Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/b8badc-b15d-4558-b58e-c6e68c8e8e3e/1/A6N10ttXt_bBGxSuwhiEOBa1HKQ.roa
File: A6N10ttXt_bBGxSuwhiEOBa1HKQ.roa (raw, json)
Hash identifier: ilNtM4S8NL2KjdxdVBNGeV+48ongb51x8WoKXM/vpcg=
Subject key identifier: 03:A3:75:D2:DB:57:B7:F6:C1:1B:14:AE:C2:18:84:38:16:B5:1C:A4
Certificate issuer: /CN=49324f3d95d1b9b96d0faf0df92dafa849ad4796
Certificate serial: 01857082CFF89790EC583D92DA8AE7FFFA95
Authority key identifier: 49:32:4F:3D:95:D1:B9:B9:6D:0F:AF:0D:F9:2D:AF:A8:49:AD:47:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/STJPPZXRubltD68N-S2vqEmtR5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/b8badc-b15d-4558-b58e-c6e68c8e8e3e/1/A6N10ttXt_bBGxSuwhiEOBa1HKQ.roa
Signing time: Mon 02 Jan 2023 03:24:59 +0000
ROA not before: Mon 02 Jan 2023 03:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136933
IP address blocks: 45.149.17.0/24 maxlen: 24
45.149.16.0/24 maxlen: 24
45.149.19.0/24 maxlen: 24
45.149.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:cf:f8:97:90:ec:58:3d:92:da:8a:e7:ff:fa:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49324f3d95d1b9b96d0faf0df92dafa849ad4796
Validity
Not Before: Jan 2 03:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03a375d2db57b7f6c11b14aec218843816b51ca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:4b:d5:32:2e:de:f9:af:de:d4:6a:95:0a:1c:
d5:6a:1d:36:30:a9:dd:4c:45:95:45:aa:c5:bf:78:
a4:e8:5c:cf:15:a2:16:de:80:2c:33:9d:bc:dc:10:
fc:f1:64:e4:58:44:ea:ef:41:f7:68:5d:ff:b0:b2:
b9:7c:44:8d:3f:3b:79:08:09:d1:14:6b:77:90:7c:
29:3c:3a:03:00:d5:5a:03:39:1f:87:5c:e0:be:4e:
fc:1f:90:93:47:9f:57:e3:33:28:39:70:7e:2a:7f:
7d:45:97:33:54:7d:de:97:7e:cf:bc:45:ed:d3:ad:
17:33:88:41:b8:b8:6a:70:3b:0a:61:46:70:9e:80:
8a:8f:3e:40:2a:26:4e:7c:83:34:1d:eb:b2:e0:5f:
45:97:7d:6f:3b:08:f9:41:c2:ad:c3:9b:f4:b2:4c:
03:ac:23:a2:da:49:e2:da:c2:14:8e:fd:a4:a4:be:
ae:93:88:b8:b1:e1:4a:df:7e:85:54:79:62:38:79:
0a:42:50:14:00:5d:da:d1:8f:37:3a:e8:d3:68:2c:
72:e7:75:df:f5:b4:42:fb:03:0b:cf:91:8d:71:5f:
2e:eb:e6:a9:f8:eb:a8:84:e8:00:41:85:25:0c:1f:
0c:0c:a5:9d:73:7c:86:82:8d:04:9c:62:3c:27:7a:
81:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A3:75:D2:DB:57:B7:F6:C1:1B:14:AE:C2:18:84:38:16:B5:1C:A4
X509v3 Authority Key Identifier:
keyid:49:32:4F:3D:95:D1:B9:B9:6D:0F:AF:0D:F9:2D:AF:A8:49:AD:47:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/STJPPZXRubltD68N-S2vqEmtR5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b8badc-b15d-4558-b58e-c6e68c8e8e3e/1/A6N10ttXt_bBGxSuwhiEOBa1HKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b8badc-b15d-4558-b58e-c6e68c8e8e3e/1/STJPPZXRubltD68N-S2vqEmtR5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.16.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:77:ab:21:cd:f5:7e:45:85:bd:5d:2d:f4:fc:26:4b:f3:21:
10:fd:72:7c:30:14:e1:4e:01:a2:70:3b:f6:58:e3:1d:26:f1:
a3:74:27:ec:9c:fd:2b:21:6a:82:ac:bc:68:c3:b6:1b:7a:53:
5c:f0:11:94:52:ef:8a:4b:a1:6c:67:8b:27:ae:57:a5:64:02:
7e:c0:d7:62:f3:8c:09:49:ff:de:04:7e:04:ef:5d:3b:c6:e5:
b7:df:e9:f8:a9:d6:59:a6:43:6b:47:7d:89:c3:42:2f:41:95:
54:72:ca:72:e7:d7:bb:65:b9:f7:db:5a:29:7d:f5:9d:59:7a:
48:02:13:0d:f7:24:fb:fc:3b:5c:92:dd:64:90:f4:2e:d1:e0:
85:1a:21:5b:e6:10:f8:70:4f:ef:d2:dd:7e:00:7b:49:8e:d9:
1f:78:1f:a8:cf:d4:dd:ab:83:f2:7a:18:89:61:f7:26:ed:30:
62:26:ae:9c:66:63:2c:c7:a2:3e:e9:11:a7:d8:f9:d1:eb:06:
af:25:24:5b:16:91:fd:05:4d:c3:76:a2:dd:98:b8:a4:0f:cd:
58:c7:e0:32:44:ee:dc:fe:cb:ad:b7:b7:bd:d4:95:6e:6f:5d:
ca:54:f2:d3:dd:04:56:6c:2e:a5:fd:80:bd:b7:12:b7:58:dd:
c2:4d:59:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:56 2023 by rpki-client on console.sobornost.net