Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c3b570-ed44-4ecb-9af7-dcce563f603f/1/xUXNzcbbojXWhgKXNPDCpXvhJUU.roa
File: xUXNzcbbojXWhgKXNPDCpXvhJUU.roa (raw, json)
Hash identifier: kRb20kxjKfZ977RkhT1bPCfYzlUagp3J1wdCuTu9p+w=
Subject key identifier: C5:45:CD:CD:C6:DB:A2:35:D6:86:02:97:34:F0:C2:A5:7B:E1:25:45
Certificate issuer: /CN=11f23f1c7f321099ac27745d8caf64bc528a3e92
Certificate serial: 018CC56E3C93DB2D941C9C2DAC72AE9DC43E
Authority key identifier: 11:F2:3F:1C:7F:32:10:99:AC:27:74:5D:8C:AF:64:BC:52:8A:3E:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EfI_HH8yEJmsJ3RdjK9kvFKKPpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c3b570-ed44-4ecb-9af7-dcce563f603f/1/xUXNzcbbojXWhgKXNPDCpXvhJUU.roa
Signing time: Mon 01 Jan 2024 14:29:45 +0000
ROA not before: Mon 01 Jan 2024 14:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39699
IP address blocks: 45.152.104.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:3c:93:db:2d:94:1c:9c:2d:ac:72:ae:9d:c4:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11f23f1c7f321099ac27745d8caf64bc528a3e92
Validity
Not Before: Jan 1 14:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c545cdcdc6dba235d686029734f0c2a57be12545
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:39:8d:85:70:97:06:db:1d:dd:29:61:57:ad:
0d:f8:53:1c:08:68:7f:1e:19:3a:62:cc:ac:73:17:
2d:db:78:e0:7c:3a:e4:f2:12:c5:a2:23:89:48:99:
e7:60:b6:16:3c:34:07:29:e9:d6:c2:17:18:b8:87:
30:d5:cc:81:34:a6:ac:89:c1:38:dd:4c:de:e0:dd:
88:52:b0:f6:37:32:e2:39:56:53:dd:09:7c:42:9a:
0a:55:b1:b6:c4:db:c4:14:0c:b0:f1:2e:a7:99:7d:
66:1b:23:dc:e7:db:c6:03:5c:50:04:2e:a8:cd:89:
75:25:41:90:f4:c5:b8:67:d6:07:c2:2c:64:20:4a:
69:c6:6e:8c:b6:97:06:fb:79:bb:12:9b:20:71:8a:
fd:6b:31:31:44:59:62:5a:f4:b6:35:be:4d:2a:f7:
99:3a:20:c8:50:22:f1:5b:16:70:9d:20:0f:1d:d3:
e9:51:9e:9c:6e:38:31:54:11:54:c6:4f:3a:e3:1c:
74:72:7f:81:ff:67:7d:d8:b2:1f:ff:37:14:a8:1a:
92:be:5c:8e:81:c5:e5:7c:99:76:c6:ff:95:8a:e3:
25:46:30:42:3f:54:29:9c:eb:62:fd:b0:13:55:05:
51:9a:77:23:48:09:6f:88:9f:06:c3:d4:d6:88:7d:
e4:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:45:CD:CD:C6:DB:A2:35:D6:86:02:97:34:F0:C2:A5:7B:E1:25:45
X509v3 Authority Key Identifier:
keyid:11:F2:3F:1C:7F:32:10:99:AC:27:74:5D:8C:AF:64:BC:52:8A:3E:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EfI_HH8yEJmsJ3RdjK9kvFKKPpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c3b570-ed44-4ecb-9af7-dcce563f603f/1/xUXNzcbbojXWhgKXNPDCpXvhJUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c3b570-ed44-4ecb-9af7-dcce563f603f/1/EfI_HH8yEJmsJ3RdjK9kvFKKPpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.104.0/22
Signature Algorithm: sha256WithRSAEncryption
55:df:6f:31:11:ff:39:aa:bd:0a:21:15:dc:e5:f7:b0:1b:6f:
15:20:1e:41:fc:db:00:d8:aa:00:46:21:2e:c7:af:a8:d7:7f:
01:47:a4:0b:d6:5b:98:12:f3:e8:01:ce:29:c5:50:6d:f6:7e:
7e:3b:4f:64:ac:ba:77:a1:66:f2:99:16:c6:20:be:01:56:10:
36:ad:52:ff:3d:51:8f:fc:bb:b8:c1:1f:68:e0:37:b3:eb:99:
4e:e5:b6:92:19:ac:45:47:72:2d:41:fa:6a:d2:28:a9:e3:31:
35:33:d5:76:fc:d0:d9:d5:0c:47:03:6f:e5:7e:a9:72:3c:0f:
23:6c:4b:92:0c:de:72:13:29:dc:f1:af:f5:2d:8b:cd:f1:ad:
50:30:6e:b1:92:cf:e0:32:d7:56:ea:9e:2a:8a:b7:79:01:a5:
8a:81:6e:d0:ac:49:aa:88:14:17:5e:75:d9:12:72:1d:37:c4:
86:0b:fc:d5:1d:96:d5:f4:17:81:9b:82:da:0e:a9:89:74:a3:
d0:1e:ce:3f:b8:0a:63:05:ee:a9:82:0d:25:6f:2d:2f:5b:6e:
6c:58:70:8a:6b:fd:7d:9e:44:5c:12:a8:db:1e:67:c2:f7:a8:
10:3f:54:58:9b:8e:d9:bf:50:a5:9c:1b:bf:64:f0:ad:ad:47:
6b:37:11:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 19:27:10 2024 by rpki-client on console-ams.rpki-client.org