Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6fd304-69bd-4bf2-a073-6a78f55a6f89/1/kcDY5iWbwLMuQ-6WEPw12DjN0FU.roa
File: kcDY5iWbwLMuQ-6WEPw12DjN0FU.roa (raw, json)
Hash identifier: VpCrbbbheG8Q+qpGvirqR6jLmMhEdxtmv36rbWiM4kU=
Subject key identifier: 91:C0:D8:E6:25:9B:C0:B3:2E:43:EE:96:10:FC:35:D8:38:CD:D0:55
Certificate issuer: /CN=c4457a309643b9a164da9f736f3241c0c16a50e9
Certificate serial: 01856F429A76E3B4D4C183EB6E722994FA32
Authority key identifier: C4:45:7A:30:96:43:B9:A1:64:DA:9F:73:6F:32:41:C0:C1:6A:50:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xEV6MJZDuaFk2p9zbzJBwMFqUOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/6fd304-69bd-4bf2-a073-6a78f55a6f89/1/kcDY5iWbwLMuQ-6WEPw12DjN0FU.roa
Signing time: Sun 01 Jan 2023 21:35:13 +0000
ROA not before: Sun 01 Jan 2023 21:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43414
IP address blocks: 45.151.4.0/22 maxlen: 22
2a0f:b00::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:9a:76:e3:b4:d4:c1:83:eb:6e:72:29:94:fa:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4457a309643b9a164da9f736f3241c0c16a50e9
Validity
Not Before: Jan 1 21:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91c0d8e6259bc0b32e43ee9610fc35d838cdd055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ab:94:49:0a:5a:d0:34:55:bd:19:cb:fe:a0:
a5:5a:eb:84:77:ba:b3:22:db:03:3b:b8:36:26:b0:
0d:1a:6c:d5:04:27:70:5c:13:d3:1e:99:18:ea:7b:
bc:f6:8c:6a:fa:f8:0a:02:b8:10:10:67:69:80:2e:
6f:3e:cf:93:6d:a7:ab:3a:51:3b:f8:76:21:c1:ef:
18:4e:39:9d:76:c7:5a:a2:8a:ac:83:2d:32:11:6c:
fe:88:26:9a:24:f7:ca:80:77:53:55:e4:7b:78:33:
e7:b7:ec:e9:26:77:3e:76:a6:28:04:c7:77:a7:6c:
41:2e:0f:1c:f1:5a:5f:04:f9:20:1b:f2:57:25:39:
c8:17:f7:99:ae:86:75:c2:eb:c7:a6:ee:15:04:b1:
1e:1b:ce:f1:be:77:2f:5d:36:bc:36:4a:d5:34:36:
15:17:27:d9:8a:af:e7:09:20:42:bd:7a:61:59:c2:
3a:e1:98:71:4d:46:45:1c:4a:24:4c:36:98:00:a2:
3b:7f:bb:b4:0c:7a:5d:f4:c1:4b:69:a2:10:18:05:
2a:7e:55:cf:ec:e9:2d:5d:4c:f3:b8:45:d0:11:b0:
62:9c:12:5c:60:f0:70:fd:76:d4:39:a7:bd:4c:ba:
d6:81:9f:23:55:5b:f0:1d:d2:67:f1:3d:d6:c8:44:
15:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C0:D8:E6:25:9B:C0:B3:2E:43:EE:96:10:FC:35:D8:38:CD:D0:55
X509v3 Authority Key Identifier:
keyid:C4:45:7A:30:96:43:B9:A1:64:DA:9F:73:6F:32:41:C0:C1:6A:50:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xEV6MJZDuaFk2p9zbzJBwMFqUOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fd304-69bd-4bf2-a073-6a78f55a6f89/1/kcDY5iWbwLMuQ-6WEPw12DjN0FU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fd304-69bd-4bf2-a073-6a78f55a6f89/1/xEV6MJZDuaFk2p9zbzJBwMFqUOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.4.0/22
IPv6:
2a0f:b00::/29
Signature Algorithm: sha256WithRSAEncryption
b7:e8:08:be:73:77:17:0b:63:b7:cf:42:14:d3:5a:74:8c:87:
fe:f4:7f:4c:a5:76:ae:08:3b:6e:b0:45:7f:87:be:ae:46:9a:
79:47:32:08:cf:ba:22:f1:93:5d:27:79:cc:98:bb:ec:38:c5:
f0:4c:37:8f:cc:3d:f6:d8:49:c5:6c:79:a6:a0:ba:63:8c:78:
78:ca:f0:be:6f:9e:06:c2:77:38:44:4d:d5:63:0e:a2:e9:40:
22:e2:d3:ba:64:0e:4c:31:ea:e6:81:78:44:59:63:81:3a:9e:
7d:5d:15:85:65:cf:6f:a7:0a:c1:4a:4a:9d:98:02:59:d7:cf:
f7:ac:99:93:86:09:a8:d4:75:5e:f9:92:d4:c8:6e:ed:b3:ec:
29:c7:8b:6f:df:b4:ef:a8:14:55:85:0b:d2:ab:c3:ad:fb:2b:
29:fc:a0:9b:15:73:ae:41:28:9a:6f:e5:24:89:8c:86:8e:0f:
6b:55:0f:c5:ff:39:56:58:52:10:81:2e:17:f6:05:bc:67:3b:
45:26:4b:15:93:00:90:a4:b0:35:bb:0b:1e:c5:97:73:1e:0d:
b0:56:27:bf:02:74:25:df:5b:ea:36:3d:ee:a7:e1:3c:be:02:
8f:8a:16:e3:64:24:43:5b:74:26:b0:23:b7:91:75:93:ac:a3:
4c:f3:dd:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:17 2023 by rpki-client on console.sobornost.net