Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d98481-727f-48e8-8e4c-cef4cccd490c/1/us8tnJgK55kIvp26bCb6nhP6tTM.roa
File: us8tnJgK55kIvp26bCb6nhP6tTM.roa (raw, json)
Hash identifier: R/y0YK4LYfxWwQPR+z2yCIzHZfElw2rjUSZP8IVai3M=
Subject key identifier: BA:CF:2D:9C:98:0A:E7:99:08:BE:9D:BA:6C:26:FA:9E:13:FA:B5:33
Certificate issuer: /CN=94c5a1da70274e3df02c5208603dfcd4a9ef51dd
Certificate serial: 066B9D30
Authority key identifier: 94:C5:A1:DA:70:27:4E:3D:F0:2C:52:08:60:3D:FC:D4:A9:EF:51:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMWh2nAnTj3wLFIIYD381KnvUd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d98481-727f-48e8-8e4c-cef4cccd490c/1/us8tnJgK55kIvp26bCb6nhP6tTM.roa
Signing time: Sat 01 Jan 2022 12:05:38 +0000
ROA not before: Sat 01 Jan 2022 12:05:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200851
IP address blocks: 45.11.160.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107715888 (0x66b9d30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94c5a1da70274e3df02c5208603dfcd4a9ef51dd
Validity
Not Before: Jan 1 12:05:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bacf2d9c980ae79908be9dba6c26fa9e13fab533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:92:c7:62:4b:c5:08:00:fc:42:b8:43:64:ad:
ca:84:b3:05:31:3e:4d:7c:45:2b:52:e7:e7:ce:af:
26:f8:f6:6f:8f:a6:fb:7b:20:32:cd:6f:ba:4c:be:
6e:a9:f9:a5:06:02:bd:80:17:23:4c:70:ca:41:e9:
4b:78:f7:fc:5d:5f:f9:a6:b4:ab:6a:30:f9:3c:56:
02:47:b5:1b:30:ce:1a:6b:4f:bf:8b:ee:39:2e:f8:
2d:b4:4c:ee:21:1c:2e:20:8a:38:d8:69:2e:11:e4:
c8:c7:df:69:e6:ed:20:91:1c:e2:b0:9b:e4:5b:51:
69:e8:a8:8d:83:fe:84:36:5d:cb:cd:a6:b3:46:c8:
e5:af:7b:0d:09:1c:e5:01:b1:88:a3:73:aa:ca:97:
d5:6a:3f:77:17:7d:89:be:bc:9c:a4:6c:0d:7e:57:
0b:cd:4c:ea:90:4e:fd:12:31:ac:7d:db:0e:a9:ee:
90:4f:14:df:58:76:9c:3d:d6:0e:26:44:7c:db:fb:
a9:ef:ac:7a:c3:6c:fc:15:ca:a6:5f:ef:d3:81:0f:
bf:70:db:c9:f7:c3:be:64:b2:95:71:90:47:80:c0:
8c:81:c8:9e:14:1c:32:a3:3e:d7:ca:96:1a:5f:bc:
5f:87:b3:63:66:be:e5:54:15:24:50:f0:94:00:98:
60:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CF:2D:9C:98:0A:E7:99:08:BE:9D:BA:6C:26:FA:9E:13:FA:B5:33
X509v3 Authority Key Identifier:
keyid:94:C5:A1:DA:70:27:4E:3D:F0:2C:52:08:60:3D:FC:D4:A9:EF:51:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMWh2nAnTj3wLFIIYD381KnvUd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d98481-727f-48e8-8e4c-cef4cccd490c/1/us8tnJgK55kIvp26bCb6nhP6tTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d98481-727f-48e8-8e4c-cef4cccd490c/1/lMWh2nAnTj3wLFIIYD381KnvUd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.160.0/22
Signature Algorithm: sha256WithRSAEncryption
36:c0:af:ff:f4:f2:08:7f:20:28:58:62:ae:1a:ce:9b:67:1d:
81:14:c8:d8:04:35:13:c6:5d:5c:9c:13:5c:18:6b:86:f2:d2:
10:db:25:b3:e1:a2:dd:c1:0b:89:e9:be:7a:9d:36:7d:98:f9:
5a:63:13:01:46:94:d4:5a:35:bb:88:fe:1a:25:ae:e1:8a:32:
ba:26:e3:65:b3:8c:7e:75:2f:a8:6b:a1:9f:63:7f:07:ff:10:
3f:f3:53:d7:ac:c5:66:01:bb:7f:85:4b:dc:86:39:5b:9d:8d:
12:7e:02:ee:8e:90:c0:43:17:93:ba:ef:29:96:45:25:08:3a:
99:bb:ac:03:11:82:34:bc:e5:ea:a2:f1:7a:a0:67:aa:96:ac:
d4:80:4d:60:5c:98:3f:70:68:6a:7a:99:49:07:18:bb:12:47:
25:04:8c:e5:0b:87:86:5c:c9:17:7b:c9:3c:e1:48:ea:08:63:
e3:99:3c:4d:8e:a0:54:06:f2:2c:07:ce:e0:e5:19:54:72:d5:
5f:62:7a:21:ee:ca:b1:77:91:13:13:15:dd:ea:88:a1:cd:48:
32:1c:3f:1e:bf:e9:15:f3:e0:e6:6c:eb:29:16:d0:96:d0:1e:
e0:d2:c6:e3:ba:ec:d6:bf:1b:45:87:85:ca:dc:cd:3e:fd:6b:
91:2d:6d:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:38 2023 by rpki-client on console.sobornost.net