Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/d1a94a-fbe7-4f5d-a84c-c5c5b8cb437f/1/cp5asj8fHuiDeZYnV6k6PKrW4y8.roa
File: cp5asj8fHuiDeZYnV6k6PKrW4y8.roa (raw, json)
Hash identifier: Pd7PtpiuyJL/8POMnHvg41ldaZQi8d+8gL7q+/4UxTM=
Subject key identifier: 72:9E:5A:B2:3F:1F:1E:E8:83:79:96:27:57:A9:3A:3C:AA:D6:E3:2F
Certificate issuer: /CN=0336efb1f60531bf1885ad003b161c7ffe635376
Certificate serial: 08BC0462
Authority key identifier: 03:36:EF:B1:F6:05:31:BF:18:85:AD:00:3B:16:1C:7F:FE:63:53:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AzbvsfYFMb8Yha0AOxYcf_5jU3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/d1a94a-fbe7-4f5d-a84c-c5c5b8cb437f/1/cp5asj8fHuiDeZYnV6k6PKrW4y8.roa
Signing time: Mon 25 Apr 2022 11:11:21 +0000
ROA not before: Mon 25 Apr 2022 11:11:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39421
IP address blocks: 45.90.163.0/24 maxlen: 24
45.90.162.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146539618 (0x8bc0462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0336efb1f60531bf1885ad003b161c7ffe635376
Validity
Not Before: Apr 25 11:11:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=729e5ab23f1f1ee88379962757a93a3caad6e32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1a:5f:dd:c3:bc:c3:ab:a3:b6:3c:24:ed:48:
e9:4a:07:30:50:a1:d6:92:38:94:04:0a:94:f5:97:
98:3c:05:40:83:5c:69:48:77:0c:c8:2a:fd:cb:77:
42:4c:8a:fa:cd:b6:45:78:1f:9d:51:ee:74:3b:88:
e4:7a:87:49:4a:26:00:79:34:bf:ab:64:31:6d:6a:
02:00:c5:30:45:96:93:2f:ff:d3:ef:c4:1f:52:ac:
91:68:23:f4:41:75:d9:aa:fa:45:d6:3c:70:42:ca:
4a:d3:54:42:51:08:9c:14:ee:88:bf:d1:f2:03:50:
ea:5b:94:c7:36:da:7a:ce:a7:02:88:ab:20:f6:89:
06:bf:39:d2:b7:4b:fc:5f:37:c7:15:a9:06:ba:25:
d5:0e:67:0d:95:3d:da:6d:9f:08:33:3e:c5:9e:83:
ca:2e:4d:21:1e:18:be:21:d3:a8:8e:ae:09:60:29:
69:fa:2c:36:14:b9:3f:8d:82:58:9f:9f:1f:54:e0:
4c:5f:bd:82:77:d5:02:3b:f6:21:fc:14:25:05:e8:
47:36:5e:0c:60:f6:a2:13:f5:aa:6a:bf:5b:80:2a:
5b:42:e5:63:4e:95:01:a4:63:fe:22:25:e9:ab:ab:
00:91:31:8e:d3:07:72:d4:10:38:d2:be:70:b7:cb:
81:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9E:5A:B2:3F:1F:1E:E8:83:79:96:27:57:A9:3A:3C:AA:D6:E3:2F
X509v3 Authority Key Identifier:
keyid:03:36:EF:B1:F6:05:31:BF:18:85:AD:00:3B:16:1C:7F:FE:63:53:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AzbvsfYFMb8Yha0AOxYcf_5jU3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/d1a94a-fbe7-4f5d-a84c-c5c5b8cb437f/1/cp5asj8fHuiDeZYnV6k6PKrW4y8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/d1a94a-fbe7-4f5d-a84c-c5c5b8cb437f/1/AzbvsfYFMb8Yha0AOxYcf_5jU3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.162.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:85:10:1a:7e:03:1b:05:f9:18:ba:ee:f2:b8:54:43:7a:d2:
99:fb:fb:5f:b2:1e:7e:3d:43:09:49:91:5a:8b:38:62:46:53:
de:5f:60:21:91:18:ff:2d:5a:ad:9a:e6:8e:ce:56:02:2b:f6:
18:3e:05:e1:6e:57:12:3d:da:f0:10:89:a9:d5:db:9f:01:62:
3b:8d:19:5b:a1:a4:be:26:7c:a0:11:0a:cc:21:56:fe:82:93:
73:21:40:7a:60:72:81:7b:67:4a:c1:f8:bb:23:82:a5:bc:6d:
4c:fb:94:d0:df:c9:5a:9e:38:15:e3:2d:66:a0:52:59:e4:82:
70:72:ab:f6:15:67:c0:87:8f:6a:34:32:8e:9f:99:26:d9:6f:
e0:a0:db:c0:99:f3:f0:c5:bd:c4:a9:19:08:3c:13:e9:b8:a8:
24:ad:15:86:df:5a:c8:44:25:8c:50:8e:d4:17:eb:b2:2d:98:
a7:ee:4c:52:11:cf:ab:ed:db:2c:94:ed:fe:fa:9c:29:1b:a9:
62:5f:c1:ac:a7:e8:5b:ae:b7:66:7a:6f:8b:3a:59:ad:ac:62:
a9:12:86:3d:32:de:86:c5:66:98:28:49:0f:e9:f6:88:e8:19:
c2:5f:71:13:2a:fb:3e:60:63:59:37:51:b9:c5:7a:11:41:1e:
81:36:a6:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:33 2023 by rpki-client on console.sobornost.net