Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/861f56-9602-4103-ad9d-42083e0c04f8/1/5VrmzSC4TI8eOc-Yss9NX4fuAcM.roa
File: 5VrmzSC4TI8eOc-Yss9NX4fuAcM.roa (raw, json)
Hash identifier: aBUJ+mwQnrWH8ZuYDpPA9A2mSbmmIhFBWUNi2zLzLAg=
Subject key identifier: E5:5A:E6:CD:20:B8:4C:8F:1E:39:CF:98:B2:CF:4D:5F:87:EE:01:C3
Certificate issuer: /CN=bf076a873d848b8da36db3fc55520b400c58bb45
Certificate serial: 018CC3489C99003B9CEFBC425F4C4A4B7B50
Authority key identifier: BF:07:6A:87:3D:84:8B:8D:A3:6D:B3:FC:55:52:0B:40:0C:58:BB:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vwdqhz2Ei42jbbP8VVILQAxYu0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/861f56-9602-4103-ad9d-42083e0c04f8/1/5VrmzSC4TI8eOc-Yss9NX4fuAcM.roa
Signing time: Mon 01 Jan 2024 04:29:24 +0000
ROA not before: Mon 01 Jan 2024 04:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 45.157.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:9c:99:00:3b:9c:ef:bc:42:5f:4c:4a:4b:7b:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf076a873d848b8da36db3fc55520b400c58bb45
Validity
Not Before: Jan 1 04:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e55ae6cd20b84c8f1e39cf98b2cf4d5f87ee01c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:34:1a:8d:ca:f3:4d:c6:55:71:f1:3c:c4:55:
25:67:ed:e6:bb:29:d0:59:26:48:ed:62:23:1d:1f:
2d:25:d4:a9:99:77:03:7a:77:a3:5e:b7:68:fb:69:
45:d8:c6:4e:cc:a0:f0:b8:aa:80:7d:56:9a:69:79:
27:c5:2d:05:5e:80:c2:98:71:4e:cd:15:28:70:9d:
ec:fb:15:f7:61:2b:e4:89:07:a9:ae:63:49:58:0f:
ab:1e:5f:e6:fd:25:9e:66:b9:b4:80:68:16:18:83:
d6:84:e9:6b:7f:fb:30:38:fc:64:a4:bc:18:5a:7d:
6d:cf:65:e3:38:9a:5c:ff:84:97:94:c9:75:16:65:
a2:50:30:ca:53:63:65:c6:87:8f:7e:59:d8:25:90:
3f:9e:6e:3e:f5:77:32:69:78:70:c2:66:9e:a3:8d:
ee:01:19:ca:17:36:74:ab:4b:b3:4f:a1:6c:bb:12:
be:c4:1c:85:96:52:cf:90:9c:bd:0f:51:54:b4:18:
a0:0b:b5:03:6c:1d:ee:3b:ef:1b:7c:4d:2e:2b:96:
da:6f:ef:ae:23:e3:17:51:89:2e:7a:a9:71:40:b1:
45:50:1a:13:2c:ff:93:a7:53:f2:51:f7:5a:9c:b8:
05:65:e4:4d:b5:e1:ce:73:6f:89:cc:3c:03:c5:02:
5e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5A:E6:CD:20:B8:4C:8F:1E:39:CF:98:B2:CF:4D:5F:87:EE:01:C3
X509v3 Authority Key Identifier:
keyid:BF:07:6A:87:3D:84:8B:8D:A3:6D:B3:FC:55:52:0B:40:0C:58:BB:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vwdqhz2Ei42jbbP8VVILQAxYu0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/861f56-9602-4103-ad9d-42083e0c04f8/1/5VrmzSC4TI8eOc-Yss9NX4fuAcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/861f56-9602-4103-ad9d-42083e0c04f8/1/vwdqhz2Ei42jbbP8VVILQAxYu0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.139.0/24
Signature Algorithm: sha256WithRSAEncryption
25:e7:fa:df:ea:07:3f:f5:4a:5f:5f:85:71:6c:24:46:ab:3e:
72:4a:2b:5d:14:1a:4e:52:51:15:d6:64:ab:48:72:05:fd:db:
58:2b:a9:b8:38:26:ab:e4:39:f7:ee:de:d0:c6:7d:f6:8a:3d:
d5:c2:f5:73:9f:95:6c:fe:b0:55:2d:0b:56:8a:1e:b4:47:c5:
1e:d0:c8:bc:4b:09:db:d2:0f:58:48:3c:ff:22:4d:ce:29:1b:
1d:bc:e6:0e:bb:50:e0:b6:02:b2:fd:6c:66:1c:7a:c4:1f:6d:
ce:d8:cb:57:9f:8c:48:49:32:32:65:2f:fb:bd:ac:73:ef:ff:
12:80:ca:5d:6a:b2:f3:32:45:73:4a:5b:03:81:42:82:f4:19:
6a:c1:91:5b:dc:50:68:c6:93:32:a1:8c:5d:f5:b0:ed:d6:ae:
17:f3:fa:4e:76:21:03:36:d1:69:50:86:75:46:10:d1:b1:04:
80:40:1e:b8:23:51:bf:6a:df:52:b4:5f:87:19:a4:a0:e2:06:
26:0f:5a:c8:ab:9f:b8:19:54:74:43:a2:ba:0f:eb:b9:9a:7d:
07:f0:91:9a:e8:69:d8:01:a3:2f:11:9b:cf:ef:fe:ec:f7:41:
6f:6e:b0:ac:a8:ee:43:b4:81:97:ba:29:da:c6:c4:d3:5d:7f:
bd:d0:7c:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:04 2024 by rpki-client on console-fra.rpki-client.org