Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/729034-0cea-44f8-9f30-0d5eb3d609ea/1/FTNlQ30p3L3LwunoJr-PWy3lmqs.roa
File: FTNlQ30p3L3LwunoJr-PWy3lmqs.roa (raw, json)
Hash identifier: HjqXeuJpUaJ3JUMmgnIaqVLgBCW3PFODwVRYJcYqxbo=
Subject key identifier: 15:33:65:43:7D:29:DC:BD:CB:C2:E9:E8:26:BF:8F:5B:2D:E5:9A:AB
Certificate issuer: /CN=85972a0487d95cc1bfe1da6d1a27b89d1d3576d6
Certificate serial: 048BD24D
Authority key identifier: 85:97:2A:04:87:D9:5C:C1:BF:E1:DA:6D:1A:27:B8:9D:1D:35:76:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZcqBIfZXMG_4dptGie4nR01dtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/729034-0cea-44f8-9f30-0d5eb3d609ea/1/FTNlQ30p3L3LwunoJr-PWy3lmqs.roa
Signing time: Mon 20 Jun 2022 10:20:45 +0000
ROA not before: Mon 20 Jun 2022 10:20:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 45.95.234.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76272205 (0x48bd24d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85972a0487d95cc1bfe1da6d1a27b89d1d3576d6
Validity
Not Before: Jun 20 10:20:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=153365437d29dcbdcbc2e9e826bf8f5b2de59aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e7:46:ef:f9:72:de:e9:4e:4f:b6:e4:9b:c1:
8e:2c:79:e4:79:e3:28:a5:73:88:df:4a:48:dd:b0:
c0:24:3a:97:a4:17:67:d4:73:73:6e:66:f8:7e:75:
f7:29:0d:02:9a:65:ac:57:ee:a4:3d:8a:6d:69:83:
d0:2c:f1:0a:92:db:cf:fe:99:16:69:81:42:ea:40:
ff:ec:0e:38:ca:ba:6a:5e:bd:c1:42:74:f1:13:33:
42:da:0e:c0:ce:df:68:df:2f:b7:7c:a1:8a:bd:e9:
9f:14:84:71:94:9f:b4:b0:a7:cd:41:07:5b:a6:24:
4b:fa:f4:a7:4f:2d:31:b0:37:e8:53:33:41:73:36:
14:41:c2:f5:4e:7e:a1:8e:0a:c1:d8:7f:3b:70:b8:
03:98:25:27:a5:fa:6e:01:68:ab:f3:d3:62:6d:bb:
4d:37:83:94:03:99:61:d8:51:2c:76:20:1b:ea:38:
8f:09:d4:ed:90:29:4f:7f:20:2f:ba:be:2e:35:20:
91:69:fa:c5:f7:4b:8d:4d:2f:b9:1f:c0:e9:da:f8:
f5:d0:60:9e:f1:cc:09:70:50:ba:03:fd:f2:7f:32:
ff:84:7d:9a:a2:46:6f:89:1d:c6:a4:f6:b1:7a:8c:
b2:d5:50:8a:af:8c:5c:b2:e5:14:2f:16:38:a0:5c:
94:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:33:65:43:7D:29:DC:BD:CB:C2:E9:E8:26:BF:8F:5B:2D:E5:9A:AB
X509v3 Authority Key Identifier:
keyid:85:97:2A:04:87:D9:5C:C1:BF:E1:DA:6D:1A:27:B8:9D:1D:35:76:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZcqBIfZXMG_4dptGie4nR01dtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/729034-0cea-44f8-9f30-0d5eb3d609ea/1/FTNlQ30p3L3LwunoJr-PWy3lmqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/729034-0cea-44f8-9f30-0d5eb3d609ea/1/hZcqBIfZXMG_4dptGie4nR01dtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.234.0/24
Signature Algorithm: sha256WithRSAEncryption
78:5d:60:cf:42:36:de:3a:6e:0b:fb:07:8c:34:73:2e:7e:8f:
ab:71:21:f5:f7:1f:21:14:24:54:06:dd:01:79:d4:ab:66:63:
4b:0a:d4:b6:c7:0c:c8:55:0d:3c:05:3f:28:d5:16:80:1c:bd:
ba:8f:59:cb:3f:5b:cf:f5:7c:7e:77:bd:ce:b6:ca:ac:ad:f6:
18:3f:52:1c:b8:dc:37:fa:10:61:b9:7e:2d:05:cb:2b:98:cd:
54:d4:af:00:8b:05:be:0d:a2:df:a4:c1:55:f9:f1:13:79:27:
d4:6d:10:5c:05:b4:76:5f:74:60:ca:05:9a:48:55:ae:dc:9c:
92:27:e6:24:7b:88:86:b1:33:57:51:ec:69:63:ad:c0:89:61:
70:68:b0:53:50:af:2b:c2:eb:80:d2:50:11:27:04:d6:9c:dd:
78:72:85:2a:1f:24:33:c1:4d:b2:ec:94:b3:b9:f4:82:5c:ce:
bc:be:e7:26:90:a4:00:3d:05:4a:c5:35:2f:ab:31:48:b2:db:
79:11:0d:5f:aa:f1:32:01:8f:76:08:1c:4f:b5:d2:7b:86:19:
7c:01:82:de:39:2c:49:da:10:80:a6:27:b9:69:9e:21:c9:8b:
99:88:54:cb:55:30:fa:14:d3:a5:c5:60:4a:b1:22:37:21:20:
7d:c0:12:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:55 2024 by rpki-client on console-fra.rpki-client.org