Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/e93f8b-9631-4a16-b22a-00a02a44f1da/1/KfaVW-g6c687CuvNHjzS5UQK_Uw.roa
File: KfaVW-g6c687CuvNHjzS5UQK_Uw.roa (raw, json)
Hash identifier: Ewcdz9VXpW+2g+EjbZMOwjFdlbhPsX4OqjTWYHZdVkE=
Subject key identifier: 29:F6:95:5B:E8:3A:73:AF:3B:0A:EB:CD:1E:3C:D2:E5:44:0A:FD:4C
Certificate issuer: /CN=718ab66ee3a8c1b35accddba57c0c7d148cbe55f
Certificate serial: 021B3727
Authority key identifier: 71:8A:B6:6E:E3:A8:C1:B3:5A:CC:DD:BA:57:C0:C7:D1:48:CB:E5:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYq2buOowbNazN26V8DH0UjL5V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/e93f8b-9631-4a16-b22a-00a02a44f1da/1/KfaVW-g6c687CuvNHjzS5UQK_Uw.roa
Signing time: Mon 11 Apr 2022 06:11:34 +0000
ROA not before: Mon 11 Apr 2022 06:11:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.81.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35338023 (0x21b3727)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718ab66ee3a8c1b35accddba57c0c7d148cbe55f
Validity
Not Before: Apr 11 06:11:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29f6955be83a73af3b0aebcd1e3cd2e5440afd4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:92:2a:a1:b7:ce:e5:3e:68:ca:8b:75:f1:ec:
8d:5e:1a:79:f7:78:2b:93:1e:0b:14:50:f9:e6:71:
11:0a:5c:f8:a3:2f:71:e5:5e:6b:a5:25:3f:8f:23:
dc:f2:9d:46:ff:46:cd:ff:e3:20:98:4d:25:2a:82:
07:78:30:06:83:c8:0b:69:78:02:8a:04:2c:8e:21:
d8:64:d6:40:8a:a6:9e:20:58:66:6f:bb:1c:0f:47:
9f:d9:03:20:59:39:bc:ec:27:2e:fe:9c:c3:80:40:
87:22:da:28:73:5e:ab:0a:0b:b0:d5:9a:78:85:07:
07:a5:ae:8e:fc:40:a0:ba:ce:73:14:47:8a:9b:8b:
43:39:91:42:e4:45:cd:ac:ea:31:17:df:c2:8d:0d:
15:7e:82:74:7b:59:0a:6e:31:42:d1:22:3f:1a:41:
96:8a:c2:02:cd:dc:26:cd:12:ad:28:c5:6d:97:b2:
0d:b2:cd:18:24:54:db:c0:26:97:55:f9:21:a0:a6:
c3:4e:e4:cc:d2:4f:87:0b:de:3a:64:54:79:13:3e:
fa:ee:5f:d0:29:1c:83:f0:b9:b9:ef:8b:c1:48:7f:
1b:e0:ac:1d:b3:22:6c:78:e8:08:bc:28:c0:ed:6d:
85:3d:6d:13:82:5b:84:d8:06:c0:6f:51:3c:1b:b3:
d2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F6:95:5B:E8:3A:73:AF:3B:0A:EB:CD:1E:3C:D2:E5:44:0A:FD:4C
X509v3 Authority Key Identifier:
keyid:71:8A:B6:6E:E3:A8:C1:B3:5A:CC:DD:BA:57:C0:C7:D1:48:CB:E5:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYq2buOowbNazN26V8DH0UjL5V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/e93f8b-9631-4a16-b22a-00a02a44f1da/1/KfaVW-g6c687CuvNHjzS5UQK_Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/e93f8b-9631-4a16-b22a-00a02a44f1da/1/cYq2buOowbNazN26V8DH0UjL5V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.36.0/24
Signature Algorithm: sha256WithRSAEncryption
af:5c:4d:86:1e:c2:7b:33:91:bb:5f:82:0c:40:44:31:bf:5d:
98:d6:43:cc:58:57:38:a5:49:2f:6d:94:5c:bf:44:0d:60:f7:
81:cb:ed:63:72:69:e1:f1:43:0a:ed:6d:fd:b6:59:9b:21:5e:
7a:45:f4:99:c4:ce:dd:15:e5:da:22:fd:9a:53:cd:78:10:d7:
93:d6:de:3d:b1:db:10:f4:c0:4e:9f:62:72:84:5f:9b:71:42:
58:f2:77:65:f3:42:9e:93:6f:85:ec:db:2e:b9:8e:c1:16:ab:
ce:40:4a:96:92:f1:80:a2:14:8f:31:1e:3e:1e:b7:a5:05:90:
83:71:f9:7d:b2:15:b1:71:09:4f:d3:0b:25:e6:44:79:e4:93:
25:62:6b:2a:09:4a:c2:01:b5:dd:6b:1e:e9:16:68:4d:ce:f8:
da:cc:31:e5:53:ca:8c:0a:1f:e1:61:1c:13:bf:95:b4:c5:d4:
ef:de:d0:ff:b1:65:e8:07:c4:c0:2c:bc:f8:96:9c:49:67:65:
93:b9:39:89:86:15:7d:1b:51:4e:f5:f0:73:7e:9f:e7:ac:7c:
77:56:cf:ff:3d:02:10:18:3f:2a:c0:f9:7d:d3:9c:26:d1:83:
e1:d8:ba:61:ac:72:74:dd:fd:15:fc:00:56:ac:8e:2d:8b:fe:
6d:59:5b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:31:36 2025 by rpki-client