Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/G2SLiV0tPcNkKFYSqNgX7jlQm9Y.roa
File: G2SLiV0tPcNkKFYSqNgX7jlQm9Y.roa (raw, json)
Hash identifier: Qy/u5/vF5AYuOWzfKNgnRFRevYfZw9L7MgBUv0AYFUw=
Subject key identifier: 1B:64:8B:89:5D:2D:3D:C3:64:28:56:12:A8:D8:17:EE:39:50:9B:D6
Certificate issuer: /CN=df4657812435bb1af4802f96032f91c57cbcc933
Certificate serial: 01856CEF4A046FF3E6BB70F22CD2AE6992AC
Authority key identifier: DF:46:57:81:24:35:BB:1A:F4:80:2F:96:03:2F:91:C5:7C:BC:C9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/G2SLiV0tPcNkKFYSqNgX7jlQm9Y.roa
Signing time: Sun 01 Jan 2023 10:44:59 +0000
ROA not before: Sun 01 Jan 2023 10:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201211
IP address blocks: 45.133.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:4a:04:6f:f3:e6:bb:70:f2:2c:d2:ae:69:92:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df4657812435bb1af4802f96032f91c57cbcc933
Validity
Not Before: Jan 1 10:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b648b895d2d3dc364285612a8d817ee39509bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:0d:25:c2:b1:a2:27:3a:a6:d5:79:b8:09:eb:
fc:05:62:59:c7:53:60:48:95:7d:4b:7e:15:8e:3e:
c4:57:9b:30:3b:e5:ea:57:9d:4c:46:13:67:fa:38:
f0:a9:a0:be:b9:71:e2:b7:2e:94:98:af:d0:d8:e0:
78:16:0e:31:44:2e:da:cd:16:f2:9b:f9:60:e7:18:
d3:21:66:39:1e:4c:c8:22:77:22:a4:da:cd:c3:28:
c8:51:e3:e9:37:c8:60:f9:46:c2:0b:50:c0:99:32:
2b:34:47:55:cf:d1:e8:28:80:3e:78:a5:e9:c6:55:
1b:5d:43:83:0f:8a:9d:b0:94:53:38:ab:58:6d:0c:
e1:b6:7b:7a:26:87:ff:5e:64:54:d0:b5:29:bb:d7:
fe:87:69:b3:52:51:12:e7:f7:bd:cb:a0:7f:41:26:
f8:23:b5:40:02:4a:a9:c1:04:e6:ae:30:c4:e5:5d:
9c:6a:4e:d7:dd:61:7d:29:76:87:4a:e8:01:5d:16:
69:d1:58:97:63:08:49:b0:8e:17:51:1e:79:aa:4f:
06:96:d3:cc:3b:53:3f:21:a7:33:6f:e3:2f:f0:35:
32:e3:f4:56:9f:60:b5:af:9e:bb:bb:56:d8:93:e3:
98:4e:71:11:21:f4:87:d9:31:32:6e:60:fc:0d:a6:
9a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:64:8B:89:5D:2D:3D:C3:64:28:56:12:A8:D8:17:EE:39:50:9B:D6
X509v3 Authority Key Identifier:
keyid:DF:46:57:81:24:35:BB:1A:F4:80:2F:96:03:2F:91:C5:7C:BC:C9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/G2SLiV0tPcNkKFYSqNgX7jlQm9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/47012a-e1cf-43d7-9351-0edf2c4f7ec0/1/30ZXgSQ1uxr0gC-WAy-RxXy8yTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.217.0/24
Signature Algorithm: sha256WithRSAEncryption
35:7e:89:48:92:35:b3:5b:42:5a:e4:54:a7:d9:9f:57:74:c9:
ac:6b:c3:c8:8c:c4:95:24:8e:f5:c2:9a:58:9d:fa:39:49:f0:
cc:0a:f6:9b:98:72:b5:f3:68:ef:5d:6d:db:60:60:63:61:d3:
70:23:27:bd:7c:88:f5:9a:12:d7:b9:c0:ef:6a:c3:5d:8f:08:
6b:8e:b1:3a:0a:64:a7:f9:e0:a7:13:ea:75:17:c9:8f:9c:d5:
0f:a0:51:ac:fd:9d:fc:bb:4a:c4:65:f5:fb:34:3e:0a:9b:8c:
70:67:f7:1e:17:ff:d8:4a:42:52:d6:4f:00:5a:c0:6e:1a:5d:
3d:be:6b:c3:81:95:80:f6:7f:ce:2f:25:21:2f:fd:c0:26:2f:
ea:5f:6f:db:3f:c1:b0:f9:3d:b6:5d:a8:89:52:9d:46:ff:b9:
93:20:81:21:f7:56:b1:c4:c9:bf:d8:59:e1:1a:3c:94:bf:14:
b9:95:7f:d1:17:1f:ee:e9:30:f0:53:a3:8d:7a:56:18:da:6e:
26:12:92:f5:69:2d:8f:3b:40:4e:a8:36:b7:81:b7:6c:a8:33:
5b:e0:66:58:2e:57:8b:e0:3b:f4:10:94:59:2a:6f:1f:b2:26:
05:1e:f8:3e:57:76:73:95:98:ba:02:3a:9a:67:7b:34:e4:4e:
b0:57:e2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:31 2023 by rpki-client on console-fra.rpki-client.org