Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/f3R5khrRP8oBv_CikUEMWzEwhw0.roa
File: f3R5khrRP8oBv_CikUEMWzEwhw0.roa (raw, json)
Hash identifier: 3ph053WQvErZlig3y1qKWJ7HlBJZxGbw3ZnuOVeYfLM=
Subject key identifier: 7F:74:79:92:1A:D1:3F:CA:01:BF:F0:A2:91:41:0C:5B:31:30:87:0D
Certificate issuer: /CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Certificate serial: 8FD1C6
Authority key identifier: 72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/f3R5khrRP8oBv_CikUEMWzEwhw0.roa
Signing time: Sat 01 Jan 2022 01:54:59 +0000
ROA not before: Sat 01 Jan 2022 01:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 45.94.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9425350 (0x8fd1c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727b4876a2d11058c2e6a779fceac5f04083b4c2
Validity
Not Before: Jan 1 01:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f7479921ad13fca01bff0a291410c5b3130870d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2f:12:3e:de:38:7a:7b:f3:03:46:e6:2f:38:
9d:fa:59:7a:16:b0:9f:2f:fd:e1:df:df:0a:67:80:
1e:04:d4:78:d9:53:b9:e3:fe:5d:1a:1e:6a:be:62:
40:64:c9:44:37:ae:94:18:9a:6f:96:30:17:95:b7:
8f:41:d2:92:b1:6c:c3:fe:ca:fe:20:ed:56:2e:8c:
f1:7d:5f:a5:34:e1:fd:14:fa:76:f1:37:f7:00:fc:
90:27:0b:0f:7c:a6:53:c8:0a:31:d8:ec:2f:ad:40:
ed:e0:08:0f:bd:ba:2e:32:84:31:d7:18:6c:5e:79:
1f:0f:2b:14:94:82:f0:b4:6a:9f:c6:47:42:23:93:
b6:33:6f:2a:a8:ed:c3:e4:7d:40:9b:e0:06:95:64:
e3:8b:23:3d:8b:f8:44:cf:9a:50:b8:d8:5e:80:60:
23:78:ce:8f:f3:54:90:26:9d:10:9e:19:09:b7:bc:
e4:32:3c:4b:03:83:76:9e:2a:d4:8d:eb:09:ba:0a:
7a:ab:13:55:57:5e:ea:0c:0b:bb:b6:f8:fb:d3:6c:
ed:ac:17:86:ae:fe:dc:6b:89:bf:3c:27:fc:b8:22:
4e:4e:25:13:e4:1e:24:1e:91:61:90:53:7b:fa:21:
02:43:08:14:26:40:d4:67:7a:e6:6f:ab:9f:17:8a:
50:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:74:79:92:1A:D1:3F:CA:01:BF:F0:A2:91:41:0C:5B:31:30:87:0D
X509v3 Authority Key Identifier:
keyid:72:7B:48:76:A2:D1:10:58:C2:E6:A7:79:FC:EA:C5:F0:40:83:B4:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cntIdqLREFjC5qd5_OrF8ECDtMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/f3R5khrRP8oBv_CikUEMWzEwhw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/aeea10-7208-4d5c-85b9-9e35089fa78f/1/cntIdqLREFjC5qd5_OrF8ECDtMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.21.0/24
Signature Algorithm: sha256WithRSAEncryption
24:3e:be:bf:84:ab:dd:bf:7a:1f:33:f6:6a:98:ed:ea:b6:97:
94:92:64:5a:62:10:ee:38:da:a6:4b:85:90:24:a5:e9:d6:b4:
3a:2b:a3:33:76:63:05:d9:44:2a:71:a4:d3:6b:24:05:93:9d:
e6:90:ea:51:d3:bd:b5:8a:8c:40:e2:13:2c:44:0e:61:cb:ff:
25:f8:11:bc:c8:2b:31:86:d8:56:6c:d2:a8:fd:1b:07:ef:3d:
2f:ff:c4:75:29:e1:c1:50:5f:e2:25:9a:72:51:16:c9:e4:1b:
53:b3:02:d9:c4:66:c4:db:52:8c:1f:00:24:ad:95:ae:ac:2f:
39:21:c9:0c:43:2e:8e:1c:dd:91:c5:44:90:54:b6:66:45:ab:
51:34:73:e5:d1:4f:82:60:20:7d:21:e0:66:22:81:42:d2:76:
2d:d4:62:5f:9a:17:55:45:cd:b0:0a:69:a5:df:61:a5:a5:f3:
33:3b:72:d5:5a:23:df:60:7d:fa:d6:e2:10:72:2a:da:ac:0c:
f1:a2:69:76:7a:ba:48:0f:b0:85:e7:b1:e8:b1:7a:02:e0:8b:
85:bc:c2:6f:32:42:4d:0e:63:9a:8c:4f:3d:ae:7c:83:d7:12:
7a:7a:f7:39:a0:b5:ae:40:1f:39:31:63:0f:be:c9:d0:a5:b1:
f7:c3:7a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:10:11 2025 by rpki-client