Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/e32628-7849-4d01-ace4-6e73c2863b4c/1/WDJPcSGnYx2Dgv39Xq6K2l_udoA.roa
File: WDJPcSGnYx2Dgv39Xq6K2l_udoA.roa (raw, json)
Hash identifier: bizjSYWEGHYr72HrCZWvmACDM5g8gZqZyPf95LZSU6k=
Subject key identifier: 58:32:4F:71:21:A7:63:1D:83:82:FD:FD:5E:AE:8A:DA:5F:EE:76:80
Certificate issuer: /CN=b51d37de4a2aefe9fd751cc40ae7204977d75f37
Certificate serial: 080E9E8F
Authority key identifier: B5:1D:37:DE:4A:2A:EF:E9:FD:75:1C:C4:0A:E7:20:49:77:D7:5F:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tR033koq7-n9dRzECucgSXfXXzc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/e32628-7849-4d01-ace4-6e73c2863b4c/1/WDJPcSGnYx2Dgv39Xq6K2l_udoA.roa
Signing time: Wed 16 Mar 2022 16:00:03 +0000
ROA not before: Wed 16 Mar 2022 16:00:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60233
IP address blocks: 45.158.132.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135175823 (0x80e9e8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51d37de4a2aefe9fd751cc40ae7204977d75f37
Validity
Not Before: Mar 16 16:00:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58324f7121a7631d8382fdfd5eae8ada5fee7680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:86:a3:45:9d:75:69:29:cc:30:db:c5:e4:a5:
8d:b2:74:40:b1:0e:43:d4:48:89:51:7e:34:e0:05:
e1:a0:0d:81:99:35:76:71:be:fe:91:86:27:7f:61:
37:77:43:54:2c:4c:9b:23:ad:56:a6:80:83:3e:12:
de:31:3a:e2:84:96:38:b0:f2:9a:ef:e8:2c:b0:ac:
87:9f:8f:e7:1f:e6:ff:f6:27:8e:ac:50:b5:5a:f7:
fb:30:19:e6:19:88:dd:82:cc:f6:71:82:ff:c6:c9:
34:92:64:2f:12:40:6e:56:e4:76:e4:5b:6a:9c:63:
b7:ff:b7:96:d6:62:a6:dc:16:0a:28:00:31:5b:67:
85:cc:ef:91:d1:dd:f7:4e:43:9b:16:b3:1f:40:ef:
50:f4:1f:bc:2d:47:c9:92:48:29:0d:ba:35:b0:3e:
5f:37:79:8f:90:6e:46:1b:4a:58:bc:00:fd:78:92:
66:06:77:9a:54:ae:48:92:85:fb:b7:5b:2b:c3:b7:
eb:e6:f3:11:26:69:3c:19:91:e1:29:f8:7c:cf:4b:
01:91:8f:c3:bd:ac:34:fb:df:68:e4:1a:6c:ca:b5:
8b:d4:3c:15:12:76:a3:f3:28:76:da:f6:85:10:03:
76:f9:30:09:02:7b:8f:77:b7:01:f5:8f:10:7f:58:
b5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:32:4F:71:21:A7:63:1D:83:82:FD:FD:5E:AE:8A:DA:5F:EE:76:80
X509v3 Authority Key Identifier:
keyid:B5:1D:37:DE:4A:2A:EF:E9:FD:75:1C:C4:0A:E7:20:49:77:D7:5F:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tR033koq7-n9dRzECucgSXfXXzc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e32628-7849-4d01-ace4-6e73c2863b4c/1/WDJPcSGnYx2Dgv39Xq6K2l_udoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e32628-7849-4d01-ace4-6e73c2863b4c/1/tR033koq7-n9dRzECucgSXfXXzc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.132.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:e0:74:15:cd:8c:be:f4:18:ec:83:e2:2b:d5:94:1f:18:6d:
b7:a3:43:61:03:33:51:f2:0c:de:b2:0a:cc:b0:3f:87:a3:0d:
dd:b8:b4:24:33:55:c7:07:c4:af:f9:82:c7:c3:9f:80:4a:87:
45:fb:90:52:28:b4:4b:b1:ed:2a:b5:24:69:b9:66:c5:89:a3:
cd:21:47:2d:4b:b8:30:3c:ea:e3:7f:80:4f:18:0a:12:33:d5:
02:6d:7b:09:f6:4b:9e:b6:f6:94:23:4e:07:5e:9a:53:b8:9c:
c6:d4:84:d7:bd:35:e9:59:d2:72:21:ca:e1:26:19:f7:79:da:
32:5f:b9:12:db:2d:0f:e9:3b:ce:84:8e:a3:e9:95:3b:f9:97:
b3:0e:8a:a6:c5:43:76:63:21:56:8d:6e:1b:f1:b4:3d:f3:52:
81:0a:a1:64:b6:49:34:24:02:30:cd:83:68:7d:b9:eb:21:1d:
1e:70:5d:0b:e8:7b:82:47:d0:60:97:97:d2:1e:d9:5d:34:92:
2d:d1:3e:a3:1b:d2:ed:43:85:8d:2b:d8:ab:4e:f8:ce:bc:29:
3d:73:e9:29:03:ad:f5:aa:c9:a3:33:28:e0:95:00:4e:eb:76:
27:22:a6:81:16:64:ae:7b:66:be:6f:5e:db:97:76:96:6d:a3:
4c:d6:35:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:21 2024 by rpki-client on console-ams.rpki-client.org