Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/8YqTS_nIN5O7vk3EOqyqPy2atSs.roa
File: 8YqTS_nIN5O7vk3EOqyqPy2atSs.roa (raw, json)
Hash identifier: o3Bb4czbNDTxONQmbaToXLngEel2X2VTdsBbthnVJQc=
Subject key identifier: F1:8A:93:4B:F9:C8:37:93:BB:BE:4D:C4:3A:AC:AA:3F:2D:9A:B5:2B
Certificate issuer: /CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Certificate serial: 01840B5D0B463C72C243EEA579B0DD393D36
Authority key identifier: 82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/8YqTS_nIN5O7vk3EOqyqPy2atSs.roa
Signing time: Mon 24 Oct 2022 18:59:17 +0000
ROA not before: Mon 24 Oct 2022 18:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 45.154.104.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0b:5d:0b:46:3c:72:c2:43:ee:a5:79:b0:dd:39:3d:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ed4a2fb180df5f99d4bf8c77cc9a06ef26058c
Validity
Not Before: Oct 24 18:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f18a934bf9c83793bbbe4dc43aacaa3f2d9ab52b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:58:30:53:4c:eb:7c:14:0a:32:3d:36:a2:85:
64:c6:fe:4b:fa:21:58:ea:db:5b:38:f7:4c:19:ef:
73:72:5b:c6:8e:bc:21:fb:03:d7:85:f9:93:1d:95:
67:a5:a8:db:d2:d9:94:dd:58:d5:4f:75:07:ba:dc:
9a:5d:36:88:2c:e2:36:81:b3:69:28:67:11:42:34:
2d:4a:ad:bd:69:a7:65:d8:c0:67:01:da:6f:70:d1:
bf:af:53:e8:b4:bf:c8:6b:0b:71:bc:e6:1f:78:0e:
4e:05:c2:f0:c0:87:5a:67:38:fb:2b:44:20:1e:20:
9a:2f:3c:3f:9f:27:63:f3:f5:9e:4d:cc:71:9f:34:
9c:35:fa:5c:c5:99:99:3b:49:e7:8d:4b:9c:07:40:
cc:41:6b:73:19:cd:f2:28:2a:00:1f:12:9b:d4:8c:
cd:8d:56:7f:33:3d:d3:d6:2b:79:f7:42:f8:64:5e:
df:49:6e:6c:fc:4c:03:ca:95:fe:b5:48:2f:00:5d:
9e:d8:da:f3:5b:ef:fe:33:f9:e6:1f:dc:a4:34:96:
c0:3a:c1:9a:ef:93:61:6c:57:29:41:c0:93:35:a6:
e3:4b:19:76:21:b5:40:91:50:37:5b:df:31:c2:aa:
fd:97:91:a4:47:f6:0b:15:0c:3d:79:65:4d:d8:df:
15:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:8A:93:4B:F9:C8:37:93:BB:BE:4D:C4:3A:AC:AA:3F:2D:9A:B5:2B
X509v3 Authority Key Identifier:
keyid:82:ED:4A:2F:B1:80:DF:5F:99:D4:BF:8C:77:CC:9A:06:EF:26:05:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gu1KL7GA31-Z1L-Md8yaBu8mBYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/8YqTS_nIN5O7vk3EOqyqPy2atSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0301bc-c7fe-46e9-b7a0-4526f6263bce/1/gu1KL7GA31-Z1L-Md8yaBu8mBYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.104.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:92:f2:47:56:d9:7d:ae:7b:d2:25:f4:3e:a9:d7:78:80:01:
c2:51:af:6d:d1:e8:06:41:dc:58:53:53:73:1d:47:fd:41:38:
65:75:79:24:62:f0:21:21:d9:da:16:2a:0f:1e:6f:b1:62:df:
58:b2:d3:21:36:98:a2:8e:c7:20:34:61:5e:ca:57:9e:20:09:
0e:e1:6e:67:15:e5:fb:c7:22:2a:4f:5e:49:d9:0d:ab:0d:5b:
c2:7c:33:e9:26:0d:00:07:63:f7:4e:89:24:41:72:8d:9d:52:
a6:73:fd:0b:ab:33:b4:63:eb:41:cc:29:55:e7:b0:ea:87:52:
3a:44:ad:43:db:73:da:63:63:14:77:ef:93:c0:c4:a2:8d:5f:
16:e3:00:e0:c3:9f:7a:0a:d3:b2:2c:cd:ce:19:cb:01:e5:5e:
e1:46:d7:f7:22:46:f8:7a:38:6c:ef:15:af:8e:0d:60:73:d2:
45:1b:e0:01:b9:8c:30:3d:8d:cc:58:28:da:56:8a:27:56:da:
2a:61:7c:3e:83:cf:33:04:78:bb:7d:ac:b3:7a:30:61:f0:48:
66:a9:cb:15:7c:45:fe:d0:49:e5:ff:8c:e2:08:9c:bf:fd:5d:
0b:04:b6:44:1e:cc:0f:af:be:b3:b8:5b:18:2c:18:1d:2d:7c:
86:29:d8:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:23 2025 by rpki-client