Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/XfHAg4rG3esHJcJA_vVOXEsrHQE.roa
File: XfHAg4rG3esHJcJA_vVOXEsrHQE.roa (raw, json)
Hash identifier: HJoPtcsde7hwMQd5GotxJAfKUHVyvcEer7w9/EuhEGU=
Subject key identifier: 5D:F1:C0:83:8A:C6:DD:EB:07:25:C2:40:FE:F5:4E:5C:4B:2B:1D:01
Certificate issuer: /CN=624ad4535ac88dd534199f2a726095af71afe44e
Certificate serial: 07F4CD22
Authority key identifier: 62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/XfHAg4rG3esHJcJA_vVOXEsrHQE.roa
Signing time: Tue 28 Jun 2022 16:50:02 +0000
ROA not before: Tue 28 Jun 2022 16:50:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 45.142.24.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133483810 (0x7f4cd22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624ad4535ac88dd534199f2a726095af71afe44e
Validity
Not Before: Jun 28 16:50:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5df1c0838ac6ddeb0725c240fef54e5c4b2b1d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:57:80:40:03:aa:06:0b:90:93:8c:e9:94:13:
ac:f6:21:fe:51:da:dd:02:c0:61:c8:bb:c3:c6:58:
b1:12:06:00:b4:24:87:60:8d:f2:01:78:b8:e7:73:
2a:6f:4b:6e:07:7e:3c:cb:3d:68:5c:e5:45:56:03:
dd:5a:89:99:e0:2d:9b:cd:00:c1:bf:83:33:86:03:
0a:bb:d2:4f:03:86:d6:85:c5:3a:64:b3:43:1e:96:
ac:96:67:bf:21:b7:67:61:ac:d2:07:a1:65:b8:7b:
5c:28:b8:21:3e:92:59:66:d4:42:84:66:38:a7:7b:
12:b1:a4:e7:94:ee:1e:2c:fe:cc:f0:ff:19:51:ca:
85:3f:b3:ba:57:0b:0f:be:2e:83:3d:f3:24:76:26:
58:99:b6:a6:65:62:34:dd:15:0f:31:7e:87:bb:6d:
e2:80:21:4b:e5:38:f7:f0:17:cc:67:d6:42:63:74:
52:ee:51:e9:b8:30:fd:cc:bb:73:3e:60:c8:fb:95:
82:ec:68:0b:6d:2c:f7:64:d6:40:a1:c6:a2:88:43:
a8:f9:30:59:16:78:3a:28:38:44:99:f4:78:00:2f:
61:b3:35:ea:7d:20:d1:ab:e3:08:a5:0f:25:42:b4:
a7:4b:b9:63:65:a0:9f:38:b8:11:66:20:ae:f0:42:
1e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F1:C0:83:8A:C6:DD:EB:07:25:C2:40:FE:F5:4E:5C:4B:2B:1D:01
X509v3 Authority Key Identifier:
keyid:62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/XfHAg4rG3esHJcJA_vVOXEsrHQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.24.0/22
Signature Algorithm: sha256WithRSAEncryption
21:07:51:8f:ec:9e:e6:c4:f8:d2:07:c9:ae:78:7c:10:20:5e:
b5:f6:91:9b:3e:84:63:fa:5d:7a:84:88:e1:7c:ac:62:4e:ac:
08:e8:66:a5:e1:3e:e5:ca:94:8b:0b:0f:18:59:28:17:df:f0:
e1:0e:a6:60:9c:3c:eb:32:43:a1:07:11:53:e6:f7:d5:48:2b:
48:5c:1e:8e:e7:a7:da:56:20:27:5c:c6:a4:9d:5a:f0:d7:15:
81:78:d9:b8:59:30:57:98:b0:af:d8:d7:7c:57:02:d5:f8:47:
46:66:e9:77:f1:33:ab:84:b9:19:21:52:01:68:c3:ff:7d:08:
7e:b5:a0:98:ea:b9:6b:f2:12:4a:e0:fc:57:00:ed:89:3c:28:
ad:7d:38:10:97:4c:25:26:f1:2e:ab:dd:46:03:ec:f9:ef:26:
bd:6b:47:83:f5:d1:f7:e5:a0:8a:4f:6a:9c:1c:49:93:14:5a:
5b:44:36:11:c2:b9:82:86:6e:50:08:11:05:ca:1e:96:36:0c:
e2:7f:76:d4:98:f7:80:10:65:13:fa:c4:ae:2c:bc:3d:7e:8f:
29:13:6e:b8:5a:72:c2:af:99:01:d9:8a:10:e7:35:6a:1a:a0:
ba:6f:4b:2d:bb:dd:d1:0b:cf:3d:41:ae:7b:72:b3:58:e3:a7:
8a:18:ef:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:56 2025 by rpki-client