Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/ia9iMXPvVFXgjz7dPV5RYdC5N4E.roa
File: ia9iMXPvVFXgjz7dPV5RYdC5N4E.roa (raw, json)
Hash identifier: ADaRDyUSmyHFqTU2/e8LLz3zH3KHAH8N0QlbB+qHsYQ=
Subject key identifier: 89:AF:62:31:73:EF:54:55:E0:8F:3E:DD:3D:5E:51:61:D0:B9:37:81
Certificate issuer: /CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Certificate serial: 046A5B09
Authority key identifier: 1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/ia9iMXPvVFXgjz7dPV5RYdC5N4E.roa
Signing time: Mon 28 Mar 2022 05:13:06 +0000
ROA not before: Mon 28 Mar 2022 05:13:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210368
IP address blocks: 94.45.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74078985 (0x46a5b09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Validity
Not Before: Mar 28 05:13:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89af623173ef5455e08f3edd3d5e5161d0b93781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:7e:29:69:3b:4e:42:59:70:26:43:ea:40:
01:e7:02:9d:42:64:05:3d:f9:76:b8:30:48:ee:b8:
3b:7e:00:d7:41:85:ce:ee:9f:3c:1b:e2:20:12:21:
ef:c1:42:6b:7a:21:27:42:b3:de:95:42:f8:11:f8:
5c:b5:23:e9:a3:04:34:b1:cd:09:e5:1b:a8:f2:83:
99:ad:07:64:05:ab:eb:1a:01:e7:39:f5:46:c6:5c:
fa:30:f8:6b:8d:ca:d9:a8:29:37:33:d4:26:be:e2:
16:c1:95:bb:86:8b:38:2a:20:0f:d0:b7:57:32:5c:
66:65:ed:bf:ba:e1:84:b0:aa:97:66:af:46:93:cf:
e4:cd:9a:74:7c:5e:12:8e:df:71:98:b5:01:d1:64:
eb:73:3d:5a:f9:4f:e4:1e:0b:4b:cc:76:78:ad:f3:
98:91:13:7f:02:b4:c3:02:4b:f0:07:0a:64:72:88:
bb:c9:8f:22:0f:c5:1a:5c:6a:9a:71:85:8e:15:07:
0d:6a:4a:96:f6:46:6c:cf:3c:5c:67:69:0f:c9:aa:
4f:56:94:08:06:b8:53:bb:c0:21:9b:25:76:dd:73:
66:20:cf:85:65:41:7f:45:d7:49:2c:08:75:2e:d3:
db:79:7b:63:26:84:13:86:ae:96:9c:10:ae:6e:53:
76:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:AF:62:31:73:EF:54:55:E0:8F:3E:DD:3D:5E:51:61:D0:B9:37:81
X509v3 Authority Key Identifier:
keyid:1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/ia9iMXPvVFXgjz7dPV5RYdC5N4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.45.144.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:f0:36:cb:bf:99:cf:b5:73:a6:52:47:aa:69:aa:8b:4f:a9:
7c:54:23:38:ca:3e:d7:0f:9d:ed:42:ca:49:b2:4a:15:9c:53:
92:cb:01:5f:ca:82:29:63:55:aa:d5:e1:76:4f:c1:0b:03:0d:
d8:1b:81:f4:a4:f8:19:fe:91:61:08:0f:6a:16:43:0d:b1:3e:
dd:63:c8:b9:7a:a4:b2:16:ca:34:f7:62:43:47:35:ec:81:0b:
9e:c8:a4:af:b8:18:b9:8a:d6:8a:e6:03:4a:71:6d:2f:0a:0f:
04:ae:d1:16:83:33:36:42:ab:ad:b4:bf:5b:17:41:be:0b:6a:
e3:9e:5c:63:73:99:67:65:f6:04:67:43:f2:bd:bc:8b:92:5a:
01:51:20:5e:55:1b:5a:65:cf:fa:6c:7a:05:68:8a:e0:99:a1:
11:d1:a8:94:48:91:b8:86:b7:b2:ae:b7:94:2b:e3:ae:f4:3c:
f0:4b:d7:02:c7:bc:0c:09:33:9e:cb:1b:c9:dd:f8:58:9f:80:
a8:7c:43:2e:e2:bd:34:03:0c:fd:05:f0:a7:95:93:e3:57:61:
c8:e5:cd:3b:f7:92:35:87:b2:4f:52:5c:8b:d6:dc:25:c7:ff:
d6:93:49:d4:36:32:16:68:ea:b9:7b:a1:94:7d:a9:61:5d:d5:
c7:4c:54:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:26 2025 by rpki-client