Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/g6D2EeVWHrLfly25Gr3PA2JjqIs.roa
File: g6D2EeVWHrLfly25Gr3PA2JjqIs.roa (raw, json)
Hash identifier: j10NcPJx5hNjFDdBrEvotLhKN6Z0KsM9OW4/0pT8gJA=
Subject key identifier: 83:A0:F6:11:E5:56:1E:B2:DF:97:2D:B9:1A:BD:CF:03:62:63:A8:8B
Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Certificate serial: 01856ECB6AB563A36ADA1D9BC8044D6F87FC
Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/g6D2EeVWHrLfly25Gr3PA2JjqIs.roa
Signing time: Sun 01 Jan 2023 19:25:02 +0000
ROA not before: Sun 01 Jan 2023 19:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 45.92.104.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:6a:b5:63:a3:6a:da:1d:9b:c8:04:4d:6f:87:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Validity
Not Before: Jan 1 19:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83a0f611e5561eb2df972db91abdcf036263a88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:78:24:2f:de:a6:e8:d3:3f:b9:df:cf:03:ac:
84:42:2c:86:be:6b:e8:69:78:88:e1:16:bc:00:79:
33:3e:af:7a:d2:ca:16:0e:e4:e8:31:f4:7b:7f:86:
f3:13:74:9f:4b:ba:3b:2d:23:b1:ef:00:62:fc:f9:
51:46:ea:ad:70:15:2f:16:aa:65:df:a2:77:94:c0:
a9:57:11:b2:69:a9:7e:ef:10:1d:0f:4e:1a:9e:48:
4c:a3:c5:3d:aa:b8:77:2c:60:73:60:2f:25:7f:58:
63:d8:a2:0d:8c:53:dc:90:60:fc:0c:2f:9f:cc:82:
01:5b:7b:6b:5d:69:5e:16:76:4e:d0:0b:d2:bb:b0:
15:07:de:38:7d:04:97:97:3b:54:c8:c7:12:57:0e:
cd:1a:40:91:9f:57:97:7b:e8:37:20:9b:aa:58:b8:
17:ee:0d:c1:6b:d4:b5:de:f1:3b:da:54:76:ce:5b:
f1:d9:1a:34:7f:9f:c3:d6:e7:24:f3:c6:33:84:b2:
c4:bc:e7:cc:d1:5c:25:1e:e2:00:cd:0e:7d:12:a6:
40:de:22:71:e3:57:ed:3f:4a:88:23:03:b5:10:02:
8a:a2:84:9f:7f:f7:a5:47:e1:85:fe:20:7a:b3:f9:
25:52:94:23:74:bc:ea:9e:3c:41:25:eb:c2:16:8f:
ac:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A0:F6:11:E5:56:1E:B2:DF:97:2D:B9:1A:BD:CF:03:62:63:A8:8B
X509v3 Authority Key Identifier:
keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/g6D2EeVWHrLfly25Gr3PA2JjqIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.104.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:18:6f:d8:a7:5f:d8:d5:d7:d8:fe:fa:41:18:f2:f7:a1:3d:
c1:49:05:14:f4:0e:a4:f7:af:34:b5:db:d5:c7:00:b3:e8:69:
bf:82:c0:7a:24:a2:14:3a:98:bc:8a:e4:ab:a0:a0:1b:89:7b:
cb:33:7a:3a:9b:fe:74:7d:50:b1:f3:fa:a3:56:79:78:f4:be:
d7:3e:b4:3c:b9:8a:2c:d2:2e:c6:a1:df:47:a5:e4:03:94:78:
85:cd:43:0c:84:b4:8e:70:f3:72:21:3d:4f:66:90:17:ec:2a:
89:3c:de:6f:29:c7:a9:ee:10:30:bb:fc:80:6d:3e:52:ba:47:
b4:19:42:36:f4:2f:f1:9b:d0:46:bd:3a:17:8c:80:59:6a:a5:
c6:ae:f8:ea:c8:63:16:30:1e:76:d7:c3:4a:ce:25:fa:91:58:
8b:52:d5:a6:33:29:10:c2:53:5f:a1:27:61:f6:c8:02:f1:3c:
3f:b6:9c:a6:3f:d1:91:45:f6:38:30:74:2a:1a:5a:bd:0a:fe:
90:ae:79:22:3a:8c:13:e7:d6:60:a7:b2:3d:b1:fd:0a:a3:2a:
a7:36:18:2c:e9:7a:0e:c1:de:e2:d0:df:f5:21:7c:e1:87:e6:
de:9d:ab:88:14:71:be:54:10:ed:8c:97:02:78:72:24:04:45:
44:9b:c9:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:13 2025 by rpki-client