Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/u2eIV4I-f451A4GMam-MF-4qbIQ.roa
File: u2eIV4I-f451A4GMam-MF-4qbIQ.roa (raw, json)
Hash identifier: 6xuB4UqyKrRMFfwTx2T300jyL43TFRfVdBAeWoOEzYE=
Subject key identifier: BB:67:88:57:82:3E:7F:8E:75:03:81:8C:6A:6F:8C:17:EE:2A:6C:84
Certificate issuer: /CN=4c9554c840b2fad265ecd793304a36e563268e2a
Certificate serial: 018570CC0C4242753DFB000C3D01A29D03A6
Authority key identifier: 4C:95:54:C8:40:B2:FA:D2:65:EC:D7:93:30:4A:36:E5:63:26:8E:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJVUyECy-tJl7NeTMEo25WMmjio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/u2eIV4I-f451A4GMam-MF-4qbIQ.roa
Signing time: Mon 02 Jan 2023 04:44:58 +0000
ROA not before: Mon 02 Jan 2023 04:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 45.86.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cc:0c:42:42:75:3d:fb:00:0c:3d:01:a2:9d:03:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c9554c840b2fad265ecd793304a36e563268e2a
Validity
Not Before: Jan 2 04:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb678857823e7f8e7503818c6a6f8c17ee2a6c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5a:04:6c:5c:f9:27:a2:d7:6a:31:3b:40:e9:
7d:94:75:e5:7c:97:f0:ea:5b:8a:1e:45:43:25:16:
a4:f7:f4:19:1a:06:c0:ff:c0:ca:63:a1:30:51:91:
25:fc:c4:5c:b8:cb:cc:56:6f:36:f8:3e:e1:0d:5e:
14:ed:86:ff:84:25:9f:e4:ee:52:39:ba:08:f8:22:
5d:d3:ce:19:f1:90:fc:43:ac:f2:bb:0e:2e:50:20:
4e:c8:28:da:fa:6d:08:c2:14:3e:b7:6d:50:c9:ef:
b5:07:88:42:20:aa:ac:29:c6:57:70:ca:ce:67:c5:
43:fe:f6:07:00:c4:d2:5b:23:94:62:cb:f3:54:b8:
4b:75:29:d6:7c:31:3f:77:21:e7:10:1c:0c:55:01:
a5:d7:87:8a:1f:f5:c4:69:f2:9a:cf:4c:6b:57:73:
cd:6f:c5:16:ef:e8:27:b6:be:29:50:6e:31:63:9e:
08:26:aa:9d:b7:2e:51:99:41:29:64:b4:84:38:24:
ef:e8:3f:33:78:df:b8:a0:3b:87:f9:fd:75:56:3c:
06:10:ab:90:15:1a:63:66:a3:b9:71:0f:63:a3:e5:
cc:38:5f:bf:2e:79:29:5f:b2:5f:69:81:b7:e9:4e:
5b:8f:6b:c7:44:d6:71:dc:bf:2d:25:6c:73:4b:c4:
62:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:67:88:57:82:3E:7F:8E:75:03:81:8C:6A:6F:8C:17:EE:2A:6C:84
X509v3 Authority Key Identifier:
keyid:4C:95:54:C8:40:B2:FA:D2:65:EC:D7:93:30:4A:36:E5:63:26:8E:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJVUyECy-tJl7NeTMEo25WMmjio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/u2eIV4I-f451A4GMam-MF-4qbIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1d8824-545a-4b05-8daf-7d87c1940fe9/1/TJVUyECy-tJl7NeTMEo25WMmjio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.37.0/24
Signature Algorithm: sha256WithRSAEncryption
31:33:d5:dc:b6:4d:d3:ab:8f:51:00:bf:a7:e2:a8:b7:5b:14:
4c:3c:72:ef:5f:d6:6b:ae:f7:98:53:f9:e9:e6:98:73:95:b4:
b2:0b:59:8e:98:4f:86:db:f4:3d:73:22:b1:83:fc:16:e1:1b:
c3:8a:af:01:6a:09:d2:3e:37:58:0e:42:1c:6a:9a:52:45:64:
24:da:ec:c9:c2:02:bc:f4:b2:87:99:90:70:60:2e:00:fe:9b:
f4:14:b5:14:33:f8:90:6a:27:4a:29:12:76:c9:9a:e8:3b:b9:
88:84:b3:31:c4:53:50:14:ef:ed:3d:3c:56:17:97:e6:1d:ac:
ac:8c:74:7f:c2:d9:c2:d5:db:d3:0e:a0:cf:1a:dd:60:d2:c6:
18:6e:2e:1e:0f:22:67:6d:17:9d:a5:b4:69:54:cb:ed:33:cb:
0c:a0:a1:b6:ca:24:13:d0:db:76:89:db:7d:bd:d5:53:11:cb:
2e:da:54:b2:87:cb:5a:99:2a:69:91:49:33:bc:d1:ed:5f:ab:
21:27:9d:dd:4f:15:cd:09:89:4f:f9:12:08:1a:ba:d9:10:30:
c4:f2:4e:66:96:af:1c:a0:e5:9b:b5:2e:f3:78:7f:f5:9e:44:
6f:bd:06:b2:23:8c:d3:fd:06:2c:b7:03:e6:b4:02:13:11:2c:
ed:5b:35:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:08 2023 by rpki-client on console.sobornost.net