Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/aDGHA_ngR-s-3Izu8tBskl5RwJE.roa
File: aDGHA_ngR-s-3Izu8tBskl5RwJE.roa (raw, json)
Hash identifier: uHDJa9dXtHWDL5U5IlGxOwJhnd4J4wlWxSdFZWJvq5s=
Subject key identifier: 68:31:87:03:F9:E0:47:EB:3E:DC:8C:EE:F2:D0:6C:92:5E:51:C0:91
Certificate issuer: /CN=111014ce8ad38d15350096d549ee1c5805d09dc8
Certificate serial: 0193DC4F98E760FB703140644359D187811B
Authority key identifier: 11:10:14:CE:8A:D3:8D:15:35:00:96:D5:49:EE:1C:58:05:D0:9D:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERAUzorTjRU1AJbVSe4cWAXQncg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/aDGHA_ngR-s-3Izu8tBskl5RwJE.roa
Signing time: Thu 19 Dec 2024 00:27:04 +0000
ROA not before: Thu 19 Dec 2024 00:27:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208499
IP address blocks: 45.132.220.0/22 maxlen: 24
2a0e:71c0::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:dc:4f:98:e7:60:fb:70:31:40:64:43:59:d1:87:81:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111014ce8ad38d15350096d549ee1c5805d09dc8
Validity
Not Before: Dec 19 00:27:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68318703f9e047eb3edc8ceef2d06c925e51c091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:56:72:4f:36:e3:e4:fc:82:01:b9:6a:99:93:
2c:89:54:6b:b7:2f:40:7f:0c:ca:b3:d5:96:5d:37:
bd:0d:39:57:c2:59:72:d8:68:2a:69:4a:3c:6c:dc:
21:90:6d:a2:6b:14:9a:b9:7f:84:85:c2:08:df:2a:
11:21:7c:46:a8:61:dd:9e:48:e3:a8:f2:60:ce:82:
4a:8b:de:86:33:ae:62:7a:ba:47:47:57:7b:73:02:
b3:5c:35:96:06:7a:eb:84:1d:30:50:56:a2:24:bb:
98:9a:ab:1a:2e:5c:db:13:7a:83:02:4d:2b:49:54:
2a:bf:da:c4:83:a0:ae:9d:60:38:7b:6b:51:51:d7:
76:c5:77:11:73:41:88:db:5d:0a:84:22:6f:03:8b:
e9:01:a3:5a:44:b4:48:8b:25:28:9b:0f:f9:b8:3e:
72:01:3c:90:cd:9a:c3:42:52:78:db:68:e7:c9:c0:
3a:9b:5b:f6:98:25:da:97:22:18:9b:c5:9b:72:ae:
25:66:70:8d:57:4d:f0:d9:f0:dc:90:49:eb:4b:fd:
c1:8c:55:8e:5c:3f:69:4c:30:29:1d:b2:65:dd:8f:
64:bc:0d:fa:14:05:6c:d4:99:5e:e8:18:77:66:56:
98:b9:07:0b:d8:f3:5d:0b:c6:66:e4:41:b2:0a:76:
59:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:31:87:03:F9:E0:47:EB:3E:DC:8C:EE:F2:D0:6C:92:5E:51:C0:91
X509v3 Authority Key Identifier:
keyid:11:10:14:CE:8A:D3:8D:15:35:00:96:D5:49:EE:1C:58:05:D0:9D:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERAUzorTjRU1AJbVSe4cWAXQncg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/aDGHA_ngR-s-3Izu8tBskl5RwJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/d6c752-aa4b-4fa7-ab1f-91a394684644/1/ERAUzorTjRU1AJbVSe4cWAXQncg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.220.0/22
IPv6:
2a0e:71c0::/29
Signature Algorithm: sha256WithRSAEncryption
3e:49:7e:b1:8e:a6:6e:25:45:5e:2d:f7:33:e2:38:cb:dc:81:
69:3d:93:7f:26:23:f9:a5:58:85:c5:69:98:53:88:87:c6:95:
36:a6:10:6f:21:d2:40:0c:5c:63:6b:8b:a7:3d:a0:78:82:4c:
bc:17:69:21:41:1d:a1:c0:ab:4a:66:ca:25:1c:a9:52:a1:51:
ab:e7:36:b7:e8:a1:f2:95:e4:7f:c9:dc:16:24:2a:5c:77:62:
e0:87:e1:71:76:8c:f7:c4:a1:74:d4:dc:46:e3:b1:64:90:13:
da:2f:5d:cf:b0:40:36:bc:14:04:a9:3e:1e:de:c1:89:22:ec:
ad:d8:6a:b2:d6:26:14:71:24:1f:3c:21:b2:6d:72:05:2d:4c:
22:df:db:5c:cb:bb:87:4d:76:0b:e4:2a:08:94:22:28:ab:c6:
42:20:9b:f2:51:2b:41:ce:4f:09:b7:23:e3:72:c7:ab:cf:b5:
fc:ae:66:78:c5:6e:02:3a:68:1b:43:c5:28:b3:8f:5a:c4:20:
ca:0c:a7:ae:32:8b:02:03:ca:57:33:fc:8c:85:df:1e:72:0b:
80:d3:e4:fe:26:d8:97:6e:60:be:bb:25:13:8d:78:3f:58:3b:
ed:12:50:ba:8f:34:40:fe:52:3b:a0:14:71:df:82:1a:8b:99:
d6:32:91:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:33 2024 by rpki-client on console.sobornost.net