Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/d0b751-8e26-4066-8dfe-245cc8163174/1/h86n1pYaEYsiSiV5mwtw_GL3eJY.roa
File: h86n1pYaEYsiSiV5mwtw_GL3eJY.roa (raw, json)
Hash identifier: miE16oza4eGQS2Kd3B2Q4i17oufTu0HX3hsb/iA/TSo=
Subject key identifier: 87:CE:A7:D6:96:1A:11:8B:22:4A:25:79:9B:0B:70:FC:62:F7:78:96
Certificate issuer: /CN=8331a361bdc51d7aacadce302f1257d5c3f35ae1
Certificate serial: 018964895C68084CE935E7ADF7C70FD4CD7E
Authority key identifier: 83:31:A3:61:BD:C5:1D:7A:AC:AD:CE:30:2F:12:57:D5:C3:F3:5A:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzGjYb3FHXqsrc4wLxJX1cPzWuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/d0b751-8e26-4066-8dfe-245cc8163174/1/h86n1pYaEYsiSiV5mwtw_GL3eJY.roa
Signing time: Mon 17 Jul 2023 15:47:50 +0000
ROA not before: Mon 17 Jul 2023 15:47:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 45.135.34.0/24 maxlen: 24
45.140.67.0/24 maxlen: 24
45.140.66.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:89:5c:68:08:4c:e9:35:e7:ad:f7:c7:0f:d4:cd:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8331a361bdc51d7aacadce302f1257d5c3f35ae1
Validity
Not Before: Jul 17 15:47:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87cea7d6961a118b224a25799b0b70fc62f77896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f2:48:e2:9b:2a:42:5f:a7:75:56:4a:74:42:
4f:f0:27:ed:b1:97:1c:fb:7a:0e:97:31:ba:2f:48:
1f:10:85:a5:85:b2:4c:eb:bf:8f:d4:9b:7e:06:39:
a4:13:42:4c:41:93:7e:13:6e:7e:b0:50:4c:11:4b:
7d:d4:16:94:a4:b3:7a:fd:b6:b8:88:d5:b9:95:78:
b4:98:8d:fc:48:10:6f:83:7c:ee:ad:ba:ca:0a:81:
2f:39:55:cf:a9:f3:92:7c:5f:a4:74:64:84:15:fd:
3e:d7:71:4c:d0:a1:8b:5f:cf:a3:31:66:c0:16:9c:
93:70:ce:3e:31:e3:79:17:de:e2:05:c2:f9:d0:d4:
f7:91:de:bf:a9:fe:e4:cd:53:ec:b2:5d:c1:2b:99:
33:a8:e6:18:00:5b:58:8d:7f:22:9b:de:e2:3c:12:
03:a4:82:5f:b7:66:eb:f9:59:ff:06:ff:70:62:db:
0c:3b:9d:30:3d:d5:7d:2e:b4:d5:f3:30:8d:1d:cf:
e8:45:a2:7f:b4:4d:91:61:96:16:07:79:19:49:a9:
26:02:2b:da:7f:03:bb:23:6f:e7:e9:81:ba:2b:63:
db:6b:ed:30:9b:4e:57:dc:79:fa:c6:8e:ea:bd:80:
5c:23:13:e1:67:79:b3:3b:2f:fa:ab:f2:e6:59:52:
56:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CE:A7:D6:96:1A:11:8B:22:4A:25:79:9B:0B:70:FC:62:F7:78:96
X509v3 Authority Key Identifier:
keyid:83:31:A3:61:BD:C5:1D:7A:AC:AD:CE:30:2F:12:57:D5:C3:F3:5A:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzGjYb3FHXqsrc4wLxJX1cPzWuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/d0b751-8e26-4066-8dfe-245cc8163174/1/h86n1pYaEYsiSiV5mwtw_GL3eJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/d0b751-8e26-4066-8dfe-245cc8163174/1/gzGjYb3FHXqsrc4wLxJX1cPzWuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.34.0/24
45.140.66.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:6b:4c:77:8b:9e:49:15:8b:43:04:b7:ee:1f:2e:12:bf:0a:
ad:75:06:d7:8d:28:c6:7f:72:ca:5e:4c:be:b4:d0:6b:5c:41:
8a:aa:07:3d:26:af:0e:7b:61:04:88:62:db:e6:ee:7e:77:a1:
c2:cd:a4:40:1a:e3:ba:e4:aa:30:6c:d9:7b:5a:b7:0b:89:a5:
76:22:40:83:7e:0d:8b:84:d5:48:cd:5d:d9:e0:fe:67:d2:40:
44:83:9f:5b:f0:40:6f:2b:a0:6e:0b:6a:6c:4e:78:a9:7d:0b:
34:83:2e:ed:42:29:cd:03:db:d6:b3:cb:ab:40:fd:2e:17:f3:
81:ad:21:fd:eb:d4:3b:22:d1:2f:19:17:68:d3:80:8a:8c:2c:
b5:a3:35:99:f3:55:c3:94:5e:24:79:1e:c4:1b:71:e0:d6:59:
03:66:4c:70:48:36:f8:a4:12:e5:a0:5d:17:fd:41:c0:c7:6a:
f7:d4:0e:76:92:8f:d3:57:d2:e4:7f:0b:00:04:ab:90:32:09:
10:1a:62:06:d5:03:99:d9:9e:a5:05:c7:c8:97:ce:22:35:b4:
cf:d8:99:d6:4b:69:24:7f:72:64:6e:92:e1:4c:27:ff:80:d8:
54:c7:13:ea:5a:34:0f:c3:7a:c1:84:e5:77:c4:12:43:0a:04:
8e:52:ba:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:17 2025 by rpki-client