Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4a5512-64c7-4f14-a2f0-55f6e25b5adb/1/70MwFcNt9cb91U7ZvY_iC0DXTSg.roa
File: 70MwFcNt9cb91U7ZvY_iC0DXTSg.roa (raw, json)
Hash identifier: ycKYCkV6Ah1IUE+EA5cpWwwrsMyryztnrYlgAaoEEcI=
Subject key identifier: EF:43:30:15:C3:6D:F5:C6:FD:D5:4E:D9:BD:8F:E2:0B:40:D7:4D:28
Certificate issuer: /CN=0a71234f2566349a2bdf17f892f8d4710bbff812
Certificate serial: 0189020C237F8A25E8BE21A2A9E1DFEB9208
Authority key identifier: 0A:71:23:4F:25:66:34:9A:2B:DF:17:F8:92:F8:D4:71:0B:BF:F8:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnEjTyVmNJor3xf4kvjUcQu_-BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4a5512-64c7-4f14-a2f0-55f6e25b5adb/1/70MwFcNt9cb91U7ZvY_iC0DXTSg.roa
Signing time: Wed 28 Jun 2023 12:48:17 +0000
ROA not before: Wed 28 Jun 2023 12:48:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199904
IP address blocks: 45.141.192.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:0c:23:7f:8a:25:e8:be:21:a2:a9:e1:df:eb:92:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a71234f2566349a2bdf17f892f8d4710bbff812
Validity
Not Before: Jun 28 12:48:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef433015c36df5c6fdd54ed9bd8fe20b40d74d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:09:af:eb:52:64:d8:a6:42:8f:f7:ea:e9:04:
ee:ae:cb:c1:af:54:bf:53:e2:77:0b:31:fe:35:00:
a3:88:9e:eb:fe:8a:83:8f:9a:e1:61:e9:96:56:98:
c3:31:c1:03:85:2e:ce:1f:c2:13:7f:0e:c3:d5:2c:
70:26:22:43:eb:9a:ce:98:e5:33:c0:ea:b2:dc:f0:
2a:1f:5b:16:95:da:fb:12:e3:5d:17:31:e0:f0:cd:
f1:77:6b:f3:5e:30:9e:58:db:6c:65:6e:89:4e:aa:
f0:c2:19:d6:75:22:1b:f9:bf:8b:a9:da:a8:a5:d3:
7e:ae:9d:88:a6:d8:34:6d:41:66:79:16:ca:b3:63:
dc:48:04:00:18:40:33:98:17:eb:61:de:b6:40:fe:
7d:ef:f2:70:fb:cc:54:dc:b3:ff:02:d2:e4:5c:3d:
9a:08:7b:9c:e8:01:c3:00:0f:36:c9:48:68:18:88:
17:33:54:19:56:d9:26:6d:35:fd:d7:43:c8:93:c7:
d7:ae:fd:39:85:88:03:54:a0:c5:e7:27:2b:42:49:
90:ae:ff:e7:d6:85:af:39:12:b9:d3:8a:20:be:4a:
22:e2:d1:1d:73:6d:b6:da:bb:de:f0:e4:eb:b8:ff:
94:00:ae:bb:c8:8d:89:27:97:23:92:84:c9:e7:0d:
9f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:43:30:15:C3:6D:F5:C6:FD:D5:4E:D9:BD:8F:E2:0B:40:D7:4D:28
X509v3 Authority Key Identifier:
keyid:0A:71:23:4F:25:66:34:9A:2B:DF:17:F8:92:F8:D4:71:0B:BF:F8:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnEjTyVmNJor3xf4kvjUcQu_-BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a5512-64c7-4f14-a2f0-55f6e25b5adb/1/70MwFcNt9cb91U7ZvY_iC0DXTSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a5512-64c7-4f14-a2f0-55f6e25b5adb/1/CnEjTyVmNJor3xf4kvjUcQu_-BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.192.0/22
Signature Algorithm: sha256WithRSAEncryption
58:94:cc:49:f2:79:26:d8:12:9b:e1:69:77:b4:bd:71:43:04:
98:a1:ea:c8:a0:f5:f6:37:74:36:f0:7f:57:11:d1:e4:e2:21:
23:13:c4:0b:25:7d:cb:6d:e2:86:22:08:ac:04:71:0b:8c:cd:
01:46:3c:c0:c0:8e:20:fd:f4:e7:26:97:dc:38:fb:5f:17:fa:
ed:6d:47:82:e6:aa:65:16:81:51:d9:13:9d:62:51:dc:e3:c1:
1b:d7:41:2b:4f:ba:78:29:e9:1b:be:c8:14:7d:34:31:67:f2:
09:9a:2a:aa:d2:51:d9:c4:f5:68:43:0a:b9:13:d6:19:5f:b7:
e2:e2:4e:4c:b2:bd:4c:01:79:8c:ef:c2:51:41:ae:d0:97:bc:
33:01:54:2d:6d:f5:fa:5c:90:2e:38:96:7a:03:87:b0:67:f5:
3c:37:06:2d:70:5e:25:77:bc:a7:d8:e1:c1:e9:2c:da:26:4a:
71:0c:26:0d:09:69:fb:62:e7:0c:9e:1f:0c:f9:c8:8e:0d:24:
b6:da:3d:e6:3f:ac:91:e1:4d:85:0b:62:0b:23:32:f7:2f:62:
ad:70:cb:83:69:95:24:93:8e:3f:db:eb:11:04:7f:57:5c:69:
9f:62:16:3a:09:b4:b8:7f:ef:6f:d8:b5:a4:5e:b9:dd:ce:f4:
bd:8a:33:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:34 2023 by rpki-client on console.sobornost.net