Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/61a86a-3d9e-4d6d-a722-cd438fc18d05/1/tsL1ijIdMnI1JV0Nma1iIh1hmXE.roa
File: tsL1ijIdMnI1JV0Nma1iIh1hmXE.roa (raw, json)
Hash identifier: fdkQlk/GP+tn+9pH5KbH57G5ZXUYLBk4Fa4O711MlCU=
Subject key identifier: B6:C2:F5:8A:32:1D:32:72:35:25:5D:0D:99:AD:62:22:1D:61:99:71
Certificate issuer: /CN=948d4652abb103aa81f587fd2d130149265edbb7
Certificate serial: 025948DC
Authority key identifier: 94:8D:46:52:AB:B1:03:AA:81:F5:87:FD:2D:13:01:49:26:5E:DB:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lI1GUquxA6qB9Yf9LRMBSSZe27c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/61a86a-3d9e-4d6d-a722-cd438fc18d05/1/tsL1ijIdMnI1JV0Nma1iIh1hmXE.roa
Signing time: Sat 01 Jan 2022 14:58:18 +0000
ROA not before: Sat 01 Jan 2022 14:58:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 45.136.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39405788 (0x25948dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=948d4652abb103aa81f587fd2d130149265edbb7
Validity
Not Before: Jan 1 14:58:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6c2f58a321d327235255d0d99ad62221d619971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:89:61:79:27:76:c6:53:8e:cf:06:d2:71:bd:
bd:87:8d:e7:85:dc:1e:fa:76:6f:34:07:3a:85:01:
92:fe:7f:15:7c:aa:86:e2:85:6a:4f:16:ff:63:b2:
ed:34:2f:b2:f2:61:09:7c:7f:35:dc:f0:46:43:98:
b8:79:87:32:b3:1c:9c:b9:6c:2e:7a:35:b1:00:d2:
96:24:c3:d1:02:d3:51:72:b0:1f:72:53:54:d3:30:
91:33:74:35:8b:4c:48:a9:95:1e:03:43:1f:7f:b9:
0b:77:53:97:14:65:4f:16:af:49:0e:2d:a1:8e:75:
6b:2f:77:9e:07:1d:fa:5a:5b:05:23:c5:38:17:78:
06:e0:df:c0:e2:07:15:57:b1:ab:4a:4b:59:4c:86:
35:10:d7:ba:e2:b7:b1:c9:e3:00:df:57:2e:92:59:
1c:9b:3c:70:b1:c6:7b:4c:e0:d2:6c:5e:be:fa:d9:
c6:99:b3:6f:2f:b7:a3:b0:43:0a:fd:51:4d:27:40:
bd:d0:4b:6e:04:44:8c:64:c0:d3:43:fd:92:ce:d2:
01:b6:92:9a:45:c3:23:f8:2f:d5:82:2f:06:03:48:
f6:ec:3a:e6:47:bc:41:5a:a9:99:cf:e8:c1:56:10:
f4:e2:c8:ce:5d:50:5b:52:3f:a5:bb:69:a2:42:44:
b0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:C2:F5:8A:32:1D:32:72:35:25:5D:0D:99:AD:62:22:1D:61:99:71
X509v3 Authority Key Identifier:
keyid:94:8D:46:52:AB:B1:03:AA:81:F5:87:FD:2D:13:01:49:26:5E:DB:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lI1GUquxA6qB9Yf9LRMBSSZe27c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/61a86a-3d9e-4d6d-a722-cd438fc18d05/1/tsL1ijIdMnI1JV0Nma1iIh1hmXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/61a86a-3d9e-4d6d-a722-cd438fc18d05/1/lI1GUquxA6qB9Yf9LRMBSSZe27c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.24.0/22
Signature Algorithm: sha256WithRSAEncryption
39:b5:a9:b0:22:9c:59:db:f0:4b:4d:5b:22:c0:db:27:f6:5b:
9f:3e:90:00:6d:34:60:ce:8d:5c:5f:97:f0:32:81:2d:1c:0d:
d3:12:2e:f2:8e:c8:9d:87:0d:1e:f9:9d:45:07:97:60:c6:9d:
f5:1d:05:6a:04:b9:30:72:1f:80:97:95:1d:22:94:f4:17:48:
bd:bf:1e:81:bf:b0:17:40:0b:0a:a8:0b:39:05:20:1e:2b:89:
6c:7f:41:b3:29:7c:91:fa:93:bf:f4:ac:93:3e:7c:c9:81:41:
be:97:a1:fd:42:ef:4d:f0:8a:ed:28:3a:74:0b:2f:9c:95:63:
68:ff:5b:a6:7e:50:f6:e5:aa:a3:56:e2:32:54:a5:08:8d:b6:
07:48:a6:fd:bf:55:70:5b:25:ce:07:12:27:5c:e1:1b:fe:9e:
df:b1:e8:72:63:4e:30:3e:4b:4e:5b:2e:d4:f4:81:01:31:0d:
f3:da:b7:0e:78:64:7e:69:26:26:10:ea:0f:cd:91:e0:c4:62:
46:d8:db:f6:14:40:1d:aa:e0:65:80:3c:98:5b:d0:b9:37:35:
90:85:8b:4c:04:33:43:ac:74:24:08:d7:3c:3e:10:7e:29:94:
44:be:dd:e9:3b:9b:ed:ea:38:b2:10:c4:89:1c:e8:83:e8:6f:
39:6c:1b:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:01 2024 by rpki-client on console-fra.rpki-client.org