Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/Fy19xPORCaMR-VQB5MeuCmdxGkQ.roa
File: Fy19xPORCaMR-VQB5MeuCmdxGkQ.roa (raw, json)
Hash identifier: Z9V5DunWdEXWb6znjB8zoZmf9xKvzKIejPKF5t51qCM=
Subject key identifier: 17:2D:7D:C4:F3:91:09:A3:11:F9:54:01:E4:C7:AE:0A:67:71:1A:44
Certificate issuer: /CN=4b7cc1f58bdd258c8d92d342bee6a2ad4ce3f744
Certificate serial: 028F6A0F
Authority key identifier: 4B:7C:C1:F5:8B:DD:25:8C:8D:92:D3:42:BE:E6:A2:AD:4C:E3:F7:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3zB9YvdJYyNktNCvuairUzj90Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/Fy19xPORCaMR-VQB5MeuCmdxGkQ.roa
Signing time: Wed 04 May 2022 15:17:44 +0000
ROA not before: Wed 04 May 2022 15:17:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 45.140.176.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42953231 (0x28f6a0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b7cc1f58bdd258c8d92d342bee6a2ad4ce3f744
Validity
Not Before: May 4 15:17:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=172d7dc4f39109a311f95401e4c7ae0a67711a44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0a:8a:e8:ec:a9:ae:40:f8:7f:f4:50:46:c2:
d0:24:40:a9:d4:77:aa:0f:7f:eb:e7:b2:28:09:72:
1d:ef:6d:9a:75:88:75:4b:40:54:71:cc:4e:3a:06:
df:6a:67:a9:ca:cd:a6:cf:5e:ce:37:eb:8c:a7:16:
45:bc:f1:cb:47:d0:5d:39:45:d6:9d:8c:d5:f3:83:
5d:88:f6:a6:7d:2f:08:73:12:be:64:55:ae:28:a7:
60:81:c8:8a:f8:03:9b:b1:d0:45:9b:20:85:60:e8:
b4:f4:39:ef:7c:f5:09:39:76:12:8e:09:94:8e:f5:
8b:35:bf:c3:2e:d2:55:c8:03:1f:58:9f:c4:29:c7:
1a:d9:99:e7:04:fb:6d:23:0c:bc:1c:bb:62:56:e9:
45:51:10:61:d4:ec:ae:13:6c:e4:6d:b9:d1:88:17:
19:b2:8b:62:b0:37:c8:fa:c1:ab:b8:34:86:59:0f:
a0:34:d8:0a:49:60:df:e4:95:c7:11:15:f5:5e:d5:
ba:a6:79:c3:d2:ba:d9:32:a5:c8:26:51:34:c1:a5:
ad:ec:4e:ae:1d:0b:81:fd:87:4c:c2:65:57:a0:f1:
b1:21:0b:3c:aa:6e:8a:f4:1c:82:11:3f:c6:b9:9a:
6c:63:78:f3:7b:89:86:0a:ac:a3:bf:45:2e:6d:d4:
16:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2D:7D:C4:F3:91:09:A3:11:F9:54:01:E4:C7:AE:0A:67:71:1A:44
X509v3 Authority Key Identifier:
keyid:4B:7C:C1:F5:8B:DD:25:8C:8D:92:D3:42:BE:E6:A2:AD:4C:E3:F7:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3zB9YvdJYyNktNCvuairUzj90Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/Fy19xPORCaMR-VQB5MeuCmdxGkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d47f87-b34f-49ce-bf1e-ac8236bdc88c/1/S3zB9YvdJYyNktNCvuairUzj90Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.176.0/22
Signature Algorithm: sha256WithRSAEncryption
23:91:51:d8:4a:78:13:ab:9e:41:4b:07:73:67:dd:b1:fc:3d:
68:3d:76:6c:96:df:f5:64:0f:e2:42:be:f9:f4:f6:9a:4e:74:
70:fd:0b:89:95:18:2e:fd:d5:7a:7a:01:0c:71:a3:92:85:e7:
23:26:96:01:b5:0c:9c:f9:f7:cf:45:39:18:5a:b1:c9:fc:3f:
51:23:35:6b:11:dc:38:be:d5:c4:88:93:24:d7:a7:19:7d:ac:
01:a3:ca:1b:02:ae:1a:30:66:30:a5:62:5d:be:67:e4:f1:16:
1e:ea:53:f4:15:e1:dc:1a:3f:3c:39:15:7c:b2:26:02:62:41:
a4:b3:c0:f0:56:67:9c:53:0f:8a:dd:77:be:d1:69:c6:5f:f0:
14:ba:1c:e3:6e:eb:ad:05:57:36:a5:96:a2:e7:9d:5d:40:68:
dc:8f:c1:f4:9d:a3:e3:11:f6:4b:12:d6:78:9c:41:79:09:19:
b2:49:53:c5:0f:d7:cb:15:91:c8:4d:29:44:cc:ff:6d:58:1f:
e8:bc:0e:08:22:2d:1c:dc:3f:63:7c:67:e6:6a:05:92:3b:a8:
3f:89:28:76:09:9a:2d:98:17:b6:9d:a5:c0:84:6f:af:c4:5d:
a5:64:c1:42:60:50:e6:d8:83:2a:65:30:c5:ea:52:b3:bc:21:
4f:2d:63:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org