Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/4f0ae2-27a2-4e70-a659-9e6e4402753f/1/2lgqOncyibRkfMBgugJnpu04sEE.roa
File: 2lgqOncyibRkfMBgugJnpu04sEE.roa (raw, json)
Hash identifier: QonKj83lxj1fYrBTFthDGZw1Ms59GMUZuh6ACJhta0Y=
Subject key identifier: DA:58:2A:3A:77:32:89:B4:64:7C:C0:60:BA:02:67:A6:ED:38:B0:41
Certificate issuer: /CN=73d06ebd39aa8de74b56532c9dab40694fa1c8e8
Certificate serial: 02775A15
Authority key identifier: 73:D0:6E:BD:39:AA:8D:E7:4B:56:53:2C:9D:AB:40:69:4F:A1:C8:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9BuvTmqjedLVlMsnatAaU-hyOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/4f0ae2-27a2-4e70-a659-9e6e4402753f/1/2lgqOncyibRkfMBgugJnpu04sEE.roa
Signing time: Sat 01 Jan 2022 05:59:35 +0000
ROA not before: Sat 01 Jan 2022 05:59:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 45.150.228.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41376277 (0x2775a15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73d06ebd39aa8de74b56532c9dab40694fa1c8e8
Validity
Not Before: Jan 1 05:59:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da582a3a773289b4647cc060ba0267a6ed38b041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:42:91:20:47:f3:bd:ca:c9:35:82:34:db:4f:
49:27:d3:27:a7:52:fc:48:5e:e6:62:8d:09:86:dd:
85:dc:b5:4d:12:ac:33:a6:67:0d:b2:b5:09:bc:d2:
89:76:92:d2:8c:d4:00:65:41:5a:10:92:5d:c2:5e:
88:0b:d9:12:b4:2e:42:30:b0:28:d9:d2:aa:de:84:
f0:d9:32:c6:1e:81:d8:fb:6c:b2:88:3b:18:ab:77:
71:77:63:86:b1:27:04:72:37:a9:d6:57:01:59:2d:
bc:9e:d2:5d:e9:da:2f:a9:9e:ed:7f:73:13:51:50:
4b:57:ca:98:4f:c4:0a:67:6e:77:a5:a5:7f:67:ed:
3f:d6:af:f1:fb:f1:ef:c9:5f:63:d2:d4:7c:e4:ac:
b8:59:48:69:ba:c5:87:b6:70:f7:c5:3d:63:68:22:
d6:a6:f7:15:30:90:b0:1f:d6:53:77:07:6d:8d:01:
38:b5:cc:02:47:19:84:77:9d:95:7d:65:55:ae:8d:
26:86:d2:56:a8:2e:14:85:10:20:18:1b:a8:c4:2b:
26:c6:71:04:3e:a0:54:a2:37:1c:be:16:93:b1:f7:
f5:ad:43:c6:5b:e1:da:f2:08:fe:40:16:cc:0d:f3:
0b:da:5e:e4:9f:9b:d6:1c:1d:3e:71:66:f4:b4:a2:
05:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:58:2A:3A:77:32:89:B4:64:7C:C0:60:BA:02:67:A6:ED:38:B0:41
X509v3 Authority Key Identifier:
keyid:73:D0:6E:BD:39:AA:8D:E7:4B:56:53:2C:9D:AB:40:69:4F:A1:C8:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9BuvTmqjedLVlMsnatAaU-hyOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/4f0ae2-27a2-4e70-a659-9e6e4402753f/1/2lgqOncyibRkfMBgugJnpu04sEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/4f0ae2-27a2-4e70-a659-9e6e4402753f/1/c9BuvTmqjedLVlMsnatAaU-hyOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.228.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:a8:21:0f:ea:01:86:34:04:ce:4d:4e:30:d3:54:9c:b7:51:
d6:80:77:25:66:14:31:cf:15:5a:49:91:c6:6e:65:a2:a9:79:
35:d0:09:ac:fc:05:78:ee:a8:42:8f:d3:88:48:1e:ad:5a:3e:
4c:44:71:69:34:a0:c4:f6:9a:dd:0c:60:af:2a:c4:da:a7:06:
44:0a:04:03:41:a0:9b:03:d4:cf:f1:68:39:ce:b3:d4:20:ca:
8a:6d:ee:fc:e7:e6:96:f8:ff:f3:ba:ec:59:45:42:e4:91:93:
0c:91:7a:71:be:99:22:7a:72:b1:32:76:f7:b1:cf:6e:f4:d8:
8b:cc:25:00:a7:97:5d:80:e6:b9:f0:f7:a1:0a:3c:eb:64:fb:
e3:55:c2:d1:32:7c:eb:eb:f1:ca:b6:ca:59:b9:dd:a6:d2:8b:
07:24:7a:a1:64:cd:68:f0:06:64:74:ee:30:dc:0c:02:4c:06:
aa:b0:40:ca:08:7e:dc:a0:58:65:c1:c0:75:b8:1f:fd:41:6a:
27:f0:81:a4:da:fc:d8:c9:1c:8e:b6:bf:7c:58:06:80:26:f2:
61:92:e5:89:5d:82:a3:51:f4:9e:9c:22:e9:cf:9e:35:f6:25:
5d:10:e1:07:41:91:3a:f3:2a:ff:71:61:1f:c6:06:ac:37:28:
6d:b6:fa:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net