Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/7a5965-3e3b-4588-a67b-eda23f8932fe/1/Y8CgS-UEjI_Q979Kejt4fmioW5g.roa
File: Y8CgS-UEjI_Q979Kejt4fmioW5g.roa (raw, json)
Hash identifier: 1BMUl6eS0BlgxOshKlSDfMvvwW5tnyKZWZh8pNjWcIo=
Subject key identifier: 63:C0:A0:4B:E5:04:8C:8F:D0:F7:BF:4A:7A:3B:78:7E:68:A8:5B:98
Certificate issuer: /CN=c39545eb883a25145c872d7572c4c5107704dfdc
Certificate serial: 042BED2D
Authority key identifier: C3:95:45:EB:88:3A:25:14:5C:87:2D:75:72:C4:C5:10:77:04:DF:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w5VF64g6JRRchy11csTFEHcE39w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/7a5965-3e3b-4588-a67b-eda23f8932fe/1/Y8CgS-UEjI_Q979Kejt4fmioW5g.roa
Signing time: Sat 01 Jan 2022 03:51:09 +0000
ROA not before: Sat 01 Jan 2022 03:51:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205584
IP address blocks: 2.57.156.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69987629 (0x42bed2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c39545eb883a25145c872d7572c4c5107704dfdc
Validity
Not Before: Jan 1 03:51:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63c0a04be5048c8fd0f7bf4a7a3b787e68a85b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:99:03:61:bf:42:df:be:36:ff:ac:24:19:93:
81:aa:bd:6a:3b:77:5e:ce:36:52:8e:dd:24:ed:dd:
f4:44:60:62:fd:74:aa:94:ff:11:f6:7d:b5:1d:ac:
3f:e2:10:a8:0e:33:be:62:9c:10:30:6f:cb:ac:05:
8e:83:e1:85:32:f8:f0:b6:89:32:61:1c:c9:6a:f3:
5b:04:e2:3d:53:f2:66:0e:e9:e9:cf:53:40:e4:32:
13:27:60:c9:40:1b:1b:7a:3d:5f:d9:f2:75:e4:2d:
0c:e2:b2:82:c3:2f:4c:e7:e8:c1:42:38:12:08:c3:
e4:49:ac:4b:42:82:96:e0:7c:57:fb:2c:ff:5c:96:
10:4f:2b:dc:e2:07:11:ac:59:f0:38:cb:85:14:aa:
d6:3f:8f:e8:eb:a4:d7:9d:47:13:cf:d4:11:24:c6:
11:82:05:14:30:72:44:7c:32:d1:a7:df:8e:60:1e:
fe:3b:e4:76:fe:ba:b6:a0:c1:07:e6:b9:a6:12:19:
60:7d:f8:9e:d9:91:21:b2:98:8f:be:aa:55:46:59:
e4:58:02:53:98:b3:87:fe:d7:39:07:09:5f:d4:f7:
f3:ff:f3:41:02:1a:5e:b5:25:27:fb:8b:b5:77:ff:
12:79:61:74:de:53:87:ed:98:1f:07:d8:33:9c:56:
42:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:C0:A0:4B:E5:04:8C:8F:D0:F7:BF:4A:7A:3B:78:7E:68:A8:5B:98
X509v3 Authority Key Identifier:
keyid:C3:95:45:EB:88:3A:25:14:5C:87:2D:75:72:C4:C5:10:77:04:DF:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w5VF64g6JRRchy11csTFEHcE39w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7a5965-3e3b-4588-a67b-eda23f8932fe/1/Y8CgS-UEjI_Q979Kejt4fmioW5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/7a5965-3e3b-4588-a67b-eda23f8932fe/1/w5VF64g6JRRchy11csTFEHcE39w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.156.0/22
Signature Algorithm: sha256WithRSAEncryption
64:50:50:f5:5b:72:b8:a5:48:39:b0:6a:9b:bd:90:e3:a7:5d:
a1:fa:a9:7e:5b:97:c1:12:68:73:9b:c0:75:96:09:03:e5:8d:
5a:6b:79:a8:5b:66:a6:30:91:25:e0:b0:b1:59:a8:64:36:01:
43:5b:d7:05:7e:f9:2a:b0:f5:8a:a0:f5:1a:e2:08:e1:3f:ba:
15:77:5e:91:a1:14:72:ba:08:29:0b:59:9d:d9:bc:5d:8b:bc:
c0:b5:39:55:2e:68:15:cf:89:a6:f6:a8:35:1f:16:81:35:55:
94:7c:e2:26:36:9f:aa:51:e4:c2:9a:7c:3c:f9:d7:10:cb:a7:
85:76:ea:63:bd:2f:58:8d:07:78:6f:ef:9c:f6:55:71:30:8a:
57:83:de:9c:dc:fa:a7:b6:b0:d7:61:27:04:f6:8a:fe:65:6b:
96:db:8b:fc:ec:ec:b4:b4:73:8c:d8:fc:55:e7:d6:22:f7:0d:
3e:3a:6b:c3:c7:34:66:67:49:84:2f:43:3f:72:3d:14:d5:3b:
04:bd:56:48:c4:10:64:bf:83:96:51:5d:32:56:66:6a:f9:bb:
3c:5b:82:5b:00:89:9b:5e:e9:78:ab:32:28:b0:e0:96:cf:6c:
e7:75:ef:2b:0a:15:63:77:9f:6f:32:8e:8f:6f:2a:a6:11:77:
db:cf:2e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:27 2024 by rpki-client on console-ams.rpki-client.org