Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/17a10d-c8b8-459e-b70a-7530c3af4c26/1/HNPJ-K2wY2jIf55lIZZ44HreIIQ.roa
File: HNPJ-K2wY2jIf55lIZZ44HreIIQ.roa (raw, json)
Hash identifier: QwAIKwO46y1bMtxJRDLOgPjyIulgCxDe3ZEJwUvJ+Yc=
Subject key identifier: 1C:D3:C9:F8:AD:B0:63:68:C8:7F:9E:65:21:96:78:E0:7A:DE:20:84
Certificate issuer: /CN=ac4d602e30b9806c8479c87b2f5b4cd92d4784f2
Certificate serial: 018442A218FE5A48E5DA968AB0CAD801C2DA
Authority key identifier: AC:4D:60:2E:30:B9:80:6C:84:79:C8:7B:2F:5B:4C:D9:2D:47:84:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rE1gLjC5gGyEech7L1tM2S1HhPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/17a10d-c8b8-459e-b70a-7530c3af4c26/1/HNPJ-K2wY2jIf55lIZZ44HreIIQ.roa
Signing time: Fri 04 Nov 2022 12:33:50 +0000
ROA not before: Fri 04 Nov 2022 12:33:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.149.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:42:a2:18:fe:5a:48:e5:da:96:8a:b0:ca:d8:01:c2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac4d602e30b9806c8479c87b2f5b4cd92d4784f2
Validity
Not Before: Nov 4 12:33:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cd3c9f8adb06368c87f9e65219678e07ade2084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ba:4b:ad:7a:dd:ec:91:1d:54:cc:c6:f2:e6:
a0:3b:54:ff:85:89:cc:25:9a:f1:90:f6:07:da:41:
d9:63:77:93:72:79:ba:80:d0:55:46:30:b6:0b:82:
3f:ef:ea:2c:ce:49:9e:2a:17:ba:20:d0:1c:14:fd:
65:22:c8:6b:96:08:79:47:35:fb:af:4f:fc:8c:cb:
f0:9a:33:da:d5:16:81:20:81:b9:7d:07:d7:a1:c6:
51:6c:19:2e:75:63:37:66:a2:0b:3b:b3:de:54:97:
b6:82:bf:fe:ec:b0:0a:b6:6d:42:66:86:a9:32:cd:
a8:bb:47:7f:e2:73:4e:7a:50:ab:4c:bd:1d:c7:92:
99:3f:56:6e:51:d5:ac:d6:ef:54:5c:ec:c6:16:67:
01:cd:d2:e3:67:9e:4e:d5:72:6e:70:b1:60:da:52:
45:68:8f:be:40:20:ce:3f:cc:89:6e:f2:12:98:a5:
77:99:d1:f9:a4:c2:ef:c9:c3:d7:46:ee:6b:fc:ff:
e5:12:36:04:a0:29:2e:72:38:f9:a4:97:aa:bc:3d:
cb:e3:b8:5c:ba:07:36:52:92:e9:d6:8f:34:f5:2d:
cc:81:5c:4d:89:36:b2:79:a0:3c:85:3d:58:95:5b:
31:92:80:57:bf:a0:36:27:f3:02:9f:9d:ec:0f:9d:
79:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D3:C9:F8:AD:B0:63:68:C8:7F:9E:65:21:96:78:E0:7A:DE:20:84
X509v3 Authority Key Identifier:
keyid:AC:4D:60:2E:30:B9:80:6C:84:79:C8:7B:2F:5B:4C:D9:2D:47:84:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rE1gLjC5gGyEech7L1tM2S1HhPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/17a10d-c8b8-459e-b70a-7530c3af4c26/1/HNPJ-K2wY2jIf55lIZZ44HreIIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/17a10d-c8b8-459e-b70a-7530c3af4c26/1/rE1gLjC5gGyEech7L1tM2S1HhPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.241.0/24
Signature Algorithm: sha256WithRSAEncryption
87:9c:2f:54:bc:df:b8:ff:d5:83:4d:96:d2:39:f2:f0:99:35:
34:88:d9:3c:4e:3b:2f:d0:3b:c3:d5:ea:76:a1:10:10:7b:4b:
1b:c0:88:11:a4:d5:88:63:b8:9f:37:13:5e:f2:59:01:6d:c6:
ce:00:53:1c:07:ee:59:35:6f:b5:77:61:2b:55:82:4a:94:53:
a0:b9:47:f3:13:c2:ef:3a:b7:7e:15:e5:39:4d:03:f1:91:da:
18:a6:48:df:1a:a9:21:77:6f:0d:14:37:a0:3b:61:7d:a6:53:
31:8f:fc:ee:99:87:c1:9f:ff:89:2d:90:69:99:f7:98:6e:f7:
a3:3c:eb:47:54:b6:ef:9e:9a:4f:f9:bb:ab:c0:8b:be:26:1e:
02:1f:b6:93:3e:30:72:10:0a:93:21:64:b6:d8:c0:78:92:8c:
82:67:45:18:30:80:da:60:90:cb:6c:27:38:2b:cd:5c:d6:03:
b1:1b:17:f3:ca:09:40:4c:4e:00:c2:16:23:09:20:d5:5e:66:
02:f4:4a:d5:fe:e1:34:7e:03:4d:4f:31:0f:49:f2:3d:7b:46:
63:09:32:b4:d3:5f:65:24:3c:d3:32:b1:8f:46:69:48:9b:4d:
86:93:8c:e1:87:33:1e:49:a3:50:5d:b3:76:6e:17:1d:fd:b2:
a9:c8:ed:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:41 2023 by rpki-client on console-ams.rpki-client.org