Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/f1fd1c-b91e-43d3-9dfb-46a5d61b2a0e/1/cR0YsU13RW5-wks0H44MFZsoasE.roa
File: cR0YsU13RW5-wks0H44MFZsoasE.roa (raw, json)
Hash identifier: 0iOUx75o6ow1DMhFUMgSwQSDqUnE7LFh0dI7536XT4o=
Subject key identifier: 71:1D:18:B1:4D:77:45:6E:7E:C2:4B:34:1F:8E:0C:15:9B:28:6A:C1
Certificate issuer: /CN=c79078eb7e94e74c7a621c88593d6b7208106f2e
Certificate serial: 06EC27DB
Authority key identifier: C7:90:78:EB:7E:94:E7:4C:7A:62:1C:88:59:3D:6B:72:08:10:6F:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x5B4636U50x6YhyIWT1rcggQby4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/f1fd1c-b91e-43d3-9dfb-46a5d61b2a0e/1/cR0YsU13RW5-wks0H44MFZsoasE.roa
Signing time: Sat 01 Jan 2022 02:00:29 +0000
ROA not before: Sat 01 Jan 2022 02:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57335
IP address blocks: 45.154.216.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116139995 (0x6ec27db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c79078eb7e94e74c7a621c88593d6b7208106f2e
Validity
Not Before: Jan 1 02:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=711d18b14d77456e7ec24b341f8e0c159b286ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2a:b3:77:59:5a:dc:d6:82:a3:a0:22:c9:6e:
65:5c:51:48:c5:db:ff:84:1a:c7:7d:cf:53:1a:29:
80:df:bd:ee:8a:e9:c5:79:48:ab:a0:b7:ac:8b:1b:
4a:6c:d2:86:20:a5:82:c6:b3:47:f9:76:59:fb:df:
6f:f4:ec:f6:b3:c6:66:d2:f4:d3:b3:7f:13:bd:ad:
49:c4:e0:23:d8:34:9a:5d:38:b2:0b:77:62:9c:26:
f5:57:b7:e6:30:be:e5:23:30:a4:1a:77:79:a8:2a:
14:6d:1a:88:62:62:e2:a4:1f:3b:99:7f:07:45:e6:
de:ff:3a:9c:27:0a:67:4e:fd:9d:e2:00:25:91:41:
9d:79:08:88:c6:bb:4a:b4:d1:e8:7b:f0:5c:55:16:
86:81:01:e0:6b:9f:b2:43:a9:5e:96:f1:94:f0:94:
04:82:d2:a0:4e:ff:ab:2f:5c:a2:3f:73:71:c5:b7:
39:6b:39:38:42:64:f1:14:f3:80:83:57:f5:3d:dc:
99:5a:b4:1a:eb:14:c6:69:78:dc:6f:25:f9:9b:98:
f8:b1:c1:49:dc:c8:62:44:29:7b:2d:02:74:6d:11:
b4:cb:8b:63:87:f6:e4:3f:63:91:9d:91:e8:c5:ba:
49:e1:6a:9a:75:ec:c3:8e:37:1b:00:32:83:77:5b:
bd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:1D:18:B1:4D:77:45:6E:7E:C2:4B:34:1F:8E:0C:15:9B:28:6A:C1
X509v3 Authority Key Identifier:
keyid:C7:90:78:EB:7E:94:E7:4C:7A:62:1C:88:59:3D:6B:72:08:10:6F:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x5B4636U50x6YhyIWT1rcggQby4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/f1fd1c-b91e-43d3-9dfb-46a5d61b2a0e/1/cR0YsU13RW5-wks0H44MFZsoasE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/f1fd1c-b91e-43d3-9dfb-46a5d61b2a0e/1/x5B4636U50x6YhyIWT1rcggQby4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.216.0/22
Signature Algorithm: sha256WithRSAEncryption
30:45:90:e4:52:37:9a:2f:78:ab:71:14:94:52:22:e0:c2:62:
d5:2c:20:04:7d:cf:f2:77:e8:3b:23:ab:3c:23:18:43:29:ed:
42:06:59:13:a0:23:ef:65:d8:e4:04:e8:ee:42:4b:41:5b:9b:
7e:fa:7c:17:ff:3e:b9:25:63:c2:f3:97:f8:e5:31:61:64:eb:
c2:da:63:30:df:3b:ea:27:c5:e3:01:cf:02:05:c4:fa:9f:39:
26:b5:ed:1e:13:aa:c0:95:04:74:51:64:a7:c8:f1:c9:d6:f1:
f7:ea:2a:3b:b5:0a:12:c4:1a:7b:3b:e6:d2:30:df:53:2d:4e:
de:14:7b:2b:b0:ca:8b:43:65:58:3f:60:30:30:f2:26:66:b8:
21:49:b1:ea:33:96:00:c3:ff:91:6b:7e:36:9e:53:e1:11:1b:
b4:ad:09:35:cb:6c:3f:c2:6c:20:65:70:fd:98:9c:90:0f:55:
8b:b7:e0:52:01:66:60:63:3d:d5:84:fa:00:a9:13:66:97:4a:
27:a4:ca:30:44:87:64:34:e1:54:0c:7c:76:5d:35:e2:f1:f3:
e4:a3:87:75:fe:19:b7:ad:12:d8:83:c6:6b:a3:55:45:4b:b0:
0a:f4:87:87:78:cc:02:07:d6:b8:2a:60:d2:b4:84:a5:87:33:
29:82:a4:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:25 2025 by rpki-client