Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/lrPWODwaqR-xH6nGSOL2dHRj-g8.roa
File: lrPWODwaqR-xH6nGSOL2dHRj-g8.roa (raw, json)
Hash identifier: YJjy6Fxz3T5cx9R71oI12EzyKXSQQdiNy7HYnZYH4GE=
Subject key identifier: 96:B3:D6:38:3C:1A:A9:1F:B1:1F:A9:C6:48:E2:F6:74:74:63:FA:0F
Certificate issuer: /CN=0212a07ce793a5f0416027bf4aab8bd1ceaf0fce
Certificate serial: 018CB8AB25C7843E948720D6683068F056FC
Authority key identifier: 02:12:A0:7C:E7:93:A5:F0:41:60:27:BF:4A:AB:8B:D1:CE:AF:0F:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AhKgfOeTpfBBYCe_SquL0c6vD84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/lrPWODwaqR-xH6nGSOL2dHRj-g8.roa
Signing time: Sat 30 Dec 2023 03:01:13 +0000
ROA not before: Sat 30 Dec 2023 03:01:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 45.12.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b8:ab:25:c7:84:3e:94:87:20:d6:68:30:68:f0:56:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0212a07ce793a5f0416027bf4aab8bd1ceaf0fce
Validity
Not Before: Dec 30 03:01:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96b3d6383c1aa91fb11fa9c648e2f6747463fa0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:92:11:2f:4f:bd:48:25:7a:b1:21:ee:10:a1:
ea:14:14:7b:94:03:62:8f:30:62:a3:8c:69:61:09:
c8:a7:35:e2:c6:d8:06:94:6b:ff:48:42:74:70:15:
d1:15:f9:ec:11:4a:ef:c4:6d:02:7c:77:58:c9:fc:
16:1b:b6:81:f4:b3:f7:13:e3:9c:3b:81:49:0e:78:
8b:21:51:b7:2f:45:ef:5f:68:a1:fc:73:d4:d1:94:
2a:20:75:0d:a2:2f:a7:76:a3:15:47:4e:82:cb:fa:
17:17:26:8a:a2:2f:9d:03:9f:a3:ba:63:98:59:29:
3f:ae:82:1d:08:c0:d3:5c:31:f8:80:ce:74:62:56:
49:c0:c7:40:58:dd:dc:8e:55:e7:b1:28:7e:91:c9:
75:02:dd:02:de:7e:10:f7:e9:37:4d:1c:fd:93:8f:
cb:12:91:b0:0b:0c:12:02:60:6a:e8:cd:8f:58:6d:
53:9f:9a:c6:d3:78:98:15:34:1f:ef:b1:7a:9e:d3:
bd:f9:a1:7a:5e:af:75:d6:7f:c8:c3:06:e5:82:80:
90:08:19:5e:b3:f0:dc:6e:d0:7b:04:01:fe:7c:85:
b0:53:f5:97:1b:28:25:8c:df:cf:a5:27:a8:89:4b:
08:f5:31:f8:6b:c1:3e:e5:ea:d9:d6:4a:43:dc:14:
7d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B3:D6:38:3C:1A:A9:1F:B1:1F:A9:C6:48:E2:F6:74:74:63:FA:0F
X509v3 Authority Key Identifier:
keyid:02:12:A0:7C:E7:93:A5:F0:41:60:27:BF:4A:AB:8B:D1:CE:AF:0F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhKgfOeTpfBBYCe_SquL0c6vD84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/lrPWODwaqR-xH6nGSOL2dHRj-g8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e775eb-7d8a-4835-9456-bd7bf949d9c2/1/AhKgfOeTpfBBYCe_SquL0c6vD84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.52.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:60:9e:a7:c7:77:44:32:52:33:92:18:ca:59:57:6d:a3:da:
a9:9f:4e:64:2b:93:a3:f1:04:07:41:9c:96:f4:73:2f:5d:b7:
8f:3f:29:5c:22:21:0e:e9:32:0c:41:fc:cf:c4:0a:aa:1e:8b:
8e:65:9c:9b:09:fb:8a:eb:29:09:23:ff:6c:a7:3a:c1:7e:12:
b9:75:b5:00:8b:2b:ce:54:41:e6:78:df:30:d2:f5:98:76:a4:
80:34:3f:33:05:7b:5c:9b:07:bd:c8:e4:7c:d2:64:5e:09:75:
de:06:f5:78:15:2d:3c:64:66:dc:1e:17:e6:88:d9:17:01:9e:
b7:a7:97:92:2c:1f:32:d5:77:aa:8d:8b:bd:a0:10:d8:f9:19:
a0:35:34:e8:1e:08:c5:4d:61:15:44:1a:ca:81:c5:bd:20:f6:
ac:c7:7b:8e:ea:e4:79:4c:e5:02:2f:79:ea:25:96:a0:86:84:
57:3f:2d:57:8b:53:70:0f:43:e8:2c:37:bd:5f:54:f1:b1:08:
94:eb:7d:63:47:3d:df:bc:56:0e:33:6d:c3:4c:3f:26:24:fc:
a8:67:ba:2a:ed:b9:a6:9e:a8:ac:80:4a:7f:cd:81:b5:42:c8:
5d:ec:43:dc:a1:8b:66:9b:97:84:a6:e8:fb:5d:ee:34:03:46:
e5:ca:56:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 15:17:09 2025 by rpki-client