Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/a71c69-4ae5-4853-9da8-76ae701126f9/1/YgwNf7jLpTixeoymuZwDXURFpjQ.roa
File: YgwNf7jLpTixeoymuZwDXURFpjQ.roa (raw, json)
Hash identifier: dBQJP8cyXHMDkkXudI5StvKh1BYTS0ijC+xLzPzpuEc=
Subject key identifier: 62:0C:0D:7F:B8:CB:A5:38:B1:7A:8C:A6:B9:9C:03:5D:44:45:A6:34
Certificate issuer: /CN=76c2deff015fa3e8015b1d5fdbbfb779a2c8e617
Certificate serial: 01828802CF5088F2C9BBAB8ED987E7B9D0ED
Authority key identifier: 76:C2:DE:FF:01:5F:A3:E8:01:5B:1D:5F:DB:BF:B7:79:A2:C8:E6:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dsLe_wFfo-gBWx1f27-3eaLI5hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/a71c69-4ae5-4853-9da8-76ae701126f9/1/YgwNf7jLpTixeoymuZwDXURFpjQ.roa
Signing time: Wed 10 Aug 2022 13:47:41 +0000
ROA not before: Wed 10 Aug 2022 13:47:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 45.8.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:88:02:cf:50:88:f2:c9:bb:ab:8e:d9:87:e7:b9:d0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76c2deff015fa3e8015b1d5fdbbfb779a2c8e617
Validity
Not Before: Aug 10 13:47:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=620c0d7fb8cba538b17a8ca6b99c035d4445a634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b1:c7:31:d6:eb:d3:ac:78:df:fb:1e:b2:6a:
af:5a:fc:90:e2:29:b6:2f:c7:e5:2a:b6:ae:51:80:
5c:76:37:38:b4:1d:c8:44:15:e5:46:9e:8c:a7:22:
77:b2:2b:e7:51:ca:e6:f1:a5:5e:58:86:8b:c3:93:
fc:e6:8f:7b:09:86:67:c1:ba:75:ae:12:f0:b6:9c:
7a:71:12:86:b0:41:a4:7f:a0:22:67:9a:3d:e4:22:
56:b9:96:60:0f:5b:aa:c1:6d:09:c8:8d:91:d6:31:
d1:bd:94:20:d0:e7:b9:45:29:6e:fc:dd:fd:2d:d6:
51:4b:f9:f7:5f:42:5b:cc:94:32:f9:cf:43:a9:76:
27:ad:34:0a:19:2f:a0:86:f6:08:a7:fe:87:c0:e6:
06:83:d4:c9:51:f3:d7:3f:c9:f9:c1:ef:b6:8a:fa:
5d:18:f7:ad:6e:2b:dd:0d:8d:ed:95:72:c3:eb:da:
3b:51:b9:34:8e:2b:5e:bc:e7:6b:20:9d:6b:d6:44:
e6:fa:dd:84:4f:f1:a3:59:04:0b:5b:13:6a:21:cd:
cc:df:5b:af:4e:ce:a1:5b:ff:a6:db:fb:32:cf:fa:
f2:42:b5:97:c9:21:da:14:69:f7:67:1d:62:d3:10:
09:d3:b3:06:ef:89:8a:49:db:aa:a7:ac:5f:1a:28:
a6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0C:0D:7F:B8:CB:A5:38:B1:7A:8C:A6:B9:9C:03:5D:44:45:A6:34
X509v3 Authority Key Identifier:
keyid:76:C2:DE:FF:01:5F:A3:E8:01:5B:1D:5F:DB:BF:B7:79:A2:C8:E6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dsLe_wFfo-gBWx1f27-3eaLI5hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/a71c69-4ae5-4853-9da8-76ae701126f9/1/YgwNf7jLpTixeoymuZwDXURFpjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/a71c69-4ae5-4853-9da8-76ae701126f9/1/dsLe_wFfo-gBWx1f27-3eaLI5hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.94.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:ee:77:97:70:15:ae:d9:c8:b3:ca:8f:53:0a:81:34:cc:c0:
83:57:43:ca:51:64:2f:f8:82:c9:e4:8d:7e:9a:b8:ec:de:7c:
97:a3:d7:1d:bb:a6:82:77:d1:4b:58:2c:4f:f8:55:7a:83:f9:
1f:c1:d3:0f:98:12:14:be:f1:3a:bf:9b:94:92:b9:fc:96:03:
67:d2:34:fc:39:ed:c4:dd:67:00:a1:88:ed:0f:58:5e:2a:1c:
ea:4c:4a:a8:c0:29:22:bd:06:74:e9:07:97:61:3e:d5:02:17:
99:e7:55:b0:91:da:82:63:8e:2c:84:f8:e5:08:9e:55:11:17:
18:82:8f:19:c0:fc:f2:69:4d:47:37:ce:56:d9:fb:d8:85:67:
54:ee:15:c4:2e:ca:27:76:ad:1c:23:95:1e:60:30:af:1a:7c:
24:75:11:8a:00:bc:3c:ee:88:07:4b:74:9b:bb:12:c9:80:d6:
9b:17:22:bd:eb:2b:c9:63:e3:08:c0:35:08:24:2a:f5:6b:0a:
d9:36:68:9c:b0:71:b0:79:95:d0:fb:be:14:a5:48:b3:fe:dc:
e1:00:18:b1:11:e3:97:4a:b9:25:b7:91:62:9a:8e:9d:5d:d5:
f4:4e:eb:1b:2c:a1:f1:f4:49:03:08:45:42:08:a3:c1:4e:d1:
57:93:d5:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:42 2024 by rpki-client on console-ams.rpki-client.org