Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/47a11a-3708-4cc7-b815-d96b659e18b4/1/o9NRfw9wVN8fBJyEnPo3HL3Cj3g.roa
File: o9NRfw9wVN8fBJyEnPo3HL3Cj3g.roa (raw, json)
Hash identifier: vh7il0BrADyFhl0mRy3syWov72tdISi0KoCz/qgVlkE=
Subject key identifier: A3:D3:51:7F:0F:70:54:DF:1F:04:9C:84:9C:FA:37:1C:BD:C2:8F:78
Certificate issuer: /CN=ba83fffce8392ea83fb8cbe36b04e8608847c479
Certificate serial: 06179FA6
Authority key identifier: BA:83:FF:FC:E8:39:2E:A8:3F:B8:CB:E3:6B:04:E8:60:88:47:C4:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uoP__Og5Lqg_uMvjawToYIhHxHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/47a11a-3708-4cc7-b815-d96b659e18b4/1/o9NRfw9wVN8fBJyEnPo3HL3Cj3g.roa
Signing time: Sat 01 Jan 2022 00:58:49 +0000
ROA not before: Sat 01 Jan 2022 00:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 45.157.100.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102211494 (0x6179fa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba83fffce8392ea83fb8cbe36b04e8608847c479
Validity
Not Before: Jan 1 00:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3d3517f0f7054df1f049c849cfa371cbdc28f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:47:86:99:65:2e:f2:1f:4c:09:49:a0:53:0c:
a4:e1:6f:35:ed:ff:e2:96:d5:39:19:d7:e7:e4:79:
75:18:1e:74:99:3a:26:5e:1a:8f:40:87:a4:c1:81:
90:78:68:c3:a2:89:5a:b8:37:bd:1b:c7:3c:ff:d9:
9d:44:23:e4:7e:ce:3a:3d:f9:12:16:02:95:0f:32:
cb:7e:f7:0a:82:83:9f:8b:7d:fa:70:92:99:ef:66:
9c:13:6d:70:3d:b4:3d:c6:75:c1:5e:57:ab:0c:79:
a3:86:77:29:99:87:e6:50:b3:d4:a1:fe:23:e2:37:
1c:a6:eb:81:57:9b:0d:fd:89:0e:4b:fb:3c:84:f3:
18:a6:86:f4:76:05:89:ce:92:e7:b4:78:11:2f:24:
e6:07:d1:18:bb:fb:74:12:a3:03:bb:46:33:3a:11:
90:89:46:e3:ef:4c:1e:94:dc:ab:b3:17:c8:18:0f:
54:ae:63:7f:d1:34:44:47:5a:5c:16:6d:38:33:54:
04:62:a9:d9:0f:6a:9a:8d:2f:dc:6b:7d:c3:86:0c:
8b:21:de:ca:47:42:b0:3a:d1:51:35:b9:d3:76:61:
b8:1f:da:e6:66:f4:b3:b5:5a:7a:df:2f:85:e5:19:
16:36:3d:84:92:0a:e4:ed:e6:6f:13:44:e5:36:c1:
95:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D3:51:7F:0F:70:54:DF:1F:04:9C:84:9C:FA:37:1C:BD:C2:8F:78
X509v3 Authority Key Identifier:
keyid:BA:83:FF:FC:E8:39:2E:A8:3F:B8:CB:E3:6B:04:E8:60:88:47:C4:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uoP__Og5Lqg_uMvjawToYIhHxHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/47a11a-3708-4cc7-b815-d96b659e18b4/1/o9NRfw9wVN8fBJyEnPo3HL3Cj3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/47a11a-3708-4cc7-b815-d96b659e18b4/1/uoP__Og5Lqg_uMvjawToYIhHxHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.100.0/22
Signature Algorithm: sha256WithRSAEncryption
29:33:14:55:5c:4a:99:81:2c:b0:4a:db:93:da:51:62:ce:9a:
a7:4c:b1:e5:7a:bc:29:6d:cd:9e:9a:16:4e:90:47:f3:32:4b:
ad:41:01:4c:50:d3:8d:16:d6:6b:d6:e5:d0:a5:1c:f4:de:de:
fc:5e:21:a3:95:67:53:ef:09:a2:34:0e:5e:bd:73:35:46:e2:
fb:9b:cf:3a:6b:ee:f6:00:13:0b:78:f5:b6:5f:5e:05:86:8f:
8b:3c:08:19:ac:c5:4c:ab:a3:90:ec:9c:e4:30:08:0e:e8:54:
e1:0c:6e:79:ad:e7:a2:6b:6a:98:ce:b1:15:be:87:2f:51:e4:
0d:1c:53:6c:c6:52:2e:b7:a6:11:cc:0a:5f:9d:80:89:7a:c1:
99:ee:ea:58:f6:d9:19:44:a9:45:1f:ad:7e:d2:9d:cc:2a:24:
c0:53:cf:fa:64:ef:e4:6d:2a:d9:89:84:a9:81:fc:e9:ce:af:
d3:02:9a:f3:52:4c:a9:73:40:4b:3d:6f:d8:16:43:06:ea:bb:
e9:2a:d4:1d:8e:dc:bc:63:93:93:ad:0a:d3:f0:25:95:de:36:
2f:75:d3:3c:49:4c:15:b6:8b:5c:34:8e:59:32:78:01:ee:1f:
9a:9a:ef:c2:54:1c:77:ba:cd:17:68:15:16:30:94:ee:ff:67:
11:e2:a7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net