Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/14qY3wLhQ6oOpgIGn39GzFGac1E.roa
File: 14qY3wLhQ6oOpgIGn39GzFGac1E.roa (raw, json)
Hash identifier: tswfLjWeJa5jRIUlpW1Nr7wTyVwh71bz5n4hP6YvEsE=
Subject key identifier: D7:8A:98:DF:02:E1:43:AA:0E:A6:02:06:9F:7F:46:CC:51:9A:73:51
Certificate issuer: /CN=02da06259534dc452089d291ad277eeac16cd42a
Certificate serial: 018C1DF679EC91D9C64AD231696FD743CC8B
Authority key identifier: 02:DA:06:25:95:34:DC:45:20:89:D2:91:AD:27:7E:EA:C1:6C:D4:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AtoGJZU03EUgidKRrSd-6sFs1Co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/14qY3wLhQ6oOpgIGn39GzFGac1E.roa
Signing time: Thu 30 Nov 2023 02:02:21 +0000
ROA not before: Thu 30 Nov 2023 02:02:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31863
IP address blocks: 45.91.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1d:f6:79:ec:91:d9:c6:4a:d2:31:69:6f:d7:43:cc:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02da06259534dc452089d291ad277eeac16cd42a
Validity
Not Before: Nov 30 02:02:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d78a98df02e143aa0ea602069f7f46cc519a7351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:58:7d:de:a1:66:60:46:1f:11:d6:5e:b8:39:
c2:b8:23:42:1f:96:68:91:53:70:73:78:11:7c:0e:
7d:99:29:b4:cb:f0:29:1a:f3:27:e6:eb:22:97:f3:
c1:f2:f2:1c:fe:2e:e8:b3:7a:9e:b1:85:ab:4a:90:
29:f8:db:20:02:ce:ec:24:1b:b0:36:26:a2:6e:ae:
21:fb:0f:c4:f9:98:73:f8:a6:6d:b1:54:3e:19:c4:
4b:6d:2f:39:89:36:f5:89:db:50:65:46:97:4d:c9:
af:f9:89:13:8c:82:80:ad:81:a6:0f:8c:ad:78:04:
16:70:1b:68:3e:15:d6:81:01:30:48:fe:a7:31:22:
1a:07:61:34:21:44:6f:40:3a:bd:33:1f:c8:be:a2:
b7:03:49:e3:df:0e:30:7e:1b:85:93:e6:d2:8f:52:
1c:b5:d2:f0:54:81:f9:89:2a:75:b2:bb:7c:d9:94:
a0:42:66:9c:68:b1:c2:6c:fd:63:22:7a:9c:69:30:
b9:c5:79:fa:38:6f:60:a1:87:24:8e:87:78:69:b4:
95:73:e2:77:6e:54:17:83:e3:ba:ee:08:13:24:de:
8d:12:34:2b:79:e3:50:e6:45:3f:d9:62:98:6a:48:
e1:f8:4d:e6:61:41:fb:d1:46:42:d4:f7:c0:5c:80:
5c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8A:98:DF:02:E1:43:AA:0E:A6:02:06:9F:7F:46:CC:51:9A:73:51
X509v3 Authority Key Identifier:
keyid:02:DA:06:25:95:34:DC:45:20:89:D2:91:AD:27:7E:EA:C1:6C:D4:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AtoGJZU03EUgidKRrSd-6sFs1Co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/14qY3wLhQ6oOpgIGn39GzFGac1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3f5c21-7b3b-40f7-8851-cd32f0d4086b/1/AtoGJZU03EUgidKRrSd-6sFs1Co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.224.0/24
Signature Algorithm: sha256WithRSAEncryption
98:26:7f:e1:36:9f:64:f4:67:77:96:0b:0e:f8:67:4e:11:5d:
5e:ec:e7:e0:67:68:6f:ab:c4:2f:c8:da:c1:bd:4c:0b:04:0d:
1f:0d:51:40:fd:de:e0:cb:c5:a1:19:08:63:a3:27:65:0a:b8:
eb:d6:76:3d:ba:04:20:dd:0c:5c:67:bd:aa:e9:65:92:4d:13:
15:b4:5f:25:f8:aa:fe:42:eb:45:4b:a9:d5:87:79:fe:ae:ad:
e2:b6:db:55:c1:11:2c:6a:35:b6:bb:ab:52:27:e0:ff:d5:cc:
30:bb:23:2d:d3:d0:f5:62:e7:1f:a4:50:4e:24:69:8e:e2:10:
a1:f4:b9:91:b8:b1:59:bc:7c:29:e1:50:50:92:a2:60:f1:1a:
6e:22:7c:dc:06:7f:40:b0:47:a6:61:a0:cc:2c:86:84:ce:90:
bd:54:bf:37:41:6a:4f:0e:b3:4f:f4:70:cf:3c:fc:45:12:88:
a8:11:f3:91:64:e7:22:70:24:89:73:be:82:7a:1c:95:9d:5e:
d4:5d:62:35:56:0d:17:8a:63:82:08:9b:da:d4:6e:72:45:d4:
26:6b:93:c4:f1:79:d5:d9:9e:ce:0f:21:12:e4:f2:1c:41:9c:
ac:ef:d9:d1:b9:8f:63:91:0b:47:8a:30:c9:56:f4:d0:23:34:
aa:4c:8c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net