Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/S7stUyazdwBOt0ReHFvSkUAfdII.roa
File: S7stUyazdwBOt0ReHFvSkUAfdII.roa (raw, json)
Hash identifier: 8A5+7qfsjMh5VeKdxK6Zh+NCsUCXZWXuZzcz9QBB2UA=
Subject key identifier: 4B:BB:2D:53:26:B3:77:00:4E:B7:44:5E:1C:5B:D2:91:40:1F:74:82
Certificate issuer: /CN=6a0f5830dbc4bbabb682777ebd3843d750489ec8
Certificate serial: 0903E8DE
Authority key identifier: 6A:0F:58:30:DB:C4:BB:AB:B6:82:77:7E:BD:38:43:D7:50:48:9E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag9YMNvEu6u2gnd-vThD11BInsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/S7stUyazdwBOt0ReHFvSkUAfdII.roa
Signing time: Wed 01 Jun 2022 15:24:20 +0000
ROA not before: Wed 01 Jun 2022 15:24:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.145.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151251166 (0x903e8de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0f5830dbc4bbabb682777ebd3843d750489ec8
Validity
Not Before: Jun 1 15:24:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bbb2d5326b377004eb7445e1c5bd291401f7482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b5:a7:cc:46:f9:13:02:bf:3f:82:3a:4b:19:
94:bc:8a:16:62:3b:e3:c3:1e:50:ab:6b:63:94:09:
40:5b:8e:aa:af:cb:d9:76:f7:04:10:77:60:2c:ff:
cc:d6:ee:a1:ac:ec:c8:eb:30:ae:ae:df:b5:63:af:
b4:d6:e9:a0:8e:bb:a9:f7:86:d4:69:23:dd:95:c6:
c5:ff:29:3b:fe:83:fd:ed:18:11:c9:02:bd:e1:9a:
d8:19:8a:8f:64:50:a9:3f:10:d3:63:95:5d:11:de:
7a:01:f2:bf:35:c2:e5:b5:9c:12:3b:83:fe:58:b3:
8b:db:db:7d:8f:f3:51:36:03:a8:fd:e6:14:10:dd:
2f:0b:05:6c:47:d2:ef:dc:5e:2c:cc:31:8c:4c:5d:
8a:9e:1a:14:db:2e:df:77:b5:6e:c2:5e:34:4a:0c:
07:6f:60:ee:c5:9c:9e:7b:02:c5:b1:43:d0:9f:23:
9d:a7:03:3b:bd:ba:75:2c:a1:6c:72:3b:e7:ac:ce:
fc:34:79:90:b9:7e:9c:a0:bc:4a:f6:ef:69:b3:d7:
25:19:78:c5:e0:07:27:b6:4b:06:d0:6d:26:2c:0f:
e9:0f:a5:1d:5c:9b:53:f6:3d:f4:94:e7:9f:cb:99:
91:16:33:69:78:f4:78:b2:b3:79:6d:19:07:84:62:
13:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:BB:2D:53:26:B3:77:00:4E:B7:44:5E:1C:5B:D2:91:40:1F:74:82
X509v3 Authority Key Identifier:
keyid:6A:0F:58:30:DB:C4:BB:AB:B6:82:77:7E:BD:38:43:D7:50:48:9E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag9YMNvEu6u2gnd-vThD11BInsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/S7stUyazdwBOt0ReHFvSkUAfdII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/ag9YMNvEu6u2gnd-vThD11BInsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.120.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:46:66:9c:8d:89:a6:1b:d6:ef:26:6a:49:5d:11:62:dc:1d:
0b:cb:59:ad:82:6f:70:55:5b:5e:e7:9e:c1:52:21:2f:e8:c5:
81:c7:33:81:b9:38:41:e8:4b:51:81:98:89:49:9b:5a:23:55:
3d:3c:dd:de:47:50:a2:53:e7:a5:91:aa:bf:97:50:2c:2b:ce:
c4:49:2c:8e:0d:8f:43:0a:8b:e2:48:37:7c:16:8c:ae:8f:e2:
47:ea:64:db:80:11:08:fc:df:15:8f:e6:33:43:60:c4:df:e3:
32:45:b8:16:d3:9c:18:6a:3d:f1:22:cf:38:7d:ce:bc:00:fb:
44:3b:8d:b2:ce:cf:4d:59:f5:6c:cd:82:f8:ef:6c:a5:5e:15:
b4:cc:04:cf:b7:10:e6:57:6c:4e:f6:f6:78:7c:f5:41:4c:2f:
e2:8e:90:92:6a:4b:d3:67:a5:0d:6b:27:b8:1e:64:cb:c0:5f:
8e:34:46:89:3c:b1:6b:9c:93:2b:b2:b6:33:82:74:0d:b6:0c:
6b:fb:fd:c3:9c:3b:63:96:ae:b1:41:53:bc:de:c0:13:e6:01:
4d:c3:a9:e1:68:31:e1:51:2b:14:1c:d6:7a:d0:fc:52:59:37:
b7:28:df:b0:1a:1b:eb:6e:2b:ce:cd:d3:af:7c:46:a3:92:68:
00:30:61:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:23:41 2025 by rpki-client