Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/aa32be-415f-4b04-ad10-c32d9eadf311/1/dzKbiQQrw1bs66uiG5o-kQCWLXc.roa
File: dzKbiQQrw1bs66uiG5o-kQCWLXc.roa (raw, json)
Hash identifier: Q6ZwcfZHGAAfC69EkmSi5QmWxup7kujAfbFh+nebEBw=
Subject key identifier: 77:32:9B:89:04:2B:C3:56:EC:EB:AB:A2:1B:9A:3E:91:00:96:2D:77
Certificate issuer: /CN=899a9762da6d57152255eb204e221fefa5f73f85
Certificate serial: 04965C53
Authority key identifier: 89:9A:97:62:DA:6D:57:15:22:55:EB:20:4E:22:1F:EF:A5:F7:3F:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZqXYtptVxUiVesgTiIf76X3P4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/aa32be-415f-4b04-ad10-c32d9eadf311/1/dzKbiQQrw1bs66uiG5o-kQCWLXc.roa
Signing time: Sat 01 Jan 2022 12:56:23 +0000
ROA not before: Sat 01 Jan 2022 12:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211753
IP address blocks: 45.148.48.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76962899 (0x4965c53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=899a9762da6d57152255eb204e221fefa5f73f85
Validity
Not Before: Jan 1 12:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77329b89042bc356ecebaba21b9a3e9100962d77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d6:a1:63:f5:82:56:ee:60:fa:4d:b9:2d:13:
cf:61:8e:a2:05:9b:4a:d1:75:c8:96:de:da:23:78:
ab:e0:67:7f:71:90:6a:53:09:ea:ca:60:a1:39:a0:
86:e3:d3:3c:3f:95:ee:a8:ec:9f:fe:20:62:22:df:
37:b3:28:df:59:24:49:14:4c:59:c4:fe:f9:97:7a:
a1:c5:19:84:df:20:7b:6b:39:c8:75:02:05:e9:96:
32:ec:7e:73:2e:1e:55:c0:af:73:05:20:e8:7a:e6:
4d:d7:6d:b4:31:ce:06:91:b9:98:46:d8:54:c9:cb:
06:7e:19:26:33:72:1c:f9:21:27:3a:73:6e:2f:fe:
de:a3:55:6b:42:ee:ec:f3:cc:19:9b:cd:61:e9:af:
3f:1b:c0:82:0c:7b:56:48:79:3c:fd:09:69:bc:cc:
d1:46:dc:9f:ad:6c:e2:b2:af:6e:25:96:bf:fc:1f:
6c:6f:33:45:a7:49:1a:55:ef:a6:13:dc:0f:8c:d2:
ae:d6:3f:84:df:1f:e6:79:bb:09:48:8e:8e:6b:87:
81:c0:94:68:42:85:69:bc:67:0c:65:db:de:6b:78:
43:bf:6e:23:af:c0:a6:35:bd:39:c9:b9:a8:10:51:
f6:23:ed:1a:ad:2a:d2:e9:8f:2b:64:81:cb:fc:e7:
5e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:32:9B:89:04:2B:C3:56:EC:EB:AB:A2:1B:9A:3E:91:00:96:2D:77
X509v3 Authority Key Identifier:
keyid:89:9A:97:62:DA:6D:57:15:22:55:EB:20:4E:22:1F:EF:A5:F7:3F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZqXYtptVxUiVesgTiIf76X3P4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/aa32be-415f-4b04-ad10-c32d9eadf311/1/dzKbiQQrw1bs66uiG5o-kQCWLXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/aa32be-415f-4b04-ad10-c32d9eadf311/1/iZqXYtptVxUiVesgTiIf76X3P4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.48.0/24
Signature Algorithm: sha256WithRSAEncryption
88:c2:ed:3d:19:65:6b:10:a8:4e:d3:33:7f:4d:a5:c0:93:5c:
f3:ce:0a:ae:77:d3:b2:cf:24:4e:52:51:c4:eb:ef:78:8c:1c:
7b:da:25:0a:04:84:ff:ac:f0:21:07:90:7f:a5:65:9b:52:3f:
c5:d8:a4:25:77:5c:25:7f:ad:9b:59:ab:15:a1:d3:a4:b3:23:
be:bc:9c:02:a5:5c:f0:c8:7c:3e:75:34:94:0e:35:af:37:de:
f6:e2:c1:18:2b:56:a9:23:ba:29:9c:f8:9c:68:9a:2b:e6:af:
2e:56:d1:29:e9:f3:e2:63:39:25:37:c4:9e:a0:a4:51:32:db:
f4:ae:bf:40:8a:5b:39:e8:bf:53:2a:4e:00:13:90:d9:01:52:
9f:75:f9:d9:49:54:5d:23:ba:fb:5c:75:8e:e6:39:12:f1:31:
f2:c6:84:fd:fd:c2:5a:5c:9c:f9:fb:28:5c:c2:d7:7d:1d:4c:
b2:88:29:dc:45:d6:d2:70:a2:ca:04:3e:f2:7e:bb:d4:3c:e9:
4a:5f:fe:fd:e8:b3:d7:06:d1:41:b0:d2:bf:24:84:a1:20:cf:
1b:64:25:de:80:c5:50:d3:8e:79:79:c3:40:90:09:5c:fc:a3:
79:8b:a3:c8:c8:2b:bd:0c:e6:f2:f8:d3:2c:91:53:f7:7f:15:
4f:ce:f6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:26 2025 by rpki-client