Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/koCfOOL5BafUOMw2xxx72Y9M2nI.roa
File: koCfOOL5BafUOMw2xxx72Y9M2nI.roa (raw, json)
Hash identifier: QTcEgKC/iLGLDDIJCASpzdHvE+uTqY2MWc0nFvl5HP8=
Subject key identifier: 92:80:9F:38:E2:F9:05:A7:D4:38:CC:36:C7:1C:7B:D9:8F:4C:DA:72
Certificate issuer: /CN=9c8440d3e55babae92bc693ea39092f6e4f50c24
Certificate serial: A0C168
Authority key identifier: 9C:84:40:D3:E5:5B:AB:AE:92:BC:69:3E:A3:90:92:F6:E4:F5:0C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nIRA0-Vbq66SvGk-o5CS9uT1DCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/koCfOOL5BafUOMw2xxx72Y9M2nI.roa
Signing time: Tue 31 May 2022 05:32:13 +0000
ROA not before: Tue 31 May 2022 05:32:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 45.91.88.0/22 maxlen: 32
45.149.20.0/22 maxlen: 24
45.83.224.0/22 maxlen: 32
45.134.104.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10535272 (0xa0c168)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c8440d3e55babae92bc693ea39092f6e4f50c24
Validity
Not Before: May 31 05:32:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92809f38e2f905a7d438cc36c71c7bd98f4cda72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3d:ae:8b:5b:cd:27:2a:b1:28:f2:bb:2e:ee:
27:78:d9:26:dc:90:b2:1b:78:4c:6d:52:be:30:de:
21:84:a3:b4:b7:0c:93:95:7d:02:fa:2e:26:d6:f9:
1c:81:da:ae:c4:38:04:78:ac:3c:33:31:38:11:2e:
06:90:23:54:31:0d:3d:77:d6:5e:79:15:fc:84:fe:
6a:d3:78:9d:3a:21:1a:73:e7:ab:b8:2d:56:4c:ec:
d7:3e:cf:8c:14:84:09:83:d0:4f:97:55:80:b0:d5:
9a:5d:2e:d9:b7:21:f4:43:9c:90:01:0c:45:02:59:
68:dc:92:b1:de:9b:61:7e:ca:10:71:d0:3d:30:cb:
fc:84:16:44:90:9c:d1:94:60:cc:42:89:77:f6:72:
05:1c:d8:76:79:b1:c1:13:6b:33:55:0b:93:fc:40:
93:b8:ad:c2:d0:2c:28:fe:4e:bd:84:8d:71:65:2b:
6f:62:7e:62:de:73:bf:2e:07:2f:af:be:1e:37:4e:
82:1a:03:f9:1b:c5:be:bc:98:13:10:ca:3c:29:46:
e8:42:74:aa:51:d8:d2:27:8a:31:4c:f9:99:60:bd:
7a:4f:e6:86:f1:58:fd:be:06:05:ae:71:51:09:d0:
ae:d6:90:01:e6:43:1c:47:51:8c:29:18:8b:ed:1a:
94:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:80:9F:38:E2:F9:05:A7:D4:38:CC:36:C7:1C:7B:D9:8F:4C:DA:72
X509v3 Authority Key Identifier:
keyid:9C:84:40:D3:E5:5B:AB:AE:92:BC:69:3E:A3:90:92:F6:E4:F5:0C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nIRA0-Vbq66SvGk-o5CS9uT1DCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/koCfOOL5BafUOMw2xxx72Y9M2nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/nIRA0-Vbq66SvGk-o5CS9uT1DCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.224.0/22
45.91.88.0/22
45.134.104.0/22
45.149.20.0/22
Signature Algorithm: sha256WithRSAEncryption
83:c0:63:bf:83:bb:e5:a1:0d:72:fe:da:d3:92:b8:fc:88:62:
9b:29:20:9f:01:fd:ff:53:8f:9d:a7:80:ff:9f:f6:01:5c:e7:
c9:38:47:25:fe:9d:84:f1:91:1f:41:f0:81:d5:21:81:fb:ce:
1e:2d:b5:ca:7a:f9:9c:6c:53:10:82:89:71:1f:b5:cb:f3:db:
d3:22:2a:78:58:59:74:4a:b4:13:c5:53:90:de:62:84:cc:31:
ea:65:0e:aa:ae:9c:a4:6d:dc:95:f8:b1:08:56:e6:c6:1d:7e:
12:3a:98:18:33:53:9a:dc:91:23:1e:e4:a1:32:e1:7c:b6:f3:
8a:b0:ba:12:aa:fe:69:f9:b3:5f:25:89:1d:0d:1a:30:1c:0b:
c6:23:d4:5c:45:0c:c2:ca:8d:2b:e0:b6:85:46:c0:d9:24:f1:
1c:af:21:90:2c:64:64:65:62:a2:a0:a4:c4:00:74:c6:b0:84:
c4:b6:8b:9a:2c:ad:77:e5:68:d7:96:65:87:5a:9b:ef:af:b5:
1f:ff:89:41:f8:04:35:83:47:f5:0b:66:74:da:d1:db:5c:bc:
ff:1a:d5:49:2b:38:d8:5c:36:e4:97:f5:93:bc:bb:09:eb:68:
3e:ba:d1:c6:6b:16:27:51:42:ff:41:05:ba:89:db:21:2c:ee:
26:08:3c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:15:06 2025 by rpki-client