Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/VHu83DgXcfkjG48VOyxzLNcfDnk.roa
File: VHu83DgXcfkjG48VOyxzLNcfDnk.roa (raw, json)
Hash identifier: bjDOFvmEZuoL2JKTHgQ1qoo3RCOUQoWaRw1NfWwcZMI=
Subject key identifier: 54:7B:BC:DC:38:17:71:F9:23:1B:8F:15:3B:2C:73:2C:D7:1F:0E:79
Certificate issuer: /CN=36980b4863a4c0fc109e933a9f8f7892e42622f8
Certificate serial: 018CC7261A9EF83F0EB4B0E976F69E34E31D
Authority key identifier: 36:98:0B:48:63:A4:C0:FC:10:9E:93:3A:9F:8F:78:92:E4:26:22:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpgLSGOkwPwQnpM6n494kuQmIvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/VHu83DgXcfkjG48VOyxzLNcfDnk.roa
Signing time: Mon 01 Jan 2024 22:30:12 +0000
ROA not before: Mon 01 Jan 2024 22:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212041
IP address blocks: 45.130.24.0/24 maxlen: 31
45.130.26.0/24 maxlen: 31
45.130.25.0/24 maxlen: 31
45.130.27.0/24 maxlen: 31
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:1a:9e:f8:3f:0e:b4:b0:e9:76:f6:9e:34:e3:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36980b4863a4c0fc109e933a9f8f7892e42622f8
Validity
Not Before: Jan 1 22:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=547bbcdc381771f9231b8f153b2c732cd71f0e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:91:11:26:82:04:54:72:1d:6d:16:45:79:16:
f7:67:47:7a:ad:a1:57:45:12:70:d4:93:f0:45:b2:
73:45:11:de:77:d6:0c:98:5a:c0:18:a7:d3:78:bb:
17:53:9d:4b:87:7c:67:6e:00:eb:e5:0e:30:ff:be:
77:a4:5e:1c:b1:92:01:38:19:95:71:39:c7:1f:02:
34:9e:ee:d8:6d:7c:ab:0e:f8:92:04:f7:aa:e2:60:
94:a1:e8:51:56:f9:0d:da:8c:12:78:79:9c:20:57:
95:ff:57:ee:13:e2:a1:a1:0b:74:a5:e6:ff:16:f1:
cf:58:d1:28:c4:7a:87:80:6e:18:4e:e8:37:dc:f5:
81:cd:aa:0a:47:cd:26:95:2d:05:a8:65:06:86:21:
b7:13:8d:f3:b4:17:fd:dc:f7:8d:de:01:76:1e:0e:
b6:97:c8:fd:5e:7d:58:c3:e4:9e:3a:5e:d3:06:1c:
dd:62:1d:0a:3a:ed:a0:55:25:06:a2:86:56:af:2d:
6f:d2:b3:80:90:71:3b:d1:32:3c:e5:92:69:6d:52:
2d:8d:49:f5:8a:9e:fe:27:da:a2:ea:8e:e5:3c:6c:
f7:1a:8f:5a:d8:0a:8b:97:32:78:75:d4:a3:91:c4:
c8:66:21:2d:2f:de:8a:84:29:25:3d:ef:24:c9:d4:
0c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7B:BC:DC:38:17:71:F9:23:1B:8F:15:3B:2C:73:2C:D7:1F:0E:79
X509v3 Authority Key Identifier:
keyid:36:98:0B:48:63:A4:C0:FC:10:9E:93:3A:9F:8F:78:92:E4:26:22:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpgLSGOkwPwQnpM6n494kuQmIvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/VHu83DgXcfkjG48VOyxzLNcfDnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/NpgLSGOkwPwQnpM6n494kuQmIvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.24.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:50:97:1b:46:3f:37:be:27:ca:6a:c7:3c:ef:4d:6f:04:60:
68:bc:67:2b:6e:71:78:a5:15:a7:68:5d:74:5b:a6:6d:f3:0d:
e3:72:55:f2:c8:8f:55:8a:25:35:ed:39:cb:73:c2:af:77:dd:
a6:14:7c:21:94:ea:dc:08:ca:57:77:ff:8b:16:bb:f6:98:51:
3c:c7:76:51:20:ca:cd:bb:6b:0d:9e:fe:df:64:25:78:d6:77:
c8:d2:70:73:9b:0d:cd:ed:54:46:59:4d:89:8e:63:74:1d:f0:
cb:c6:2f:86:34:0f:6b:58:37:d8:2b:d9:d7:36:f3:eb:8e:1d:
01:5b:08:75:3e:d8:04:af:b6:b9:6f:16:b8:ef:fa:5a:69:de:
ed:a4:de:ed:9a:e2:e3:f5:2f:95:75:bc:ba:96:05:6c:6b:e3:
df:46:66:c7:7a:6b:7c:f5:ab:5b:15:e4:3c:8f:f9:6e:0d:a6:
40:c5:0e:0d:af:a5:eb:e7:7d:99:63:98:06:65:ca:41:e8:5a:
bc:94:4c:d5:af:9a:a4:80:11:ca:e0:4a:6a:33:ba:cb:c7:d4:
ee:3b:6f:a0:a1:df:38:26:37:83:3e:de:4c:8d:03:fc:8a:35:
df:dc:fb:ad:8b:3c:f5:60:49:d5:52:03:be:08:f6:09:34:4f:
99:bf:a0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:07 2024 by rpki-client on console.sobornost.net