Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/79ff9c-69eb-4f8a-b7c9-b3217534f270/1/1-qMONpva7KhNzGniRWGhD87OPu0.roa
File: 1-qMONpva7KhNzGniRWGhD87OPu0.roa (raw, json)
Hash identifier: V/jNUY0beqF/gQId6aIsz9hXyio8CxdR+pQw5g9lb3Q=
Subject key identifier: FA:A3:0E:36:9B:DA:EC:A8:4D:CC:69:E2:45:61:A1:0F:CE:CE:3E:ED
Certificate issuer: /CN=b8dd97d554fcfc59ddfd062e262a4b3962fe6796
Certificate serial: 0382402A
Authority key identifier: B8:DD:97:D5:54:FC:FC:59:DD:FD:06:2E:26:2A:4B:39:62:FE:67:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uN2X1VT8_Fnd_QYuJipLOWL-Z5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/79ff9c-69eb-4f8a-b7c9-b3217534f270/1/1-qMONpva7KhNzGniRWGhD87OPu0.roa
Signing time: Thu 24 Feb 2022 07:29:17 +0000
ROA not before: Thu 24 Feb 2022 07:29:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203217
IP address blocks: 45.8.72.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58867754 (0x382402a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8dd97d554fcfc59ddfd062e262a4b3962fe6796
Validity
Not Before: Feb 24 07:29:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=faa30e369bdaeca84dcc69e24561a10fcece3eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:77:69:cf:0b:b8:cc:b3:a1:f5:33:25:73:36:
bc:e7:51:92:99:eb:53:33:de:1d:ca:a0:d4:34:1d:
ed:7f:df:b8:5d:f9:ab:88:62:52:b2:7e:07:28:d8:
20:55:e5:d3:6f:95:bd:c9:d2:c9:ec:0a:e3:ac:c2:
fd:09:36:13:0c:59:28:bd:4e:5a:bc:11:b4:8c:76:
28:fe:55:d5:66:3b:28:4a:05:c3:6e:51:2c:c0:e9:
cd:45:92:38:71:3a:26:55:25:24:f3:68:c0:df:b8:
c9:c9:85:9f:64:a8:db:3f:c3:9c:24:1e:6e:fb:07:
c2:38:72:8e:b8:f8:ec:5b:40:4b:bc:f5:20:05:08:
6f:37:06:09:bf:4b:32:67:6a:e8:b3:a9:c5:dd:87:
3c:ef:95:bd:d8:ed:bd:70:fd:43:0c:e6:4f:d0:4b:
68:d4:cd:b5:00:43:f2:ad:b9:2b:00:8c:a6:67:7b:
bd:2a:23:fa:54:57:cb:c2:c3:bf:95:b9:36:27:e9:
95:0b:9d:cc:fa:6e:94:3b:db:1a:63:1c:1f:f9:92:
5f:ea:66:15:4d:d2:4c:14:f6:3a:e2:b9:bd:14:95:
ce:a6:09:be:2b:ba:56:04:fd:49:fc:73:e9:f5:ef:
8a:4f:7d:75:c5:0f:4f:85:05:6e:93:af:85:84:4c:
ba:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A3:0E:36:9B:DA:EC:A8:4D:CC:69:E2:45:61:A1:0F:CE:CE:3E:ED
X509v3 Authority Key Identifier:
keyid:B8:DD:97:D5:54:FC:FC:59:DD:FD:06:2E:26:2A:4B:39:62:FE:67:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uN2X1VT8_Fnd_QYuJipLOWL-Z5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/79ff9c-69eb-4f8a-b7c9-b3217534f270/1/1-qMONpva7KhNzGniRWGhD87OPu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/79ff9c-69eb-4f8a-b7c9-b3217534f270/1/uN2X1VT8_Fnd_QYuJipLOWL-Z5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.72.0/23
Signature Algorithm: sha256WithRSAEncryption
53:b0:82:43:7e:5f:08:b3:2a:3a:ed:89:f9:ff:19:2f:d0:77:
13:43:a8:32:b6:5c:fd:66:9b:7f:c1:7b:50:fe:33:8e:e2:e8:
d5:98:bb:30:a2:f6:67:8f:06:4f:db:43:1e:94:ed:8e:78:1b:
2a:c9:42:fc:43:86:25:9c:82:9e:e3:41:37:28:65:9a:22:c4:
58:a2:56:16:a7:6b:3d:57:53:b2:78:d0:42:67:97:38:42:01:
d6:8c:13:43:cd:ea:ba:d4:dc:1b:e6:d0:6f:be:be:79:55:59:
e5:fd:d7:c8:68:e5:13:5f:9d:85:80:8c:25:dd:51:3d:99:06:
da:c2:45:b8:73:5d:74:0c:14:67:d6:1e:7b:98:58:11:e1:cb:
2a:e5:f1:78:b0:be:5f:6f:29:25:f1:a9:33:7a:ca:d4:1f:21:
86:90:87:ca:dd:94:d8:95:48:14:cc:a0:bb:ef:12:64:0f:15:
23:1f:4a:7a:56:4f:6b:ce:3c:da:35:a2:2d:a4:09:9b:de:03:
23:a3:24:4a:58:f2:e7:32:a9:50:6d:41:6d:d5:6a:39:21:b0:
55:df:43:aa:68:2a:d3:03:da:c6:8c:d2:e1:09:9b:d7:33:27:
66:18:13:b2:73:f6:4a:8c:ec:9f:21:e2:52:4e:60:51:cb:b7:
f3:bb:84:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:15:42 2025 by rpki-client