Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/XKJepUB0dvCwdXtsyyflcRoY3eo.roa
File: XKJepUB0dvCwdXtsyyflcRoY3eo.roa (raw, json)
Hash identifier: u+/m7EWmx17XPAK4eSNgO8ngmffHwPzTT9zplgYhY38=
Subject key identifier: 5C:A2:5E:A5:40:74:76:F0:B0:75:7B:6C:CB:27:E5:71:1A:18:DD:EA
Certificate issuer: /CN=366de22f152d2f1333a940e1e0bbd6b4d8beac48
Certificate serial: 04154EA8
Authority key identifier: 36:6D:E2:2F:15:2D:2F:13:33:A9:40:E1:E0:BB:D6:B4:D8:BE:AC:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nm3iLxUtLxMzqUDh4LvWtNi-rEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/XKJepUB0dvCwdXtsyyflcRoY3eo.roa
Signing time: Sat 01 Jan 2022 13:59:12 +0000
ROA not before: Sat 01 Jan 2022 13:59:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 45.151.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68505256 (0x4154ea8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=366de22f152d2f1333a940e1e0bbd6b4d8beac48
Validity
Not Before: Jan 1 13:59:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ca25ea5407476f0b0757b6ccb27e5711a18ddea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:c5:9e:4e:2b:cf:bf:db:4c:c7:83:d1:5c:
ae:6e:3b:78:df:3d:a3:87:4c:60:52:b9:1d:c2:98:
03:2a:b8:30:6a:d2:ba:f5:e0:7b:34:e8:cb:cb:12:
f2:83:1e:b5:f3:0a:01:c9:34:da:fe:39:c6:bb:e2:
9c:aa:cf:d7:6c:81:56:8c:bd:22:c0:b3:62:ab:75:
46:c1:cf:33:b3:10:5f:12:65:f6:f4:50:a4:f4:45:
ce:39:90:16:d9:82:61:a1:37:aa:5e:01:63:01:7f:
e3:ad:4e:42:a4:c4:f1:ed:94:cd:4e:37:34:1b:5a:
be:7d:02:4b:54:5c:b0:45:0d:33:8f:89:01:49:cf:
16:ac:6b:ce:38:84:0b:cd:84:35:6e:7e:c8:98:e9:
bd:65:8c:94:9d:c0:8c:6a:66:cc:6b:10:4c:5e:52:
6c:fc:42:3a:c1:8c:6f:c4:61:10:bd:19:99:18:0e:
e6:ba:24:2f:d4:e3:7d:15:d3:7f:e1:dc:ec:d8:44:
a8:69:8b:25:4b:cc:7a:54:1c:e6:45:13:9e:37:2a:
05:f2:33:20:35:e3:96:3f:cb:9d:90:e8:a9:c1:b7:
98:85:ba:61:98:65:4e:a1:38:b8:a6:c3:59:d8:a7:
87:a6:41:07:66:4d:b5:4b:6f:3f:a1:58:f7:d4:35:
ee:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:A2:5E:A5:40:74:76:F0:B0:75:7B:6C:CB:27:E5:71:1A:18:DD:EA
X509v3 Authority Key Identifier:
keyid:36:6D:E2:2F:15:2D:2F:13:33:A9:40:E1:E0:BB:D6:B4:D8:BE:AC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nm3iLxUtLxMzqUDh4LvWtNi-rEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/XKJepUB0dvCwdXtsyyflcRoY3eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/Nm3iLxUtLxMzqUDh4LvWtNi-rEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.91.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:58:df:f6:df:22:5b:60:62:20:90:7b:7a:f6:1e:4a:62:79:
fa:66:51:0c:72:ef:3b:49:88:a5:b3:96:28:ba:f8:43:91:1e:
c2:e3:de:d4:02:f0:25:40:f1:9c:f7:d4:77:63:b8:8d:08:0c:
2e:27:12:af:07:34:3c:b1:3f:84:a5:fc:a4:04:de:7f:af:80:
0a:fb:25:be:c4:6d:2a:b0:bf:3b:a0:03:08:6c:f1:75:23:9e:
61:a6:22:26:5d:77:d6:25:c3:7f:1a:19:5e:85:1e:b6:d0:1d:
d8:36:fe:16:21:44:3a:e6:af:5c:4d:a0:07:e8:81:80:e9:aa:
e1:d3:70:65:48:9a:14:24:d5:80:d7:bb:3a:78:6d:e2:0b:fa:
97:27:d7:a0:fb:15:e1:3e:c3:c1:79:71:8c:4b:da:e2:85:0a:
6a:33:ab:38:fd:39:03:0d:50:b7:3b:1b:c3:bc:7b:dd:da:ba:
47:00:b9:27:73:31:b9:8d:71:c5:a8:e5:20:1d:df:54:b2:00:
72:26:a7:32:d3:4e:0d:34:73:a6:43:b3:04:75:93:90:45:51:
c1:27:15:bf:da:b5:b5:fe:42:af:09:36:ab:a7:7d:ec:07:f3:
89:51:c7:7f:a3:85:54:a8:34:f9:6d:5a:4e:89:0e:41:d1:d7:
4e:b2:e5:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:37 2023 by rpki-client on console-ams.rpki-client.org