Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/hmW5HHQ-6TfbygR-cNFOS9yuZWA.roa
File: hmW5HHQ-6TfbygR-cNFOS9yuZWA.roa (raw, json)
Hash identifier: a9IQZri3P1ByGJlZ0E7PzwINfHhXuEt92pKXF2Kv7f4=
Subject key identifier: 86:65:B9:1C:74:3E:E9:37:DB:CA:04:7E:70:D1:4E:4B:DC:AE:65:60
Certificate issuer: /CN=9c8440d3e55babae92bc693ea39092f6e4f50c24
Certificate serial: 7A8E70
Authority key identifier: 9C:84:40:D3:E5:5B:AB:AE:92:BC:69:3E:A3:90:92:F6:E4:F5:0C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nIRA0-Vbq66SvGk-o5CS9uT1DCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/hmW5HHQ-6TfbygR-cNFOS9yuZWA.roa
Signing time: Sat 14 May 2022 06:23:41 +0000
ROA not before: Sat 14 May 2022 06:23:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 262287
IP address blocks: 45.149.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8031856 (0x7a8e70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c8440d3e55babae92bc693ea39092f6e4f50c24
Validity
Not Before: May 14 06:23:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8665b91c743ee937dbca047e70d14e4bdcae6560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a8:e3:95:ab:2d:47:f4:73:d3:a0:5d:ba:66:
64:4d:9b:f6:3a:14:24:38:a5:7a:45:e7:1b:1c:5a:
bf:41:a3:bb:08:ed:cc:aa:32:96:22:05:3b:34:95:
cb:14:d8:10:b2:24:e4:bb:30:98:db:69:01:39:28:
a8:54:48:0b:e7:e2:b5:f7:05:9b:ad:7f:1f:63:e1:
ca:48:1f:de:d2:de:cb:31:0b:e5:69:1d:33:9e:a3:
f2:26:0f:4e:cc:bf:d7:57:90:c2:34:f0:63:27:8e:
f9:9f:42:41:49:00:9b:be:2d:9b:33:4a:0b:cf:75:
88:a5:54:0c:e8:85:62:c8:ba:16:00:01:cc:0f:e1:
34:12:32:3d:19:1e:e0:df:27:79:35:28:84:89:7b:
93:3a:f4:83:42:02:be:a1:ca:32:85:c7:b8:b2:3b:
02:56:87:8f:63:af:19:9b:98:4a:b5:1b:a5:13:08:
22:d7:49:2d:47:14:f9:10:2b:b4:6c:49:1b:00:90:
76:2d:ae:e6:ac:67:82:4c:5b:66:81:e7:bc:59:eb:
36:60:18:89:6e:06:35:b6:da:7f:9b:ba:da:73:33:
1e:11:4c:2c:ef:64:2a:d8:5b:70:d0:6a:03:c6:93:
0c:f5:6f:eb:bd:64:0c:cd:19:c1:d1:7f:9e:49:2c:
10:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:65:B9:1C:74:3E:E9:37:DB:CA:04:7E:70:D1:4E:4B:DC:AE:65:60
X509v3 Authority Key Identifier:
keyid:9C:84:40:D3:E5:5B:AB:AE:92:BC:69:3E:A3:90:92:F6:E4:F5:0C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nIRA0-Vbq66SvGk-o5CS9uT1DCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/hmW5HHQ-6TfbygR-cNFOS9yuZWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/nIRA0-Vbq66SvGk-o5CS9uT1DCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.20.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:a7:58:c8:9e:61:2a:82:70:24:57:8c:18:40:09:e6:50:76:
53:9e:10:ef:69:60:34:3d:e3:72:29:78:c5:17:2c:77:8b:f3:
f3:3a:a7:07:ab:29:7b:de:c4:26:4a:7f:6b:32:c6:4a:c7:ca:
4a:56:c9:91:89:27:f3:0b:9e:46:f2:db:61:58:a9:84:ae:63:
ac:7c:45:c9:20:39:af:49:cc:0d:67:1d:51:bb:79:ee:f2:96:
2d:fc:6f:ba:7c:60:c9:c8:0b:e1:6d:46:6b:24:f8:20:52:13:
cd:f8:53:ab:b5:22:40:0a:89:8f:d0:d8:1f:12:d8:1b:c2:80:
16:c4:c5:ab:fa:4a:b2:a0:da:77:de:91:8b:b2:46:80:5b:3f:
09:21:75:c2:88:00:f1:5a:88:48:a8:bc:76:12:a6:80:39:5e:
02:80:ff:16:b1:6a:a1:4e:e7:d7:ae:da:c4:f7:58:20:56:22:
36:a5:f8:96:41:7b:78:4b:84:82:bc:8a:b3:5d:8a:71:c8:1f:
4d:14:17:dd:42:0f:8d:ce:de:8a:7f:a8:c4:77:65:b8:2f:5c:
fc:a1:15:27:79:2b:62:10:7b:fb:61:0c:1b:0b:fb:e5:23:da:
d6:0b:3b:5a:f1:88:41:7c:9d:3f:f7:c2:f6:9a:23:68:c6:a0:
5e:d6:f1:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:53 2023 by rpki-client on console.sobornost.net