Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/ktwhIZi6CBjdnP1bi0MpDzvpUAk.roa
File: ktwhIZi6CBjdnP1bi0MpDzvpUAk.roa (raw, json)
Hash identifier: SRuZElyZ4KwbHamKkY7V+ilMiDG0RnWygJkmHjGyNys=
Subject key identifier: 92:DC:21:21:98:BA:08:18:DD:9C:FD:5B:8B:43:29:0F:3B:E9:50:09
Certificate issuer: /CN=366de22f152d2f1333a940e1e0bbd6b4d8beac48
Certificate serial: 056706C6
Authority key identifier: 36:6D:E2:2F:15:2D:2F:13:33:A9:40:E1:E0:BB:D6:B4:D8:BE:AC:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nm3iLxUtLxMzqUDh4LvWtNi-rEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/ktwhIZi6CBjdnP1bi0MpDzvpUAk.roa
Signing time: Tue 31 May 2022 06:15:15 +0000
ROA not before: Tue 31 May 2022 06:15:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20454
IP address blocks: 45.151.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90638022 (0x56706c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=366de22f152d2f1333a940e1e0bbd6b4d8beac48
Validity
Not Before: May 31 06:15:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92dc212198ba0818dd9cfd5b8b43290f3be95009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4a:47:fd:3d:e7:4e:4f:91:dd:41:75:a7:f9:
2a:ef:61:fd:dc:a7:ff:a5:a2:4c:87:8c:da:60:6a:
d7:d2:55:4f:29:b9:92:0f:e1:7d:a7:c2:b8:36:85:
42:e2:fa:6d:09:e6:7b:8b:d6:c6:3a:ff:7b:29:ba:
e7:72:ec:0e:36:0b:84:e7:da:87:97:72:dd:b4:b3:
66:d6:93:e1:39:0c:59:51:10:59:68:2b:54:c5:22:
ad:a5:83:30:ae:51:67:61:4c:c0:43:95:65:54:40:
55:4d:53:c6:c2:30:21:fe:4e:86:f5:02:44:02:1b:
31:d0:12:c0:28:6a:80:ea:77:ce:20:2f:da:02:f2:
d7:09:13:14:03:92:92:2f:f6:f6:23:d5:25:6c:ff:
58:21:0a:97:35:ac:83:da:df:4f:ab:fc:a6:3e:4c:
81:05:b2:6e:32:a0:86:7e:66:34:d9:30:33:b8:91:
3a:a3:2d:01:ef:1d:62:b4:5c:17:27:2a:aa:50:4b:
a3:ae:68:f1:3b:1c:fa:bc:38:2f:7d:34:45:f4:4b:
0b:a6:de:d5:2f:f7:a3:3d:29:e5:55:39:1a:79:56:
62:f9:fb:f2:09:49:2a:96:49:7f:89:4a:72:25:82:
01:ac:88:be:c2:91:2a:2a:f5:6f:f3:ad:a3:55:e3:
65:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DC:21:21:98:BA:08:18:DD:9C:FD:5B:8B:43:29:0F:3B:E9:50:09
X509v3 Authority Key Identifier:
keyid:36:6D:E2:2F:15:2D:2F:13:33:A9:40:E1:E0:BB:D6:B4:D8:BE:AC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nm3iLxUtLxMzqUDh4LvWtNi-rEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/ktwhIZi6CBjdnP1bi0MpDzvpUAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/Nm3iLxUtLxMzqUDh4LvWtNi-rEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.90.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:fb:e8:fa:0e:7c:ea:d5:39:e4:72:79:d9:b9:ef:0c:a8:c3:
d2:ad:02:eb:9f:7f:11:8e:f4:4c:db:db:5d:fb:34:9c:22:c9:
f6:72:8a:b0:af:91:b2:fd:1c:bb:51:55:24:69:58:a6:b4:5b:
50:47:a7:2f:e3:d6:e8:e5:63:b0:ad:f8:52:53:e2:4c:a6:88:
ac:4b:1d:99:4a:04:33:c9:bd:68:a8:55:7f:55:c3:e8:9d:db:
43:7c:67:46:b0:38:ab:d7:f8:fd:c4:50:e6:82:20:97:c7:d9:
e0:ee:5a:ab:86:37:21:1f:e5:90:bd:97:65:7e:5e:b9:4d:4f:
90:e6:73:88:15:bf:67:aa:8e:81:f9:70:f9:90:a8:11:02:b1:
4a:98:97:04:56:1f:e0:f5:a6:66:12:df:3b:40:05:87:92:57:
f2:9a:3c:23:3c:fa:25:c5:23:fd:ed:67:38:45:da:7c:62:2d:
9a:8c:ce:bf:cd:cb:a4:83:6e:13:ab:7f:5d:1d:f7:e5:bf:1c:
f4:fa:24:1a:6e:db:88:13:75:35:38:01:70:36:f9:7d:ae:91:
81:db:e7:ef:48:19:58:94:c7:b6:05:dc:7c:ec:72:bb:05:5e:
03:77:c0:0e:ac:cd:fa:e9:42:cf:87:ce:17:e4:85:0a:b3:60:
d8:cd:40:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:37 2023 by rpki-client on console-ams.rpki-client.org