Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/0DP8UK1fUsSvdDtsrpFW-qxjblk.roa
File: 0DP8UK1fUsSvdDtsrpFW-qxjblk.roa (raw, json)
Hash identifier: SwXUMRfePlP7U2jyJ7Iewgi0i4AUnQPlqo0j0ukrqrE=
Subject key identifier: D0:33:FC:50:AD:5F:52:C4:AF:74:3B:6C:AE:91:56:FA:AC:63:6E:59
Certificate issuer: /CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Certificate serial: 0193BAF95459C1C4CE3C8AF60B4534E58812
Authority key identifier: C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/0DP8UK1fUsSvdDtsrpFW-qxjblk.roa
Signing time: Thu 12 Dec 2024 13:05:22 +0000
ROA not before: Thu 12 Dec 2024 13:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5089
IP address blocks: 45.157.158.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ba:f9:54:59:c1:c4:ce:3c:8a:f6:0b:45:34:e5:88:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Validity
Not Before: Dec 12 13:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d033fc50ad5f52c4af743b6cae9156faac636e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ad:6a:8b:e4:58:82:c0:8b:c0:26:13:8d:d6:
5b:ae:fd:db:e6:23:4e:aa:16:55:45:e9:a9:5c:b4:
e1:2b:25:15:75:99:b7:e4:4d:13:58:3e:bc:38:89:
68:0e:3a:88:75:f7:7b:5c:e1:53:70:35:e6:0a:a0:
7c:11:24:b0:7d:79:82:fd:c8:57:6c:05:5e:ea:4b:
05:3a:33:30:cd:4d:b4:1e:51:3a:59:51:45:92:40:
05:a7:92:e7:d6:8d:cc:8b:4b:0a:c0:cd:8f:1e:25:
8d:6f:eb:8d:27:4a:27:2a:a4:d3:e3:2c:1c:63:43:
82:60:ec:a8:eb:d5:a8:4d:01:cf:44:26:6b:f5:1a:
26:49:b9:8f:27:c5:2f:b8:56:51:e6:23:18:b9:d3:
59:59:01:54:b7:1d:f6:a0:87:38:e8:e0:f4:2f:e1:
a6:8a:7c:24:7c:bb:d8:4c:67:c5:af:e3:72:24:91:
b4:cd:e3:0b:2d:a1:ab:78:4a:3b:b7:bc:1d:49:7b:
e3:bb:78:0c:e2:80:fb:cf:a9:2d:45:a8:ce:7a:9b:
87:12:6f:df:db:99:b8:77:c8:bf:18:96:c2:89:30:
45:42:7c:4e:c1:6a:0a:bf:73:2f:07:af:c4:c3:de:
6e:10:27:e4:21:4d:ff:95:7b:f0:c4:8d:8b:2f:df:
b5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:33:FC:50:AD:5F:52:C4:AF:74:3B:6C:AE:91:56:FA:AC:63:6E:59
X509v3 Authority Key Identifier:
keyid:C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/0DP8UK1fUsSvdDtsrpFW-qxjblk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.158.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:e7:00:c1:4e:0d:09:f4:99:34:40:c2:41:8d:f5:f8:0e:7c:
3f:45:99:20:37:3e:a8:a2:c7:de:1a:61:68:e6:29:7e:15:cb:
1b:c0:23:01:67:97:06:54:f2:1d:a9:3f:1b:77:9f:5c:d8:2d:
8b:82:9b:f3:fd:1d:7f:69:6c:5a:a5:ab:d9:2f:ad:51:a7:c6:
76:cc:06:33:63:5e:da:c1:27:e2:45:84:b1:14:1e:a9:78:0e:
cc:fe:e9:d1:7b:0a:b8:af:53:33:97:f0:ad:76:59:7e:df:96:
3c:be:c7:1a:87:e8:2f:b7:a5:1a:9e:ae:74:68:2b:b4:62:ef:
5e:b1:ca:ff:07:81:8e:76:6b:d6:51:2c:40:11:df:69:a8:b3:
04:0c:83:91:d4:28:18:e5:de:55:81:1e:75:85:e7:36:08:19:
59:e4:e8:13:73:45:b1:c3:7b:cd:76:2c:82:17:1a:97:d3:78:
c4:63:8a:85:ff:eb:09:3c:d6:23:92:0c:a1:51:85:6d:74:48:
6c:ea:c6:ef:3a:e9:d2:be:00:6b:57:ae:93:8d:8c:f3:f4:e5:
d1:53:fa:f4:bc:28:d5:3a:e1:5b:17:69:ef:fb:78:6f:1d:d2:
54:01:c8:c6:99:bc:62:d3:6c:8a:2a:de:ac:13:c3:3d:5e:60:
80:6b:d2:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:26 2024 by rpki-client on console.sobornost.net