Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a775c6-0a6e-4d75-9990-e795be629677/1/MGaiI4GMNV4HNpTcNTjOs-cLYew.roa
File: MGaiI4GMNV4HNpTcNTjOs-cLYew.roa (raw, json)
Hash identifier: rif9VWI2BBKtmq77rfb6R1/5u3/x1nqEab8/yty3cio=
Subject key identifier: 30:66:A2:23:81:8C:35:5E:07:36:94:DC:35:38:CE:B3:E7:0B:61:EC
Certificate issuer: /CN=44d3e020a819a8cda609d5ea48441ee939e41985
Certificate serial: 018CC8DF95A7AD33D304F1B2849C5A6F0361
Authority key identifier: 44:D3:E0:20:A8:19:A8:CD:A6:09:D5:EA:48:44:1E:E9:39:E4:19:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RNPgIKgZqM2mCdXqSEQe6TnkGYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a775c6-0a6e-4d75-9990-e795be629677/1/MGaiI4GMNV4HNpTcNTjOs-cLYew.roa
Signing time: Tue 02 Jan 2024 06:32:25 +0000
ROA not before: Tue 02 Jan 2024 06:32:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34568
IP address blocks: 45.157.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:95:a7:ad:33:d3:04:f1:b2:84:9c:5a:6f:03:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44d3e020a819a8cda609d5ea48441ee939e41985
Validity
Not Before: Jan 2 06:32:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3066a223818c355e073694dc3538ceb3e70b61ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:29:c8:49:85:c8:0f:52:b7:b9:a2:b8:5e:af:
88:2e:59:7b:80:42:39:1c:3b:a9:1a:ee:63:e6:e8:
65:c8:5d:7c:ef:80:0a:13:cb:4f:21:8c:11:32:83:
68:c3:8b:55:32:8b:09:8b:0a:c0:d4:bd:ec:c3:f9:
58:c2:19:c2:28:07:e7:e9:54:f8:b8:dd:c4:9d:6c:
c6:53:0d:1c:7f:d9:67:f7:03:3a:99:f3:1a:3e:81:
8e:40:13:09:d6:84:0e:01:af:82:6c:3d:b8:39:b9:
b5:a0:22:c7:ca:ab:2d:74:6d:65:1b:97:bf:85:93:
7a:67:df:50:eb:61:ad:94:14:29:b8:8b:b0:8d:38:
3a:b1:3b:6e:be:12:3d:af:3c:4c:23:0c:5b:65:1c:
42:2b:c3:a9:a8:3c:3e:93:1c:f8:d4:31:27:03:c1:
74:76:93:e9:cf:e1:0f:e3:08:08:df:20:ad:ec:39:
fc:e9:3f:83:9f:40:31:75:8a:3e:16:0c:35:92:9f:
69:50:92:3a:49:aa:43:08:6d:c8:fe:54:4f:92:60:
85:3a:0d:8e:6f:ad:89:32:fb:43:03:02:33:e8:f2:
ce:c3:17:4d:47:08:ad:ca:17:ef:2d:96:5f:a9:4d:
74:9c:e9:51:16:34:06:24:78:35:49:7e:a6:e9:56:
9f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:66:A2:23:81:8C:35:5E:07:36:94:DC:35:38:CE:B3:E7:0B:61:EC
X509v3 Authority Key Identifier:
keyid:44:D3:E0:20:A8:19:A8:CD:A6:09:D5:EA:48:44:1E:E9:39:E4:19:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RNPgIKgZqM2mCdXqSEQe6TnkGYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a775c6-0a6e-4d75-9990-e795be629677/1/MGaiI4GMNV4HNpTcNTjOs-cLYew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a775c6-0a6e-4d75-9990-e795be629677/1/RNPgIKgZqM2mCdXqSEQe6TnkGYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.137.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:42:0f:c4:60:83:75:e9:82:ac:97:29:83:5f:cb:f5:4f:db:
72:bc:2b:b7:f0:09:2e:0c:20:5a:9c:de:09:30:d9:e0:23:fe:
b0:6f:29:12:e9:a6:2a:f1:69:5c:05:0b:4f:94:fb:8b:b2:80:
5e:eb:21:74:54:10:91:f3:c4:2e:ea:13:8b:64:10:0e:97:3c:
9b:a4:88:08:6e:fe:be:45:7c:d9:58:2f:25:35:6f:8a:33:5b:
05:90:35:47:df:37:a0:52:11:1c:7a:11:4d:de:3c:1d:ca:14:
07:7a:b3:10:70:78:16:9d:be:0b:25:bd:37:55:c6:0e:0c:e2:
b4:5b:1b:ee:67:d2:bb:97:29:b7:c1:52:2c:97:1f:28:92:36:
5b:97:ca:12:63:19:44:69:a0:ae:a8:03:4d:de:9a:a9:10:ed:
51:42:a9:e7:08:ff:81:e2:43:40:09:52:55:4d:ed:fa:be:86:
ac:bf:8e:9f:43:7a:fe:a2:3a:84:6d:80:1d:62:01:f3:9d:eb:
b3:51:44:cb:c2:0a:d7:07:9e:5d:16:8a:90:fd:d6:b1:33:d4:
11:01:54:e8:fc:0a:ea:c2:73:ec:dd:e4:ff:94:4e:ff:8f:43:
14:d5:eb:30:3c:be:fc:f0:c1:0e:01:72:9a:ea:6c:9e:c1:46:
f2:99:42:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:04 2024 by rpki-client on console-fra.rpki-client.org