Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/177f29-c4eb-411f-95ff-5e102d197742/1/nRJNkC1yX7fYCAvwvPw5bQsE7BE.roa
File: nRJNkC1yX7fYCAvwvPw5bQsE7BE.roa (raw, json)
Hash identifier: mak9FyUx8HAssySsUMR8M1/xTm3Bx9imxyP3kAGswsU=
Subject key identifier: 9D:12:4D:90:2D:72:5F:B7:D8:08:0B:F0:BC:FC:39:6D:0B:04:EC:11
Certificate issuer: /CN=ff94c4b1d33ba3094ec388f7a73d8d39cd950861
Certificate serial: 081A710E
Authority key identifier: FF:94:C4:B1:D3:3B:A3:09:4E:C3:88:F7:A7:3D:8D:39:CD:95:08:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_5TEsdM7owlOw4j3pz2NOc2VCGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/177f29-c4eb-411f-95ff-5e102d197742/1/nRJNkC1yX7fYCAvwvPw5bQsE7BE.roa
Signing time: Sat 01 Jan 2022 09:56:32 +0000
ROA not before: Sat 01 Jan 2022 09:56:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.12.200.0/22 maxlen: 24
2a0e:bf00::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135950606 (0x81a710e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff94c4b1d33ba3094ec388f7a73d8d39cd950861
Validity
Not Before: Jan 1 09:56:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d124d902d725fb7d8080bf0bcfc396d0b04ec11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bc:f7:94:f6:f9:42:0a:52:0d:ab:4a:f5:95:
eb:9f:d6:25:b7:fd:11:ae:c8:ea:02:e2:07:00:a6:
c2:a5:42:33:71:fd:39:cb:56:9a:51:f1:52:9e:b1:
6f:f5:b9:2d:06:c9:08:fb:5d:16:24:c9:79:a2:70:
bf:2a:7d:91:f6:98:f9:32:5b:6f:2c:6e:93:66:7b:
54:0e:fe:f8:8b:06:6a:3f:be:c4:32:74:9d:5c:10:
f3:c8:31:90:9a:64:d4:9b:60:77:a3:e3:e9:5f:a0:
82:f6:e6:7c:45:69:9d:87:3f:12:6e:8b:2a:db:f0:
0a:75:54:68:51:41:b7:e4:0c:9c:c7:b2:30:65:92:
22:8c:50:ba:2b:fe:ff:e3:6d:78:79:8e:2c:4a:fd:
62:e1:5c:e3:ad:97:ee:a5:5f:8b:a7:a6:ec:60:8d:
02:bf:24:29:aa:a4:2a:a3:80:d4:8f:e8:16:62:2f:
8d:c9:6d:0b:2d:7a:f9:bd:81:f9:7e:3a:44:da:15:
ec:82:0f:8b:5c:24:5d:10:24:9e:5c:f6:72:ee:ae:
ca:ad:e4:bb:75:a6:78:0b:ef:1a:67:49:36:49:8f:
df:06:cb:fa:43:ea:a4:56:c0:95:5f:fa:66:86:3a:
d8:1c:29:d1:59:46:44:38:1c:14:b9:1a:09:c2:8e:
ed:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:12:4D:90:2D:72:5F:B7:D8:08:0B:F0:BC:FC:39:6D:0B:04:EC:11
X509v3 Authority Key Identifier:
keyid:FF:94:C4:B1:D3:3B:A3:09:4E:C3:88:F7:A7:3D:8D:39:CD:95:08:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_5TEsdM7owlOw4j3pz2NOc2VCGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/177f29-c4eb-411f-95ff-5e102d197742/1/nRJNkC1yX7fYCAvwvPw5bQsE7BE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/177f29-c4eb-411f-95ff-5e102d197742/1/_5TEsdM7owlOw4j3pz2NOc2VCGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.200.0/22
IPv6:
2a0e:bf00::/29
Signature Algorithm: sha256WithRSAEncryption
31:a6:2e:1d:f1:db:db:5c:70:a9:97:4b:f2:16:e1:5e:da:e4:
ed:73:02:93:84:d1:cc:30:b5:1f:43:5b:17:cd:12:25:3e:8f:
68:f9:47:d4:b4:e0:7a:44:7f:34:f4:91:1d:4e:34:f1:8f:46:
22:d6:18:6c:6d:b2:e1:2a:fa:fd:f1:88:36:be:f5:9e:fb:cf:
51:73:75:6b:26:7f:12:b8:1b:b6:3a:b2:7b:97:23:3b:17:2b:
5e:83:cc:60:fa:2a:d3:ff:6f:b1:4c:92:7a:5b:e0:e2:da:57:
bd:a6:07:03:90:04:b1:1d:b3:e0:10:99:cf:37:50:4a:59:b1:
fc:d0:2b:d9:38:9d:4a:58:a7:3e:5b:87:4e:3d:11:cc:a5:e5:
e7:86:cb:e3:37:0e:7b:09:82:d9:b1:1b:c8:74:26:2e:5a:f4:
41:f2:db:69:1f:e9:e6:63:9c:35:29:4e:db:9b:e6:66:ff:15:
ed:81:ed:b5:eb:66:23:35:b4:f9:23:3d:b8:3e:0f:57:e6:5e:
e0:19:00:3a:b3:a7:74:3e:92:f2:e0:5f:35:c6:4b:b9:88:b8:
83:4c:8c:69:c4:e8:15:8f:9e:ac:51:82:ee:3d:87:76:b9:af:
76:bc:dc:d0:28:9d:4c:a5:be:12:ad:60:d3:58:26:a5:9f:89:
0c:cd:69:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:35 2024 by rpki-client on console-ams.rpki-client.org