Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/CMY4ITGLqNujik4yIiG8Gfa1pC4.roa
File: CMY4ITGLqNujik4yIiG8Gfa1pC4.roa (raw, json)
Hash identifier: 3BFgZYkWy7LdfxFhnZ6+7d54Jdzxsq8R85RbYLjlIW4=
Subject key identifier: 08:C6:38:21:31:8B:A8:DB:A3:8A:4E:32:22:21:BC:19:F6:B5:A4:2E
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 075DA40A
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/CMY4ITGLqNujik4yIiG8Gfa1pC4.roa
Signing time: Sat 01 Jan 2022 04:57:18 +0000
ROA not before: Sat 01 Jan 2022 04:57:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211871
IP address blocks: 45.158.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123577354 (0x75da40a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 1 04:57:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08c63821318ba8dba38a4e322221bc19f6b5a42e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:84:e1:dd:6f:ed:99:c8:fd:6a:a7:c1:59:98:
ab:8c:ae:8a:cb:d6:cc:fa:b3:05:cc:58:c2:e3:1b:
a3:c6:e5:bb:4b:f5:5b:82:0f:3b:cd:a7:4b:9e:d6:
1d:92:5e:f9:74:83:3f:9d:6a:3b:df:7d:4c:3d:61:
a9:21:c6:85:68:bd:39:9c:d9:c9:9f:99:0c:99:7d:
30:69:5b:fa:fd:b8:80:28:5b:c0:a6:b3:b8:7a:0f:
5d:84:d9:d0:0a:13:0e:a4:69:68:13:28:fb:18:70:
f2:bd:0c:07:13:43:4d:66:63:50:9e:70:25:b3:3f:
db:75:96:cb:3a:d2:9e:df:b8:d9:44:66:be:2c:5d:
3a:7e:74:e9:70:1d:63:f6:77:de:bb:ac:0f:8c:c4:
4f:d1:59:47:0a:01:2e:f6:4b:5e:15:ba:81:5e:82:
e6:62:ea:eb:27:df:a1:74:55:de:2b:04:1a:c8:ff:
fe:f8:31:a2:af:26:de:bd:24:27:81:61:fc:f0:0d:
2a:04:19:c8:eb:5e:25:9f:e9:6b:ac:ba:cd:30:b6:
9c:3a:a1:13:5f:7e:04:37:0a:84:27:74:65:f6:b0:
1d:3b:c8:f0:e0:ee:d2:c8:c4:f9:a1:ca:0e:ae:b6:
eb:34:a4:45:13:88:b7:0c:4c:8b:c4:5a:3c:52:9f:
0a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C6:38:21:31:8B:A8:DB:A3:8A:4E:32:22:21:BC:19:F6:B5:A4:2E
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/CMY4ITGLqNujik4yIiG8Gfa1pC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.12.0/24
Signature Algorithm: sha256WithRSAEncryption
98:51:0b:6a:31:fc:c9:f9:3e:22:c5:6a:96:3d:02:6c:07:b5:
30:92:51:73:54:83:19:91:c0:8b:f1:da:74:4e:7a:16:54:7b:
8a:a7:27:33:31:3d:95:02:ea:2e:84:96:11:1a:ad:1a:40:2c:
80:c6:fc:25:fe:ca:af:de:c3:91:e5:8f:e4:a7:e3:43:bd:76:
c6:7b:33:83:e9:78:0c:27:b0:80:76:e8:4d:04:62:6c:1b:e2:
f4:89:05:4d:e9:c1:b6:c7:03:a9:59:fc:6b:cd:b8:5f:d4:07:
dd:9c:77:67:2d:76:c0:a8:07:2d:ca:48:2b:64:59:8a:7a:98:
cb:f1:8c:05:5c:fe:86:ad:ef:a4:51:b3:7f:75:eb:17:eb:a6:
fa:3c:89:a0:ff:ea:ab:b5:05:73:7e:3e:5e:61:9d:83:66:fb:
b6:85:64:29:a7:53:aa:73:fc:88:3b:19:83:ae:02:7c:ad:57:
aa:55:3f:79:9e:39:78:1e:c9:43:22:24:ee:3b:2a:df:68:f3:
bc:a4:35:71:91:e7:4f:13:cb:99:02:c8:df:e9:ea:13:06:52:
3c:09:5e:ff:c6:07:80:b6:f5:d4:af:c0:19:ec:1e:9e:06:38:
d1:4c:af:de:ec:6f:c2:00:d0:df:39:de:3e:30:9b:36:f8:04:
59:dd:14:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:14:54 2025 by rpki-client