Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/ahmZdEFzM0-QZM1lj-oSBHTWylQ.roa
File: ahmZdEFzM0-QZM1lj-oSBHTWylQ.roa (raw, json)
Hash identifier: ljADtBccuHKbSIDB0coH1XZ3gr2HBoVdDhn4r1J0qAo=
Subject key identifier: 6A:19:99:74:41:73:33:4F:90:64:CD:65:8F:EA:12:04:74:D6:CA:54
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 018CC64B34A44F2568AA60C763EADC820B7D
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/ahmZdEFzM0-QZM1lj-oSBHTWylQ.roa
Signing time: Mon 01 Jan 2024 18:31:06 +0000
ROA not before: Mon 01 Jan 2024 18:31:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208486
IP address blocks: 45.149.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:34:a4:4f:25:68:aa:60:c7:63:ea:dc:82:0b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Jan 1 18:31:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a1999744173334f9064cd658fea120474d6ca54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:88:17:cc:ea:44:ec:1f:79:9b:93:b3:51:bb:
fe:4b:18:f4:a3:87:36:1c:83:d7:cc:ba:ed:b3:a9:
91:ab:03:6c:f8:f6:57:76:30:5f:36:c0:4d:d2:bd:
05:a8:0b:6d:fb:9a:3f:1f:35:b6:a3:87:0a:7a:55:
6a:08:1f:47:f3:1d:26:34:d0:1a:4b:fe:30:50:2d:
2d:3a:c9:cf:fb:55:38:1f:41:cb:7b:28:4a:86:7c:
5d:2b:f9:69:9e:7b:5a:1b:25:f1:c7:bd:d7:93:03:
08:f6:06:3a:ad:c3:14:f2:c4:e8:40:58:40:98:4e:
9a:61:4e:3a:08:a1:eb:1e:cc:03:e7:74:e6:77:e5:
db:aa:6b:63:7a:04:6b:8a:08:ff:ca:c1:2e:e0:3f:
7d:b7:da:c7:b8:08:75:26:a4:c8:ab:49:bf:88:9f:
ca:09:67:bf:e0:81:14:a5:2c:4e:ee:49:11:46:7d:
fc:cc:8e:28:fd:3d:ee:bb:a1:8d:de:44:ba:a5:ce:
59:20:38:85:6f:fc:26:ee:99:c4:8a:1f:6f:59:f3:
00:11:ae:fd:eb:21:64:be:34:f7:58:a5:ab:87:47:
4c:94:cb:13:7a:95:39:21:92:94:79:1e:94:fc:f5:
49:92:7f:be:75:ef:b7:d6:ab:f3:ba:46:04:ec:93:
e1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:19:99:74:41:73:33:4F:90:64:CD:65:8F:EA:12:04:74:D6:CA:54
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/ahmZdEFzM0-QZM1lj-oSBHTWylQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.180.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:03:99:68:d5:6f:57:a3:f2:16:fc:29:cc:07:af:f4:2a:95:
42:94:16:83:53:2d:b0:48:76:63:90:1b:b7:a2:6b:a4:94:2f:
0c:15:73:08:c8:e6:c8:41:12:23:73:38:7b:7f:65:ca:f5:ff:
3f:51:cf:4d:fd:83:eb:e1:f4:18:f6:f9:79:ee:d8:11:28:b9:
46:9c:66:a0:16:82:7e:3d:5b:31:cf:91:ff:96:08:ef:a4:95:
b7:b7:b8:9d:16:63:3e:84:2d:5d:1c:2a:75:fa:dd:1e:fb:a3:
d4:18:f9:41:96:01:f9:b6:22:8c:47:9e:89:b2:49:70:e1:fe:
ac:20:63:43:95:4d:d3:ea:dc:52:cd:8d:ce:80:ce:e5:f5:8a:
bf:b5:4f:57:12:54:44:97:66:22:44:be:20:57:0f:9b:12:23:
35:51:cf:f2:63:c0:dc:79:c8:c5:e9:bc:3f:0b:f9:26:fd:ae:
36:f0:4c:2e:27:3f:ec:e1:24:37:6c:34:9a:7c:31:de:0d:34:
dd:9e:a9:33:3d:3b:4c:25:5c:06:0f:09:5b:56:81:b2:06:83:
84:72:0f:c9:06:a6:55:dc:2a:c6:ec:5f:6d:69:6f:1a:9a:0c:
e8:ee:a1:54:dc:b9:45:80:8e:26:f5:09:18:ee:c7:3a:c8:19:
92:97:fd:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:49 2024 by rpki-client on console.sobornost.net