Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1f09af-fb77-4638-9fee-c2fe7ef1cba3/1/KxuUkoxfxaj8go7CR23gkcMS5rc.roa
File: KxuUkoxfxaj8go7CR23gkcMS5rc.roa (raw, json)
Hash identifier: drCwNc5cLgw+AtAP6+Wap3LohCRXJzsExxV69JOyjyE=
Subject key identifier: 2B:1B:94:92:8C:5F:C5:A8:FC:82:8E:C2:47:6D:E0:91:C3:12:E6:B7
Certificate issuer: /CN=1572e24e6b20970823f60e56eeb547b6e08806c4
Certificate serial: 04020947
Authority key identifier: 15:72:E2:4E:6B:20:97:08:23:F6:0E:56:EE:B5:47:B6:E0:88:06:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FXLiTmsglwgj9g5W7rVHtuCIBsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1f09af-fb77-4638-9fee-c2fe7ef1cba3/1/KxuUkoxfxaj8go7CR23gkcMS5rc.roa
Signing time: Thu 20 Jan 2022 08:14:31 +0000
ROA not before: Thu 20 Jan 2022 08:14:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.139.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67242311 (0x4020947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1572e24e6b20970823f60e56eeb547b6e08806c4
Validity
Not Before: Jan 20 08:14:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b1b94928c5fc5a8fc828ec2476de091c312e6b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7a:32:40:b2:dd:be:e9:37:f5:c8:93:04:4a:
82:a3:61:16:c8:7a:ca:35:ac:3c:bc:33:1d:1a:a6:
2d:cd:78:2e:8f:06:0c:a7:5f:11:b5:2b:06:6b:1c:
c1:1a:10:a6:89:48:76:06:9d:22:c9:e4:6f:ce:1c:
49:6e:d7:b1:ca:61:c5:87:0b:fb:3d:63:18:9a:53:
f2:0b:6e:49:3b:fb:02:3b:ec:e9:a8:c8:67:0c:0d:
10:92:e3:25:6c:c5:a3:81:27:fc:d6:5f:71:da:7e:
d5:ab:1c:dc:12:a4:51:01:6b:3a:f0:af:bf:f9:8a:
a9:bd:00:8f:c1:df:3e:d4:f4:41:44:8a:be:2f:0d:
e9:19:a3:0f:af:a8:95:ec:7e:7b:b2:4a:6c:96:6a:
22:94:63:c4:09:91:3a:13:2f:3d:a9:74:6b:67:d9:
b8:04:86:52:7c:1b:a7:05:20:27:23:64:da:e5:e5:
dd:ac:d7:3d:57:45:dd:b5:fa:3c:1f:80:e3:e3:33:
14:a8:c1:c0:96:3e:77:8e:3e:f6:32:aa:00:41:65:
fa:ba:1c:56:e6:af:8f:4d:1d:24:d1:d1:ad:4a:62:
db:27:a6:dd:5d:79:62:6c:80:c7:13:ad:4d:ff:e3:
a2:75:5a:4c:4a:75:d3:47:6c:0c:5a:c6:0e:99:f8:
59:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1B:94:92:8C:5F:C5:A8:FC:82:8E:C2:47:6D:E0:91:C3:12:E6:B7
X509v3 Authority Key Identifier:
keyid:15:72:E2:4E:6B:20:97:08:23:F6:0E:56:EE:B5:47:B6:E0:88:06:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FXLiTmsglwgj9g5W7rVHtuCIBsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1f09af-fb77-4638-9fee-c2fe7ef1cba3/1/KxuUkoxfxaj8go7CR23gkcMS5rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1f09af-fb77-4638-9fee-c2fe7ef1cba3/1/FXLiTmsglwgj9g5W7rVHtuCIBsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.104.0/24
Signature Algorithm: sha256WithRSAEncryption
65:e2:d9:65:ad:80:a2:5e:7f:63:c9:6d:ad:04:bf:82:77:7a:
ae:9c:0c:d5:65:e5:f2:c9:6a:ce:fe:46:b2:49:19:6c:36:08:
da:04:f9:45:c6:6c:7b:c6:87:c4:dc:6e:4d:1f:5a:23:c4:55:
29:b0:59:19:d1:59:35:be:1c:05:e7:cb:e8:63:be:1e:e9:72:
0d:2f:1a:4d:1a:14:11:b9:7b:0d:37:95:28:dd:2d:06:5d:55:
e2:10:0e:56:26:43:7b:57:aa:9b:d8:f0:0f:03:00:f4:57:cf:
ce:cd:8f:d9:12:e0:6b:e2:b1:10:41:6b:85:5e:42:15:09:e7:
66:73:3e:82:f8:05:b3:f5:a1:6d:6b:4c:67:3d:58:b6:20:2d:
c7:8b:99:08:ca:f2:6b:9a:95:09:02:d5:7d:8f:ea:0b:bb:be:
04:91:7f:60:b4:44:a5:11:92:00:36:d5:4e:0e:3d:44:1c:d3:
66:f3:fd:ff:0e:26:34:81:c0:f0:0f:bb:25:8a:d7:81:b9:fc:
c8:69:b4:8e:3f:4d:c7:29:12:b6:87:de:23:5f:a3:6a:62:e2:
0e:0e:21:4d:22:59:27:91:9d:e3:50:3e:21:ab:00:e9:11:ce:
c4:7e:cb:10:bf:60:af:69:6a:75:d9:22:f0:76:7b:23:e6:62:
e5:1a:a3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:53 2024 by rpki-client on console-fra.rpki-client.org