Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/eGwOE8lbraIFP9l-UBBCUyjN8_w.roa
File: eGwOE8lbraIFP9l-UBBCUyjN8_w.roa (raw, json)
Hash identifier: E3bGB9caMn035nPuIHCWLooaKqDnHxrQ+ZG/yfDBfXc=
Subject key identifier: 78:6C:0E:13:C9:5B:AD:A2:05:3F:D9:7E:50:10:42:53:28:CD:F3:FC
Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Certificate serial: 01942748152C16EFCC7F2DDC9222D46985DC
Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/eGwOE8lbraIFP9l-UBBCUyjN8_w.roa
Signing time: Thu 02 Jan 2025 13:50:22 +0000
ROA not before: Thu 02 Jan 2025 13:50:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 2914
IP address blocks: 45.92.104.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:15:2c:16:ef:cc:7f:2d:dc:92:22:d4:69:85:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Validity
Not Before: Jan 2 13:50:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=786c0e13c95bada2053fd97e5010425328cdf3fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cd:fb:64:c9:cf:bb:dc:75:9d:91:09:c1:04:
65:f0:90:6b:fb:b6:9b:c5:95:9d:4b:11:d7:fe:76:
d9:4b:9e:62:67:3a:74:00:36:62:71:77:9f:c7:11:
47:35:cb:6a:36:9e:b1:df:d1:35:01:7d:07:04:fa:
29:d3:c3:2e:a7:4e:fb:81:9f:15:95:29:2d:a4:ad:
01:83:95:96:d7:41:8f:1e:13:74:33:25:b8:1a:e8:
66:8e:7e:b2:3b:15:47:60:e4:d7:de:69:88:9a:d3:
9f:5b:ce:bb:63:6f:85:3d:92:f5:0c:64:e2:01:4f:
02:6e:f0:ba:31:8d:15:14:ef:8f:3c:23:75:ad:1e:
8f:53:99:97:97:a3:01:b2:f2:e4:c6:8a:09:cc:2b:
2e:e4:9a:bb:43:93:50:2d:59:41:5b:5b:a7:c0:87:
df:f1:b3:71:be:dd:fa:b4:54:27:f8:a5:38:4e:8d:
e3:bb:c9:2a:10:29:a3:8d:a2:bb:29:0d:0a:10:d9:
23:e9:4d:21:4b:81:61:9b:fb:20:92:fc:48:40:4b:
ff:fe:dd:cf:6e:5a:94:1d:1d:a0:b2:90:f2:36:b0:
a6:ec:64:79:1e:da:96:6d:e9:b6:6e:d9:77:99:cd:
a1:84:24:a8:d5:eb:05:58:5d:71:d5:3f:ff:4e:0c:
b2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:6C:0E:13:C9:5B:AD:A2:05:3F:D9:7E:50:10:42:53:28:CD:F3:FC
X509v3 Authority Key Identifier:
keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/eGwOE8lbraIFP9l-UBBCUyjN8_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.104.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:ed:c5:15:3f:4b:04:ef:df:9d:28:3a:7a:eb:5d:db:72:c6:
75:b5:4f:ca:b4:8d:c9:00:ec:22:55:4a:47:4e:bc:4a:f0:fb:
03:78:e3:c9:14:ee:5e:67:92:2a:da:26:24:97:df:34:d5:cc:
b2:7a:33:a4:fa:cf:5f:a4:11:80:5d:f8:ee:f9:3f:69:52:8d:
83:22:5a:a5:77:83:e8:c3:ba:0c:21:8d:de:49:ee:7f:e6:43:
49:a6:27:f5:da:70:72:c5:d4:74:2d:65:32:78:4b:b4:a1:ca:
75:fa:8f:97:8d:97:f6:29:8e:b9:0d:1c:52:ab:d7:c8:64:fb:
e0:5b:4f:88:2a:d9:90:f8:52:af:f9:d3:d4:6d:58:d8:90:fd:
04:6c:f2:01:61:e1:cc:a5:fc:1d:94:de:11:86:9a:a6:a1:57:
2c:d6:8f:e9:63:da:79:d4:c8:aa:1f:50:6e:c4:81:dd:13:39:
c7:a6:9d:56:21:81:e1:8a:b3:84:42:a0:89:2c:b0:56:f7:8e:
c7:a8:50:db:62:64:65:94:45:cc:64:8d:52:df:5e:ba:d0:09:
a4:73:5b:1e:f5:f8:97:3f:1b:1b:e3:35:68:9d:1a:9a:e4:cd:
ed:de:d7:22:9f:03:ec:fd:5b:46:a9:63:60:22:c6:9a:b7:f2:
b0:e9:5d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:55 2025 by rpki-client