Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/785bb0-089f-40b3-aec1-12382330845c/1/QejGmKr4RrP_fYukYo_T6iZKlBE.roa
File: QejGmKr4RrP_fYukYo_T6iZKlBE.roa (raw, json)
Hash identifier: GRmg/Ar6U8+BFT77cojgTlMMykOKIR9tPgmlq6ylLsU=
Subject key identifier: 41:E8:C6:98:AA:F8:46:B3:FF:7D:8B:A4:62:8F:D3:EA:26:4A:94:11
Certificate issuer: /CN=d6b6084cbdfaf789dad0b24b6c37ee3f6adaaaed
Certificate serial: 02AF76F0
Authority key identifier: D6:B6:08:4C:BD:FA:F7:89:DA:D0:B2:4B:6C:37:EE:3F:6A:DA:AA:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1rYITL3694na0LJLbDfuP2raqu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/785bb0-089f-40b3-aec1-12382330845c/1/QejGmKr4RrP_fYukYo_T6iZKlBE.roa
Signing time: Sat 01 Jan 2022 07:03:33 +0000
ROA not before: Sat 01 Jan 2022 07:03:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 45.142.212.0/24 maxlen: 24
45.142.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45053680 (0x2af76f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6b6084cbdfaf789dad0b24b6c37ee3f6adaaaed
Validity
Not Before: Jan 1 07:03:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41e8c698aaf846b3ff7d8ba4628fd3ea264a9411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:fe:dc:ed:2b:80:53:64:f9:91:c3:d4:3a:5c:
b6:2d:a3:b6:71:50:97:bf:03:ae:f2:ea:7d:27:89:
28:3f:a0:25:45:26:17:59:a5:96:9f:2b:83:26:fd:
c0:ef:55:18:93:5e:87:86:a2:17:f6:7b:97:b0:fd:
89:46:3f:d7:a5:1f:5d:2c:55:42:f0:fd:66:de:a3:
bb:f4:81:0a:20:00:f0:8b:c2:ea:8d:89:15:ec:a5:
d1:ef:f4:d0:8e:fa:06:a0:bc:a1:d9:d4:1e:e3:6f:
eb:8a:a9:ea:ec:ff:dc:9f:29:f9:b4:5d:6a:ad:50:
1d:c7:47:08:53:fd:e9:12:60:dc:26:bc:3b:76:ca:
11:0e:f8:1e:9b:77:f3:02:48:69:0b:9f:c6:84:24:
67:f4:19:d9:65:87:f2:ff:8c:22:25:7f:dd:b3:d5:
81:83:d7:96:2e:0b:b4:ad:d7:02:75:8e:03:bc:97:
93:69:29:7c:41:64:47:be:69:38:9f:0a:b4:ce:f7:
a9:dc:80:36:08:cb:45:24:0d:ba:08:63:84:da:0a:
d7:d8:4e:50:0b:fd:88:ad:ea:b5:4d:e9:1e:e1:05:
35:ab:08:6f:58:ac:02:42:68:aa:9b:87:62:83:10:
e4:d4:1d:89:ee:fe:5a:78:2b:a9:87:d0:df:e2:c8:
c6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E8:C6:98:AA:F8:46:B3:FF:7D:8B:A4:62:8F:D3:EA:26:4A:94:11
X509v3 Authority Key Identifier:
keyid:D6:B6:08:4C:BD:FA:F7:89:DA:D0:B2:4B:6C:37:EE:3F:6A:DA:AA:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1rYITL3694na0LJLbDfuP2raqu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/785bb0-089f-40b3-aec1-12382330845c/1/QejGmKr4RrP_fYukYo_T6iZKlBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/785bb0-089f-40b3-aec1-12382330845c/1/1rYITL3694na0LJLbDfuP2raqu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.212.0/24
45.142.214.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:cc:2e:4b:3a:ba:38:5b:27:86:21:bf:76:2a:3f:12:2f:df:
fe:32:df:24:63:c4:39:24:0f:b8:1c:94:35:99:24:40:98:01:
e1:17:48:96:48:72:40:83:df:da:79:dd:fe:ef:e6:ca:31:1b:
ea:21:1f:a1:2c:b7:d2:d7:0c:cd:f1:f6:b2:84:46:d0:97:59:
be:ec:ad:fa:61:36:49:3a:ed:10:6c:cc:49:3d:2b:fb:f8:66:
8c:58:ea:a3:e2:3f:fb:37:14:8d:bd:ad:89:fc:f5:09:10:92:
67:33:f4:4b:60:4b:75:3e:7d:53:f7:e8:e6:b0:20:ed:9d:78:
98:ee:dc:fd:bc:9c:4f:66:50:6f:cc:1b:26:2a:f1:18:3c:4d:
15:5a:73:cc:f3:35:31:3f:45:59:e3:d0:b1:49:bb:5b:76:d4:
77:1f:52:12:1e:37:d3:73:da:8a:b2:a8:2b:10:ac:67:f3:60:
4c:5b:7d:fd:31:d1:f9:d1:ea:93:12:03:d4:b6:41:05:e4:da:
b8:b4:22:ad:55:f4:cb:84:54:92:db:77:3c:b7:a2:d4:36:55:
90:f6:e0:22:bd:05:60:36:89:6c:43:27:04:74:90:8c:3a:7d:
6f:c4:c0:00:d5:eb:83:6a:f6:5a:c3:4f:0c:ec:be:e7:1c:76:
61:b2:c6:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:53 2025 by rpki-client