3d:f9:3c:b4:cb:e2:75:83:ee:
75:d0:0b:5a:34:b6:82:da:13:cb:8f:ff:c9:c7:25:
7b:54:1a:31:34:27:8d:d8:10:5b:19:9d:92:62:32:
2f:17:62:fe:83:fe:37:38:a9:d4:19:41:86:3a:8f:
f6:f4:7e:74:a5:6c:c7:85:73:73:19:20:7c:dd:29:
22:83:8e:98:d6:93:6d:32:21:0b:37:c3:10:a1:10:
75:08:8a:b4:3c:50:88:4b:47:bb:97:8c:0d:78:3d:
92:c7:66:9e:5c:94:c5:8c:e6:aa:19:ce:00:a0:97:
4e:d5:70:39:11:68:44:28:1f:a1:86:96:52:63:3f:
8b:46:79:bb:6d:21:a2:d0:78:16:93:68:b5:05:f1:
53:51:be:81:e4:02:89:66:89:76:9a:da:f8:4c:5b:
64:8c:d5:fa:ff:bd:3a:03:9e:80:8f:13:6b:4d:0b:
98:95:81:da:9f:30:33:7d:0d:89:e2:26:a0:cb:3f:
8d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:48:F0:6F:96:E0:B2:17:B3:E0:98:D9:8C:5A:EC:89:34:A9:92:6F
X509v3 Authority Key Identifier:
keyid:60:C9:AA:8B:71:E5:48:BD:75:65:BA:66:3F:A3:2F:7D:1A:EC:41:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMmqi3HlSL11ZbpmP6MvfRrsQas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/fkjwb5bgshez4JjZjFrsiTSpkm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/YMmqi3HlSL11ZbpmP6MvfRrsQas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.225.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:29:d5:2f:70:c0:9c:2b:7f:6e:04:08:67:47:74:7c:8d:c9:
d7:b6:b2:d8:21:64:8b:19:0a:d6:44:48:c2:28:63:e1:ba:49:
9d:7d:24:92:f5:62:39:40:d6:97:96:c5:d2:74:97:7d:42:c5:
b2:bf:96:82:26:29:0b:5e:df:ac:c8:29:92:ab:4d:eb:f1:36:
8d:ca:01:74:f6:07:2a:8b:20:79:4c:eb:00:83:b9:99:e3:9d:
1d:0f:1b:b6:b2:3c:e9:de:91:f4:d4:08:6b:ad:09:86:91:dc:
5d:74:d9:d4:2c:81:8d:fa:f6:f6:2d:bf:2c:15:60:5b:c5:1d:
78:4a:1a:1d:21:c2:ee:d7:05:05:28:4f:58:49:57:64:19:1e:
e6:b1:43:b3:91:4b:53:18:30:47:e8:49:f4:41:f2:d9:08:15:
02:cd:67:3a:6a:8a:72:9e:fb:14:f0:fe:4e:aa:b8:f3:46:24:
df:08:2f:6e:8a:ea:6a:7c:1a:af:59:c2:76:88:f3:7f:51:eb:
b6:9e:15:ba:9d:e3:61:b9:43:e4:0d:29:ad:ba:00:de:5f:cc:
ae:c1:49:38:88:25:32:01:86:ea:51:d2:04:b0:91:4b:b1:b4:
8b:d5:84:95:20:c0:75:62:7d:73:2d:85:ff:55:ce:7a:7b:b4:
fc:3c:6f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:10 2024 by rpki-client on console-fra.rpki-client.org