Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/I529t98EwSwhYeBwXwAVej4PaQc.roa
File: I529t98EwSwhYeBwXwAVej4PaQc.roa (raw, json)
Hash identifier: x0DRDuuSJzmU83y0tLjhcNECsnsvQobyCyVDP4PyuRQ=
Subject key identifier: 23:9D:BD:B7:DF:04:C1:2C:21:61:E0:70:5F:00:15:7A:3E:0F:69:07
Certificate issuer: /CN=62fa765a393369c96d8d836f23f76e67489c7dde
Certificate serial: 08D76B46
Authority key identifier: 62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/I529t98EwSwhYeBwXwAVej4PaQc.roa
Signing time: Sat 01 Jan 2022 07:55:53 +0000
ROA not before: Sat 01 Jan 2022 07:55:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 45.66.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148335430 (0x8d76b46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fa765a393369c96d8d836f23f76e67489c7dde
Validity
Not Before: Jan 1 07:55:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=239dbdb7df04c12c2161e0705f00157a3e0f6907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:76:48:33:be:4a:1f:1d:6e:15:32:ab:e0:e7:
1a:87:92:23:5b:11:09:52:90:0c:ba:54:02:28:c1:
be:d0:cd:79:3d:36:6e:6f:2c:46:6f:5e:d9:ed:e6:
f5:10:9a:9e:97:34:40:ee:a9:65:fa:04:21:ba:f4:
bf:c7:95:9d:fa:b8:62:56:7f:da:bc:12:ba:5a:a0:
7d:c0:9c:f1:6a:0b:51:87:0b:e5:ea:47:f6:e6:ad:
10:93:e6:16:42:87:0b:36:d4:e6:fd:df:e2:a7:bb:
8c:97:0c:07:fd:36:20:03:21:07:34:a2:c1:32:ec:
07:e9:6c:8d:e8:69:3b:9d:c4:da:66:83:da:bc:ac:
4d:f1:d5:ef:8a:14:cc:c8:b7:9e:ef:6a:0a:33:0f:
1d:11:9e:0a:6e:44:52:fa:6c:ed:f7:b2:50:83:32:
2f:02:bf:d2:cd:16:02:e9:6e:68:1e:95:e3:fa:e4:
c8:7e:4c:e5:45:44:e3:df:63:88:1b:65:70:36:69:
f8:17:25:6c:9e:a4:e2:24:64:28:35:27:d5:70:da:
6e:43:35:d2:db:28:ae:d8:17:77:14:0c:b4:68:3a:
a0:1b:9e:21:87:ab:fe:6b:0b:b6:01:11:48:88:94:
46:55:e1:99:65:44:49:a1:21:fe:0b:2c:90:26:a9:
81:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9D:BD:B7:DF:04:C1:2C:21:61:E0:70:5F:00:15:7A:3E:0F:69:07
X509v3 Authority Key Identifier:
keyid:62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/I529t98EwSwhYeBwXwAVej4PaQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Yvp2WjkzacltjYNvI_duZ0icfd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.151.0/24
Signature Algorithm: sha256WithRSAEncryption
42:8f:ef:d9:7b:30:6e:fe:a4:8c:8e:2f:d6:10:57:b7:a7:f0:
01:11:f3:7b:1e:91:31:02:5d:ae:b0:51:d4:ce:65:0f:9f:ef:
73:b6:42:6b:52:b1:8e:62:d1:b8:eb:10:6c:f7:b2:ae:3c:6a:
01:b5:9b:2e:d3:f9:a4:19:66:11:88:69:f6:b1:b4:71:e4:2b:
5b:00:4f:40:ba:c0:f1:4d:6e:a8:ab:fc:51:6a:4b:f2:ab:cc:
59:48:1c:2c:de:81:92:4b:89:de:49:05:70:fd:8e:54:b6:2f:
13:ab:b2:34:c3:b8:88:aa:90:99:73:a2:5b:03:a2:bb:6a:e5:
7b:11:c8:bc:72:be:7e:2b:a8:5a:a4:5b:8f:cf:b9:de:ea:98:
a6:77:00:ac:ac:0c:46:01:fa:42:ee:f9:90:9d:f4:79:04:fb:
1f:16:ea:20:0a:1b:23:01:31:46:ce:37:58:65:91:39:ae:33:
01:cb:8c:a8:83:9f:53:3a:70:6d:dc:e6:b3:be:78:29:96:2e:
e0:28:3c:6e:53:23:b8:ca:5e:35:c8:a9:bd:bb:93:d1:81:b2:
8e:93:b3:b6:e9:c6:43:75:b8:b2:4e:7f:6e:da:6d:72:02:83:
3d:43:5c:a3:af:b7:33:f0:a8:26:a3:bf:94:7e:45:9b:14:5d:
08:50:8e:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:26 2024 by rpki-client on console-fra.rpki-client.org