Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/f44aab-957a-4a8f-8def-e0c9e720dcee/1/pbTJPobKtsXOLu9IdjXahBHt8HM.roa
File: pbTJPobKtsXOLu9IdjXahBHt8HM.roa (raw, json)
Hash identifier: xQZt0fshlVKOMYZa5kD08sQl91aq0v3Iq2iVlSRlyAI=
Subject key identifier: A5:B4:C9:3E:86:CA:B6:C5:CE:2E:EF:48:76:35:DA:84:11:ED:F0:73
Certificate issuer: /CN=2cadc4772d1bb4e95d998232abd73b63c57c2318
Certificate serial: 01856D13D4A9FF08F9E82B6EBD7F0936B809
Authority key identifier: 2C:AD:C4:77:2D:1B:B4:E9:5D:99:82:32:AB:D7:3B:63:C5:7C:23:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LK3Edy0btOldmYIyq9c7Y8V8Ixg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/f44aab-957a-4a8f-8def-e0c9e720dcee/1/pbTJPobKtsXOLu9IdjXahBHt8HM.roa
Signing time: Sun 01 Jan 2023 11:24:54 +0000
ROA not before: Sun 01 Jan 2023 11:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200370
IP address blocks: 45.8.163.0/24 maxlen: 24
45.8.160.0/24 maxlen: 24
45.8.160.0/23 maxlen: 23
45.8.160.0/22 maxlen: 22
45.8.161.0/24 maxlen: 24
45.8.162.0/24 maxlen: 24
45.8.162.0/23 maxlen: 23
2a12:93c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:d4:a9:ff:08:f9:e8:2b:6e:bd:7f:09:36:b8:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cadc4772d1bb4e95d998232abd73b63c57c2318
Validity
Not Before: Jan 1 11:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5b4c93e86cab6c5ce2eef487635da8411edf073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:be:c0:ce:25:37:ec:38:5c:c5:f7:5a:32:b7:
b2:bf:2b:28:9c:f6:cd:3b:29:fb:32:65:2b:3d:48:
98:df:ef:e8:72:e1:00:10:b8:67:dc:8b:7d:50:7c:
13:6b:73:61:bd:88:93:e7:2f:de:96:c8:4d:cb:19:
b0:97:cf:7a:4c:8a:4d:72:e3:ac:5c:09:88:af:43:
cb:12:00:62:f2:99:3b:e4:90:fc:e8:c8:f7:c9:16:
e9:e6:dc:d9:3a:4c:d5:28:f7:b5:04:a8:5e:bc:c2:
63:e1:10:39:47:6b:e5:1c:10:64:25:cb:cd:82:62:
aa:15:12:e6:d7:f0:ce:4f:09:7b:3a:b1:78:3b:39:
08:9e:60:7f:a6:af:b1:b2:bb:fc:bd:b7:7e:3c:0e:
a5:ca:e6:24:d0:f3:f0:5a:61:af:d8:a2:71:d9:c6:
e4:50:1c:09:98:ee:3b:e4:64:81:a5:22:56:3c:ab:
7f:4e:a9:f8:48:e7:4b:52:e9:15:2f:02:09:eb:a6:
1d:16:3d:88:dc:2e:db:de:ee:44:c4:5c:15:50:81:
59:c0:45:af:16:c8:e1:00:fb:24:d0:2f:af:e3:9f:
91:da:5a:e4:5e:65:95:d6:f9:1b:9b:dc:c6:92:3e:
ad:e8:ce:ba:6d:de:b5:8d:71:5b:96:84:49:30:9e:
80:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B4:C9:3E:86:CA:B6:C5:CE:2E:EF:48:76:35:DA:84:11:ED:F0:73
X509v3 Authority Key Identifier:
keyid:2C:AD:C4:77:2D:1B:B4:E9:5D:99:82:32:AB:D7:3B:63:C5:7C:23:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LK3Edy0btOldmYIyq9c7Y8V8Ixg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/f44aab-957a-4a8f-8def-e0c9e720dcee/1/pbTJPobKtsXOLu9IdjXahBHt8HM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/f44aab-957a-4a8f-8def-e0c9e720dcee/1/LK3Edy0btOldmYIyq9c7Y8V8Ixg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.160.0/22
IPv6:
2a12:93c0::/29
Signature Algorithm: sha256WithRSAEncryption
6f:fb:ac:ce:d5:21:61:b1:a5:16:a0:4b:20:eb:0e:b1:08:72:
71:87:0c:22:39:72:ce:92:fc:bf:5c:9b:13:b7:da:44:4d:aa:
48:8b:32:9e:2e:90:44:2f:79:3e:65:22:5a:fc:62:33:6c:3b:
6d:48:2c:6a:02:4d:d4:d1:34:4f:c9:20:40:73:98:dd:d8:08:
eb:ca:75:54:e8:2b:3f:9c:ae:3b:4b:80:57:0d:53:3a:77:97:
0b:ab:05:6f:c2:02:da:1b:2f:a5:2f:3a:85:d5:b7:be:bc:4c:
64:47:9c:7d:f4:e4:55:e5:b5:df:17:6a:b8:a0:41:b0:e9:8d:
4e:a9:db:54:18:ef:7c:12:8c:95:45:a9:75:9d:0d:62:a2:ac:
1a:20:33:0d:f1:fc:be:e3:e7:d1:45:77:44:d9:b2:2f:ed:3f:
5a:50:14:0f:ac:7d:74:47:10:5c:f6:a9:3e:ba:51:02:65:1a:
f2:00:d8:07:3b:e8:f6:15:32:19:fa:03:45:9e:e2:91:4b:64:
96:44:41:20:20:ae:cf:6e:0d:f3:f1:a3:93:db:d5:42:35:17:
e7:f7:e3:c4:8d:e7:e3:c3:03:4b:5d:78:55:26:70:45:d4:36:
c7:e0:4d:c2:1b:0c:f8:a1:b8:56:a3:84:3e:30:3b:ac:ba:02:
c0:cb:a4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:57 2024 by rpki-client on console-fra.rpki-client.org