Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/8uko3vJnewUkIfdUtK-hRFThXZY.roa
File: 8uko3vJnewUkIfdUtK-hRFThXZY.roa (raw, json)
Hash identifier: YurJOzajC7h7AEtGF7SPHABR4pbTWcXvbfcUnu+KkIE=
Subject key identifier: F2:E9:28:DE:F2:67:7B:05:24:21:F7:54:B4:AF:A1:44:54:E1:5D:96
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 01856D7869879D776279F5CBB7A7F6A60855
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/8uko3vJnewUkIfdUtK-hRFThXZY.roa
Signing time: Sun 01 Jan 2023 13:14:45 +0000
ROA not before: Sun 01 Jan 2023 13:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212384
IP address blocks: 45.8.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:69:87:9d:77:62:79:f5:cb:b7:a7:f6:a6:08:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jan 1 13:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2e928def2677b052421f754b4afa14454e15d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:64:33:29:03:ac:84:d2:90:34:4e:9f:da:4b:
bf:9c:32:01:0b:64:c2:dd:5c:a5:55:f4:58:2e:5b:
c9:20:2d:c6:68:3b:55:84:b9:80:2a:8c:34:f1:28:
7e:7f:86:88:b4:8f:18:56:d7:6b:87:43:47:f7:b0:
d3:00:75:78:1b:38:c0:bf:a9:ad:a6:a5:78:7e:06:
3d:dc:cc:11:7b:35:1e:6a:03:d7:f0:04:66:3e:f6:
0e:33:7f:f3:ed:4e:0f:74:ad:5f:81:b2:f2:bd:83:
eb:f1:75:0f:c0:93:f1:96:4d:52:e0:8d:dd:43:16:
dc:34:43:a7:d0:dd:9f:df:83:22:01:22:82:19:69:
91:c1:f4:12:2c:29:4f:29:03:9b:a1:e4:27:45:dc:
fa:19:5a:7e:ac:97:ad:fc:26:3b:ea:1e:a5:2c:78:
cc:23:fd:50:2b:87:77:7f:8a:5a:ad:64:1d:2f:5b:
ed:0a:c5:b0:c2:f0:dc:5e:fc:7b:b8:8b:b1:a9:11:
dc:0e:de:ff:5f:06:05:86:b9:bd:4b:f2:fe:3e:19:
f6:3e:7d:5f:30:60:e4:d2:ca:20:bb:0a:ef:b9:05:
51:2c:32:60:cc:00:3a:37:30:b5:82:42:67:35:09:
93:4f:18:b8:0c:58:ab:5b:39:a9:1f:55:49:54:5b:
17:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E9:28:DE:F2:67:7B:05:24:21:F7:54:B4:AF:A1:44:54:E1:5D:96
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/8uko3vJnewUkIfdUtK-hRFThXZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.218.0/24
Signature Algorithm: sha256WithRSAEncryption
88:9f:de:40:23:56:73:50:cb:ea:e6:2d:f1:e0:4f:e6:1e:8c:
73:d4:9d:1c:e0:42:ba:de:dd:3c:df:0f:72:04:0b:ac:c1:86:
c3:37:6d:f9:a2:c3:c2:e4:46:7c:32:ab:a0:d9:3b:da:8d:ae:
76:d8:d0:16:49:47:14:28:23:b4:5d:f0:3b:a5:ba:bf:13:c8:
9e:74:64:a3:52:ae:a5:6e:d8:99:76:7b:36:9e:73:1f:87:14:
cf:aa:c7:6e:88:db:5a:7b:b4:fc:de:97:63:a7:f7:ef:e0:c5:
65:8f:97:72:51:ad:45:89:f6:85:df:33:b5:d3:67:a8:17:ec:
93:10:ab:a5:a2:d1:cd:67:b4:70:f1:b0:66:ce:6a:1b:7b:5c:
a0:d3:69:14:90:81:a2:9e:69:1c:0b:c1:37:46:51:27:bc:e9:
1d:c4:32:f8:f3:60:73:cc:b7:b0:ba:e8:a7:91:ea:06:9f:6d:
3a:69:ea:5d:63:4b:db:07:ba:67:aa:57:bd:e9:ef:b6:d0:7d:
55:13:59:ac:b4:ff:63:f8:89:53:e2:1d:bf:6c:ba:07:c1:e0:
fa:e0:08:da:a7:f2:e1:96:f7:c6:96:d0:fd:76:25:3d:42:d9:
9d:f3:47:ac:2d:3c:f0:ad:bd:a9:f3:09:f5:d1:93:c6:e3:e7:
7e:64:6b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:42 2024 by rpki-client on console-fra.rpki-client.org