Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/nzAcOW3YzEhEPcimjSi0Aa0s-Cs.roa
File: nzAcOW3YzEhEPcimjSi0Aa0s-Cs.roa (raw, json)
Hash identifier: 9KP+u4PTt7zQ1ivaDZEMnQ1jGLplDh3BZLcW+6ikW0Q=
Subject key identifier: 9F:30:1C:39:6D:D8:CC:48:44:3D:C8:A6:8D:28:B4:01:AD:2C:F8:2B
Certificate issuer: /CN=9c8440d3e55babae92bc693ea39092f6e4f50c24
Certificate serial: 7A0AA9
Authority key identifier: 9C:84:40:D3:E5:5B:AB:AE:92:BC:69:3E:A3:90:92:F6:E4:F5:0C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nIRA0-Vbq66SvGk-o5CS9uT1DCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/nzAcOW3YzEhEPcimjSi0Aa0s-Cs.roa
Signing time: Sat 14 May 2022 06:23:40 +0000
ROA not before: Sat 14 May 2022 06:23:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 45.149.20.0/22 maxlen: 24
45.83.224.0/22 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7998121 (0x7a0aa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c8440d3e55babae92bc693ea39092f6e4f50c24
Validity
Not Before: May 14 06:23:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f301c396dd8cc48443dc8a68d28b401ad2cf82b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8c:d8:9c:1f:05:47:94:28:5c:fe:2f:40:0e:
fa:09:ac:f3:0e:db:2c:a5:73:4c:bb:51:26:2e:8f:
4f:24:ad:a4:47:e4:ed:4b:5a:2c:30:de:ca:99:df:
b3:29:33:fc:86:ca:e1:df:ac:40:80:9c:70:29:11:
f7:aa:4b:52:57:09:e1:c3:82:93:42:ea:3a:49:61:
a7:97:be:f9:94:87:46:e8:48:92:b4:d0:41:0d:b4:
9c:25:d4:99:73:cf:9c:9a:5e:4e:4b:96:8b:8a:1e:
2a:5b:38:9e:17:3f:05:e4:4e:7c:e3:b4:1c:43:03:
fc:07:e3:b9:33:a9:ab:e5:fc:1b:3e:0e:ff:75:b1:
31:58:a2:32:40:e6:85:9c:cf:d4:7b:ae:cf:20:f3:
4c:d9:fc:0d:f1:77:e6:6e:c6:72:a0:82:c5:d6:ce:
a5:4f:74:e0:42:7f:58:6c:e9:19:bf:0d:2b:03:61:
80:d3:dd:d8:a2:34:b3:60:75:d0:a5:98:c2:41:25:
fd:f1:ae:6f:9a:93:be:ce:4a:c0:14:8e:f9:46:4f:
2c:09:ea:bb:27:07:fe:1b:db:3c:cf:93:50:c4:93:
a2:5f:81:24:a5:58:53:a3:53:57:7e:4b:a5:8e:8c:
bc:d0:79:a4:1c:8f:e4:8e:7a:84:0a:ea:9d:5b:49:
78:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:30:1C:39:6D:D8:CC:48:44:3D:C8:A6:8D:28:B4:01:AD:2C:F8:2B
X509v3 Authority Key Identifier:
keyid:9C:84:40:D3:E5:5B:AB:AE:92:BC:69:3E:A3:90:92:F6:E4:F5:0C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nIRA0-Vbq66SvGk-o5CS9uT1DCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/nzAcOW3YzEhEPcimjSi0Aa0s-Cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/269486-09dc-4d49-84e5-968bc32d9adc/1/nIRA0-Vbq66SvGk-o5CS9uT1DCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.224.0/22
45.149.20.0/22
Signature Algorithm: sha256WithRSAEncryption
00:ab:4b:3a:f3:fc:99:f6:88:98:0b:e1:29:c7:41:9c:96:77:
2b:f1:5f:ea:7c:76:15:3f:ca:78:84:e4:36:ee:8b:44:01:74:
a9:55:bb:4d:39:1d:22:97:e3:9a:30:46:92:54:72:9f:d8:48:
92:6c:b4:d1:2b:34:26:45:28:2a:c4:e9:97:56:cb:5c:d3:d6:
63:d9:28:91:ca:40:f2:12:11:06:f0:14:31:a2:bd:ac:ec:9b:
4a:68:10:63:9f:dc:4b:76:53:a3:05:ae:c9:94:d9:7e:4f:db:
52:18:07:61:70:54:68:b2:c7:58:71:bd:d8:83:59:91:4a:03:
aa:5a:26:35:30:10:16:b0:88:60:43:f3:fe:a9:7a:33:0a:b1:
b4:b3:f6:7e:0f:ca:3b:fa:ba:78:ec:52:ca:72:b7:2c:7b:db:
01:44:28:1d:aa:30:e1:05:da:32:0a:a5:96:c6:c9:17:68:1c:
1a:aa:92:dc:80:97:38:53:50:95:a3:42:e4:6b:8d:5b:6e:a1:
a7:4e:03:2d:e1:3e:93:cd:e6:0d:c8:a9:f2:a2:35:ea:c6:ce:
b4:58:65:c7:a0:45:25:03:2d:3e:40:17:47:45:42:27:fe:51:
7d:68:07:f2:a2:19:9e:fd:58:72:66:ea:37:82:b5:a3:d1:c6:
da:3d:79:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:15:49 2025 by rpki-client