Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/42e981-5556-46b8-89cf-87c3868f161e/1/AlKcXiKJYyDsXugYAg2kVD70c_I.roa
File: AlKcXiKJYyDsXugYAg2kVD70c_I.roa (raw, json)
Hash identifier: /cW6+BrQ86zQ0bkv4IpaIifJ+2r5fqcfPsMtJ5Uzub8=
Subject key identifier: 02:52:9C:5E:22:89:63:20:EC:5E:E8:18:02:0D:A4:54:3E:F4:73:F2
Certificate issuer: /CN=16b38d300957fa15b3a802d38ff059cab2796c5a
Certificate serial: 018326EB66B67C256442424CE4C6280207F2
Authority key identifier: 16:B3:8D:30:09:57:FA:15:B3:A8:02:D3:8F:F0:59:CA:B2:79:6C:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FrONMAlX-hWzqALTj_BZyrJ5bFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/42e981-5556-46b8-89cf-87c3868f161e/1/AlKcXiKJYyDsXugYAg2kVD70c_I.roa
Signing time: Sat 10 Sep 2022 10:21:44 +0000
ROA not before: Sat 10 Sep 2022 10:21:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 45.92.78.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:eb:66:b6:7c:25:64:42:42:4c:e4:c6:28:02:07:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16b38d300957fa15b3a802d38ff059cab2796c5a
Validity
Not Before: Sep 10 10:21:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02529c5e22896320ec5ee818020da4543ef473f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5a:f6:77:15:ab:bf:ac:0d:de:9d:5c:ea:74:
56:a8:5e:6f:45:4d:9c:c2:f9:6f:11:83:4f:1d:22:
b5:40:2d:67:0f:7d:ef:17:d8:bc:88:0f:a1:29:b3:
a2:cc:ff:d9:54:ac:3c:b3:53:9b:3f:8f:15:29:7e:
c8:e2:e3:6f:96:27:bd:a3:f3:20:04:a2:9e:92:f7:
3f:f2:1b:07:cc:9e:27:01:2b:ed:84:e1:89:c1:cf:
da:9a:50:9b:17:ee:73:39:c4:9e:b7:a7:65:d5:b1:
6f:8d:b8:1a:71:61:ca:24:d8:71:48:32:16:10:44:
6f:97:18:cb:ee:fa:8d:8c:41:d3:de:87:1d:31:25:
bf:f0:26:1d:b3:5e:f4:56:af:1a:00:f2:19:22:ec:
a6:a5:65:0f:78:f2:f0:63:f8:fc:87:c0:a5:64:ea:
15:11:f4:43:0f:d6:7c:68:34:54:88:f9:0e:78:49:
f0:d7:62:6c:2a:66:60:0e:76:1b:0e:c8:52:68:86:
ca:c4:e6:6e:a1:25:7a:92:19:40:b9:a0:a4:76:82:
09:1d:5a:41:52:6e:59:08:32:f7:c0:22:48:68:89:
16:05:91:68:b6:f3:43:08:cf:83:ee:c4:58:3c:e1:
7d:95:04:f0:da:07:7d:f1:11:8a:73:c6:03:7c:15:
7e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:52:9C:5E:22:89:63:20:EC:5E:E8:18:02:0D:A4:54:3E:F4:73:F2
X509v3 Authority Key Identifier:
keyid:16:B3:8D:30:09:57:FA:15:B3:A8:02:D3:8F:F0:59:CA:B2:79:6C:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FrONMAlX-hWzqALTj_BZyrJ5bFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/42e981-5556-46b8-89cf-87c3868f161e/1/AlKcXiKJYyDsXugYAg2kVD70c_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/42e981-5556-46b8-89cf-87c3868f161e/1/FrONMAlX-hWzqALTj_BZyrJ5bFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.78.0/24
Signature Algorithm: sha256WithRSAEncryption
77:c7:b3:c8:dd:59:f8:84:2c:04:f2:23:38:3c:8d:0d:ac:5b:
7e:58:1c:50:2c:a7:9f:bb:d3:b3:26:c7:20:b6:7c:5f:24:e2:
b5:3e:51:c6:be:b2:32:8e:e8:1f:51:5e:32:7e:48:03:7d:e6:
35:87:b4:8f:69:9b:6d:68:56:b5:4a:f4:02:e4:d5:d2:9e:e0:
12:17:f1:78:4f:4e:23:0e:20:e8:26:c8:8d:5a:94:54:73:69:
e6:e4:61:fd:2f:3f:73:77:f5:cf:12:68:d1:b2:47:bf:9b:4e:
48:61:e8:72:6d:40:ac:0e:c4:7d:71:21:47:04:a6:2a:e5:c3:
fe:d9:cb:85:11:8f:2c:ea:c2:44:37:89:d9:95:ef:1b:90:dd:
c6:db:20:36:0a:9b:51:93:d7:c0:46:05:98:56:6a:d5:43:b5:
b9:18:48:8e:35:a1:fa:5f:6f:a9:61:2e:a6:5b:35:70:69:75:
a2:50:d3:e0:e9:ed:06:59:7a:e1:c0:0d:81:c0:35:ef:e8:36:
39:aa:5a:c2:95:2d:5b:b0:c9:64:97:07:c9:25:c2:06:7a:fc:
f5:bb:48:06:58:e8:8f:00:8d:57:f4:f0:06:9b:d5:b6:1f:c4:
ad:76:5b:14:8a:8f:29:fc:a6:4c:2c:ce:92:5c:ef:bc:f6:23:
8d:b4:4b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:31 2025 by rpki-client