Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/177f29-c4eb-411f-95ff-5e102d197742/1/BAjTVLAkAc8jBZXPJNxyo0aC4Kk.roa
File: BAjTVLAkAc8jBZXPJNxyo0aC4Kk.roa (raw, json)
Hash identifier: jvcGSJgrXTeGsWO0tGz+n4rgDGNGpQshLtxFnop8/Mc=
Subject key identifier: 04:08:D3:54:B0:24:01:CF:23:05:95:CF:24:DC:72:A3:46:82:E0:A9
Certificate issuer: /CN=ff94c4b1d33ba3094ec388f7a73d8d39cd950861
Certificate serial: 081E29C2
Authority key identifier: FF:94:C4:B1:D3:3B:A3:09:4E:C3:88:F7:A7:3D:8D:39:CD:95:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_5TEsdM7owlOw4j3pz2NOc2VCGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/177f29-c4eb-411f-95ff-5e102d197742/1/BAjTVLAkAc8jBZXPJNxyo0aC4Kk.roa
Signing time: Sat 01 Jan 2022 09:56:34 +0000
ROA not before: Sat 01 Jan 2022 09:56:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209347
IP address blocks: 45.12.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136194498 (0x81e29c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff94c4b1d33ba3094ec388f7a73d8d39cd950861
Validity
Not Before: Jan 1 09:56:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0408d354b02401cf230595cf24dc72a34682e0a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9e:9d:6b:9b:cc:58:cf:05:8f:cf:89:1d:a7:
7c:9d:e1:c0:95:00:39:82:5d:dd:50:0f:23:96:6f:
98:fb:2f:73:04:52:db:02:cc:cd:0d:28:2a:62:34:
f6:03:18:da:27:ed:7b:6a:fb:cd:9c:24:5a:dd:93:
70:00:ab:ec:16:d1:15:88:11:9c:33:40:91:dc:6f:
30:3f:66:86:6c:12:5b:57:28:76:a3:0c:d4:d0:17:
6f:32:cb:85:74:62:06:fe:47:46:f4:7f:e4:f4:14:
11:05:2e:5c:9c:09:fe:5b:03:23:40:05:07:8d:6e:
f5:31:ed:59:35:c5:ad:18:58:82:11:6b:cd:9e:53:
7f:0f:43:bb:d2:f2:d9:9a:40:94:62:e5:36:6e:aa:
80:03:80:0c:24:79:d5:d5:a7:ec:c0:75:53:88:46:
1e:38:9b:d0:88:af:40:55:43:9f:ee:3e:8e:13:f9:
45:6a:88:06:09:cc:80:27:c0:2b:b3:8c:e0:35:b4:
04:0f:c4:02:44:09:0e:9e:04:03:2b:4a:25:5f:2a:
61:7c:5d:d2:48:66:05:b8:8e:08:bc:7c:a6:18:68:
5b:88:93:98:6f:29:a1:65:5b:39:da:9e:1b:c3:86:
88:cf:b3:97:44:b0:02:f5:c2:e7:47:a1:8a:a7:c0:
81:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:08:D3:54:B0:24:01:CF:23:05:95:CF:24:DC:72:A3:46:82:E0:A9
X509v3 Authority Key Identifier:
keyid:FF:94:C4:B1:D3:3B:A3:09:4E:C3:88:F7:A7:3D:8D:39:CD:95:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_5TEsdM7owlOw4j3pz2NOc2VCGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/177f29-c4eb-411f-95ff-5e102d197742/1/BAjTVLAkAc8jBZXPJNxyo0aC4Kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/177f29-c4eb-411f-95ff-5e102d197742/1/_5TEsdM7owlOw4j3pz2NOc2VCGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.203.0/24
Signature Algorithm: sha256WithRSAEncryption
30:67:b6:9d:bf:0f:23:17:09:89:ec:c5:ff:06:64:39:37:8c:
1d:b7:4b:6e:17:e4:60:a0:10:48:29:5f:4c:15:d2:fb:a7:3b:
5c:6c:60:bf:ee:84:28:a5:04:3c:61:b7:d9:9d:b3:c4:48:23:
6c:17:44:0c:43:16:29:ed:f3:12:c1:5d:17:6f:ef:ab:f4:29:
87:4b:1e:50:4c:38:ca:87:87:6b:f5:f9:df:41:2d:cf:38:39:
2b:1f:2d:0c:8d:6f:1a:2c:c2:4d:5f:4e:d6:60:64:28:ff:3b:
69:94:60:e4:55:bd:9f:c8:29:0d:da:be:34:ad:25:e6:64:99:
4c:bd:78:4a:22:47:65:77:d1:9d:24:7b:b1:73:a3:96:b3:a5:
fa:3f:88:fd:d0:e6:fe:35:8f:58:44:bf:8b:85:98:e2:5d:41:
1d:c1:c0:c0:61:be:8e:a0:b3:34:35:dc:d5:04:a5:15:01:9e:
0e:63:13:03:82:36:0b:0e:10:ee:db:05:e2:90:b9:fe:56:75:
0f:7c:35:bc:34:9f:d3:70:6c:a9:51:b9:3d:22:87:3e:6f:86:
d2:ea:be:17:9b:3c:d5:93:f6:d8:d3:ea:8c:33:27:7f:f0:f8:
46:15:fd:fb:77:1b:3e:bb:db:56:65:e4:72:a7:d0:bb:43:55:
1b:56:9c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:31 2024 by rpki-client on console-fra.rpki-client.org