Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/CWUR7v5NKN34sm_vkpXN6i_Mo1A.roa
File: CWUR7v5NKN34sm_vkpXN6i_Mo1A.roa (raw, json)
Hash identifier: dht3fNx5nk6lcgOv1P7q/6XSlo1q7V0X5dSjzmklFVo=
Subject key identifier: 09:65:11:EE:FE:4D:28:DD:F8:B2:6F:EF:92:95:CD:EA:2F:CC:A3:50
Certificate issuer: /CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Certificate serial: 01856E38AAA92B946DFBE9852D730928DA26
Authority key identifier: 72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/CWUR7v5NKN34sm_vkpXN6i_Mo1A.roa
Signing time: Sun 01 Jan 2023 16:44:45 +0000
ROA not before: Sun 01 Jan 2023 16:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 45.152.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:aa:a9:2b:94:6d:fb:e9:85:2d:73:09:28:da:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Validity
Not Before: Jan 1 16:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=096511eefe4d28ddf8b26fef9295cdea2fcca350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:37:9d:59:70:88:15:64:53:62:0a:04:db:4c:
4f:29:a1:a0:bd:59:00:9f:d2:51:63:79:73:83:70:
f1:1c:b2:0e:ec:b2:88:fc:fd:05:9f:41:42:4a:2c:
27:c4:59:7a:87:62:a8:f0:25:aa:8f:79:c6:9e:e2:
de:24:04:d6:1d:5d:94:0a:86:e0:7c:ef:41:f8:e0:
33:b2:40:28:c3:ef:80:f5:2b:61:aa:8f:20:59:a1:
b8:42:5d:46:b7:45:6f:8d:1f:f6:2e:d9:25:c2:a4:
f5:0c:3c:81:b9:fa:d6:30:f6:dc:90:5e:3d:dd:a6:
cf:20:e5:72:b9:18:49:d4:d4:4d:1a:fe:6e:bf:2d:
78:dc:2c:9f:07:db:4f:19:a6:61:7f:58:1a:03:e7:
86:eb:c4:3a:8f:4f:2f:ee:88:bc:26:b8:93:0e:87:
46:10:ee:dc:d1:10:47:69:13:e2:41:41:29:68:19:
37:9a:ba:96:14:48:a3:5b:ae:a1:24:0f:e6:70:06:
d4:97:9f:91:d0:cb:d1:6f:28:4e:c0:7e:4f:dd:07:
ad:9c:d5:ee:85:87:49:0d:37:b4:7a:f4:d6:43:0a:
7f:c7:20:0d:7f:5f:2f:75:80:70:70:39:ab:d9:d0:
ce:3d:7a:4f:56:d9:8d:75:d5:18:86:b5:00:fe:fb:
e6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:65:11:EE:FE:4D:28:DD:F8:B2:6F:EF:92:95:CD:EA:2F:CC:A3:50
X509v3 Authority Key Identifier:
keyid:72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/CWUR7v5NKN34sm_vkpXN6i_Mo1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/cntIdqLREFjC5qd5_OrF8ECDtMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.227.0/24
Signature Algorithm: sha256WithRSAEncryption
98:22:9b:c8:8c:eb:10:b8:c7:04:09:c7:3d:58:04:66:e8:e9:
1b:11:51:f1:9f:47:6e:a2:2f:4e:f2:e8:25:c9:54:2a:6c:ec:
e6:6f:ba:52:fc:a1:ca:2d:b9:b6:81:62:9c:4c:8b:52:9a:e6:
50:d4:c9:70:38:a0:fd:28:02:38:28:f5:81:e8:fa:76:7d:4b:
3f:aa:23:90:f1:3d:8c:70:8e:58:c0:74:0d:58:23:30:e0:9f:
b5:44:b9:10:d1:70:a1:43:a0:54:24:3e:5f:d0:8c:60:65:5f:
bc:68:35:78:35:45:44:30:b1:e5:45:44:da:6a:bc:80:44:69:
3d:80:17:18:2f:da:18:40:99:ba:55:1e:e8:57:22:38:25:66:
e2:37:a5:fb:2e:7a:84:39:84:ab:8a:bb:52:e7:2f:4c:7b:de:
ad:bd:a8:7b:a7:c2:40:23:df:52:f6:ef:7f:2a:b3:fa:e1:5a:
57:63:54:69:5c:22:71:27:23:99:65:b2:e3:9d:d4:7e:0d:53:
97:82:b4:82:45:b5:af:6e:0f:99:96:35:52:01:a4:78:f2:ff:
69:4a:21:3d:c5:73:9d:c4:68:bc:00:6a:dd:1a:19:48:66:e1:
fb:b3:a1:a7:98:74:af:5c:43:6c:db:23:bf:a0:08:0e:10:b6:
43:4d:7d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:21:25 2025 by rpki-client