Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/L-vAq2xsAwmJfmCa--HQRsi7w6E.roa
File: L-vAq2xsAwmJfmCa--HQRsi7w6E.roa (raw, json)
Hash identifier: IXZhuJYDkv8EjdmYZwH+mt1JsTMbZZ+76Mg2mQ9p9hA=
Subject key identifier: 2F:EB:C0:AB:6C:6C:03:09:89:7E:60:9A:FB:E1:D0:46:C8:BB:C3:A1
Certificate issuer: /CN=331bce2ee806e93621112dbd618536f775f44fba
Certificate serial: 13EA0232
Authority key identifier: 33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/L-vAq2xsAwmJfmCa--HQRsi7w6E.roa
Signing time: Sat 01 Jan 2022 13:54:52 +0000
ROA not before: Sat 01 Jan 2022 13:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212301
IP address blocks: 45.67.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334103090 (0x13ea0232)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331bce2ee806e93621112dbd618536f775f44fba
Validity
Not Before: Jan 1 13:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2febc0ab6c6c0309897e609afbe1d046c8bbc3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3b:8c:3b:ee:25:12:d7:ae:fc:07:d8:4d:b9:
24:13:90:be:13:e4:02:0f:26:90:a7:35:a0:00:67:
24:b3:35:2f:b3:70:35:9b:25:54:7d:92:d5:45:43:
47:b7:88:72:63:09:66:77:b9:38:4b:74:c1:d7:1a:
96:d0:3c:d6:a6:1a:9f:06:8d:28:ad:f4:66:cb:8f:
8d:8c:fc:60:41:c0:a7:3e:2f:23:9e:e8:06:9d:73:
eb:86:9c:b6:25:a7:8d:af:16:08:77:85:8f:a5:86:
b4:d2:02:7e:07:6c:91:55:02:54:fe:b7:df:b0:9c:
9f:9a:30:93:36:a7:64:ef:79:0b:32:0d:9f:35:1b:
6f:36:78:c1:d0:aa:e4:dc:2f:f9:71:b8:4b:b9:50:
84:db:86:fb:d9:46:d9:81:42:13:62:bc:53:da:f3:
2e:6c:ed:21:8f:67:86:c9:37:27:aa:33:35:2b:25:
19:0c:ef:fa:ee:29:e0:3f:4d:f1:45:a9:d0:8c:04:
22:c9:6b:c4:8d:d4:a3:c5:e9:6a:79:b0:9e:0c:ef:
0b:ff:8c:6f:52:22:cc:02:bf:8f:77:33:9d:37:e8:
19:d6:77:55:22:6b:31:a3:3a:81:53:a8:c4:f1:55:
97:27:66:f6:ab:bf:4c:87:b0:a1:97:06:8f:bd:81:
22:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:EB:C0:AB:6C:6C:03:09:89:7E:60:9A:FB:E1:D0:46:C8:BB:C3:A1
X509v3 Authority Key Identifier:
keyid:33:1B:CE:2E:E8:06:E9:36:21:11:2D:BD:61:85:36:F7:75:F4:4F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MxvOLugG6TYhES29YYU293X0T7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/L-vAq2xsAwmJfmCa--HQRsi7w6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba3ca-d6fd-4116-9146-aeac16227c25/1/MxvOLugG6TYhES29YYU293X0T7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.232.0/24
Signature Algorithm: sha256WithRSAEncryption
08:5a:8f:94:36:76:f6:fd:53:dd:cb:96:e0:f9:1e:7c:f9:14:
dd:61:2b:f0:e7:71:05:fa:15:a8:63:f3:b8:8f:a4:23:9b:5d:
75:ed:53:56:0c:76:62:98:2c:50:12:0d:ca:c5:dd:f3:c1:4d:
43:db:d8:fd:b3:59:8f:ae:0a:2b:b1:fd:f9:75:32:b4:c9:3d:
55:8a:9c:ac:76:68:d6:67:4d:f4:df:7b:f5:30:5f:6b:c6:1c:
c5:d5:eb:94:12:49:c7:65:71:11:8c:09:9c:84:f9:3a:f5:25:
c8:59:96:02:ba:9e:39:12:fb:fd:cd:c3:26:b5:90:bc:00:67:
99:fc:e1:24:a2:3b:da:c1:6c:10:63:9f:d0:d8:f0:82:c5:3f:
56:4b:e5:be:48:0c:4c:44:44:eb:dc:d2:c2:3f:ae:a8:3e:69:
27:16:9e:86:e7:4f:e8:a8:a4:f0:5f:06:70:20:68:50:03:89:
1f:7c:22:f9:11:7c:d0:fa:23:93:8b:ad:d4:54:4f:ec:59:99:
ed:aa:fa:03:09:ae:46:67:a6:0c:a7:15:d5:77:18:7e:39:1c:
1c:b6:37:5d:fd:5f:4d:53:73:89:bc:b6:51:08:1b:2e:d4:58:
fe:f4:13:e6:0e:3b:ca:2e:f3:f8:a9:cb:9e:ab:fd:cd:34:b8:
f9:d8:dc:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:11 2025 by rpki-client