Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/Bw2jRj8R_SYYm6lHhpBoJDfG7hA.roa
File: Bw2jRj8R_SYYm6lHhpBoJDfG7hA.roa (raw, json)
Hash identifier: +yJM9E3QXHGReYdIOetWlJjlELaYz0FFGDDIddsIbuA=
Subject key identifier: 07:0D:A3:46:3F:11:FD:26:18:9B:A9:47:86:90:68:24:37:C6:EE:10
Certificate issuer: /CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Certificate serial: 01856F14A7D9A6CE24B892AF3F960E7AA187
Authority key identifier: D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/Bw2jRj8R_SYYm6lHhpBoJDfG7hA.roa
Signing time: Sun 01 Jan 2023 20:45:02 +0000
ROA not before: Sun 01 Jan 2023 20:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 45.145.176.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:a7:d9:a6:ce:24:b8:92:af:3f:96:0e:7a:a1:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Validity
Not Before: Jan 1 20:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=070da3463f11fd26189ba9478690682437c6ee10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ce:4c:60:e8:78:2a:77:e4:2b:87:c4:16:d5:
1d:16:35:1d:b7:ee:45:69:b9:a0:94:62:49:26:3e:
48:3a:46:61:88:39:89:15:9d:72:c4:6b:f0:94:eb:
33:8f:b8:70:4f:49:da:e6:dc:64:e4:0a:e4:8b:e2:
e7:a7:2c:3c:85:69:0d:41:d3:6d:90:4d:f2:9b:e5:
df:24:ac:41:41:ad:99:ff:00:7f:9e:7e:c4:eb:62:
9e:c5:5d:98:28:66:14:da:4e:7a:d2:b1:0a:56:82:
c7:1e:19:41:be:aa:ed:cd:34:26:a9:e9:64:81:2c:
62:f2:ea:4b:ac:c2:3e:83:aa:2a:40:b5:58:9b:fb:
79:0c:52:07:5f:41:64:10:13:9f:c1:66:59:98:1b:
7f:de:10:3a:dd:42:43:fe:a3:24:49:93:6d:89:77:
c3:94:d9:5a:23:44:2b:f2:fa:3d:5a:93:30:94:27:
79:2c:2c:a0:a7:0d:03:de:26:91:19:5d:9e:d6:43:
79:b9:7b:0d:5f:3f:24:7e:63:ef:6a:b4:20:b7:16:
84:1f:0a:c1:bb:ac:64:1c:a4:e3:9d:98:9a:47:53:
fb:a9:32:d1:de:6e:84:f5:8b:a3:cc:ca:e1:d3:f5:
89:10:b9:40:08:d5:ac:c0:be:a6:0b:19:bf:7a:47:
55:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:0D:A3:46:3F:11:FD:26:18:9B:A9:47:86:90:68:24:37:C6:EE:10
X509v3 Authority Key Identifier:
keyid:D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/Bw2jRj8R_SYYm6lHhpBoJDfG7hA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/0romGKtLYELuJcRnngd15DBtccY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.176.0/22
Signature Algorithm: sha256WithRSAEncryption
80:46:60:c8:c4:b2:fd:4e:e7:cd:c2:a6:3f:54:a4:f7:e5:dd:
f7:1d:50:13:81:89:45:45:df:88:16:22:5a:14:b4:ee:fd:a3:
71:96:b5:50:85:a2:c0:11:ca:f0:22:d4:26:e5:db:30:6e:00:
36:7b:71:9c:ed:82:c6:78:bc:7c:8f:86:99:80:33:4a:fd:9d:
14:a3:be:16:22:32:47:67:44:6a:f9:eb:98:f8:46:2a:af:24:
8f:37:4f:57:28:91:a0:ff:a4:55:11:c0:a6:f3:bc:77:50:6b:
cf:34:ba:73:aa:19:34:8b:b2:0c:38:93:45:14:da:33:fc:13:
62:c7:52:85:89:da:cf:ca:95:7d:a5:ae:be:ee:f2:91:08:52:
26:bb:80:4b:be:a3:49:54:f4:91:5d:7f:63:a6:c0:eb:e3:1c:
1a:10:63:b9:73:d0:f7:58:9b:8f:7c:55:d3:b4:0a:35:4b:38:
5d:d5:18:a9:ab:46:0c:38:96:65:5d:11:a2:51:b2:6a:63:a5:
85:c0:ac:d8:c3:09:c5:cd:f6:71:0f:aa:e8:7a:28:15:55:15:
99:a7:ab:28:59:81:34:c1:a8:b6:0d:bb:d1:e1:d6:e9:a7:b2:
b7:e1:2f:43:97:90:b0:b3:cb:32:bf:3d:b9:c4:ef:bf:77:49:
f5:75:a2:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:09:17 2025 by rpki-client