Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/e93f8b-9631-4a16-b22a-00a02a44f1da/1/zR61O1J-H2aIm4lZoj8oHfWyh2E.roa
File: zR61O1J-H2aIm4lZoj8oHfWyh2E.roa (raw, json)
Hash identifier: EbK04DHmPSus2PpQo1+4S8eP/E6LWcHID88Up2mqVVQ=
Subject key identifier: CD:1E:B5:3B:52:7E:1F:66:88:9B:89:59:A2:3F:28:1D:F5:B2:87:61
Certificate issuer: /CN=718ab66ee3a8c1b35accddba57c0c7d148cbe55f
Certificate serial: 0132FB7A
Authority key identifier: 71:8A:B6:6E:E3:A8:C1:B3:5A:CC:DD:BA:57:C0:C7:D1:48:CB:E5:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYq2buOowbNazN26V8DH0UjL5V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/e93f8b-9631-4a16-b22a-00a02a44f1da/1/zR61O1J-H2aIm4lZoj8oHfWyh2E.roa
Signing time: Sat 01 Jan 2022 05:03:53 +0000
ROA not before: Sat 01 Jan 2022 05:03:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29405
IP address blocks: 45.81.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20118394 (0x132fb7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718ab66ee3a8c1b35accddba57c0c7d148cbe55f
Validity
Not Before: Jan 1 05:03:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd1eb53b527e1f66889b8959a23f281df5b28761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9a:35:c7:86:a1:8d:2c:c7:10:1f:1b:48:9e:
f6:e2:a3:4c:53:1e:0a:5b:13:c2:35:c5:43:c6:8e:
b1:79:d6:8b:bd:77:cb:ed:e9:b8:d1:53:eb:65:55:
2f:05:68:f1:0c:8e:22:6a:ad:51:6d:26:67:cd:61:
8e:ab:4a:50:90:fc:c6:09:5d:82:90:a8:80:c5:96:
ae:50:c4:6b:17:bb:65:df:95:b3:de:b5:fa:4d:9a:
1e:c8:2e:cc:98:1e:39:dc:15:ff:93:6b:05:4f:7b:
9f:93:38:e7:68:6a:fc:87:c1:40:15:72:a4:1b:de:
02:81:61:25:e0:51:d7:e3:7e:7b:2a:71:70:7a:f7:
c5:f5:14:95:45:64:f0:60:2b:53:8a:2d:62:ba:e6:
3f:99:0a:1e:f3:58:76:39:cd:49:0c:52:d5:07:37:
0c:7c:81:05:11:57:8a:ab:05:9b:38:f3:cd:11:99:
4f:14:f2:a7:db:41:3f:8c:b9:73:1f:d0:0e:5b:c9:
a8:a9:e9:20:1f:2a:36:c3:32:4f:9b:68:2d:e2:ea:
bc:b4:86:df:f1:ca:37:cb:e6:9b:7a:bf:f5:71:c5:
65:ab:2d:b9:aa:b7:ac:ba:a3:45:6d:66:eb:f1:b1:
fe:16:53:01:f8:58:34:d2:92:ed:be:84:cd:99:dc:
51:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:1E:B5:3B:52:7E:1F:66:88:9B:89:59:A2:3F:28:1D:F5:B2:87:61
X509v3 Authority Key Identifier:
keyid:71:8A:B6:6E:E3:A8:C1:B3:5A:CC:DD:BA:57:C0:C7:D1:48:CB:E5:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYq2buOowbNazN26V8DH0UjL5V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/e93f8b-9631-4a16-b22a-00a02a44f1da/1/zR61O1J-H2aIm4lZoj8oHfWyh2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/e93f8b-9631-4a16-b22a-00a02a44f1da/1/cYq2buOowbNazN26V8DH0UjL5V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.36.0/22
Signature Algorithm: sha256WithRSAEncryption
45:a8:7d:96:eb:b4:76:59:c4:42:51:d2:e1:fc:79:4b:81:0b:
9a:36:25:36:ff:5b:37:47:e6:e9:3c:b2:9b:76:9d:7f:80:a3:
ac:e1:78:96:6c:53:f9:9d:19:16:7e:57:bd:f2:4d:28:3c:cf:
00:d8:29:bf:76:34:0f:ec:14:cc:c5:53:48:bb:2f:b4:1f:d6:
81:f7:9e:25:3b:5d:5e:aa:78:f4:6b:83:55:75:a5:b6:95:34:
39:e4:cd:33:e6:cc:59:a6:79:c5:fa:b5:92:51:3b:a2:03:6d:
a6:40:36:47:dd:37:39:7f:a5:e8:a5:80:c5:98:3c:46:99:6a:
bb:a3:6e:8c:17:10:c6:23:80:b2:2f:e3:20:4c:41:05:43:61:
f9:97:06:82:ff:7e:4c:49:c2:c9:82:50:b5:06:1a:60:a2:ec:
b3:94:22:13:96:4a:b5:13:9c:1b:44:d9:32:ba:b4:0a:89:a3:
da:84:0a:9b:e4:b5:f4:94:d6:68:eb:36:aa:c0:8f:71:27:b9:
f7:18:f1:6f:52:3c:5c:40:b1:10:3e:e7:ee:13:48:26:ab:be:
0d:3f:8d:4b:43:cc:9c:08:57:e3:02:cf:fd:0e:01:1b:58:9a:
8c:01:f7:ae:1f:15:0b:fa:f0:7a:6b:c9:b5:c9:d2:7d:8f:d8:
1f:8c:95:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:31:48 2025 by rpki-client