Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/dM5XQvvwfo1Ic0RIa1cE9psFtlU.roa
File: dM5XQvvwfo1Ic0RIa1cE9psFtlU.roa (raw, json)
Hash identifier: vSVsYQOEgICn48zJKASqAZQMlajRgHOvVQ+DyA17HFc=
Subject key identifier: 74:CE:57:42:FB:F0:7E:8D:48:73:44:48:6B:57:04:F6:9B:05:B6:55
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 018442BCAE9EFCC5EA4E35F57CFF09E0335E
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/dM5XQvvwfo1Ic0RIa1cE9psFtlU.roa
Signing time: Fri 04 Nov 2022 13:02:52 +0000
ROA not before: Fri 04 Nov 2022 13:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210636
IP address blocks: 45.91.117.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:42:bc:ae:9e:fc:c5:ea:4e:35:f5:7c:ff:09:e0:33:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Nov 4 13:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74ce5742fbf07e8d487344486b5704f69b05b655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8b:a6:c9:e0:16:4d:54:5f:dc:5b:b2:a2:37:
4f:b9:00:28:56:c4:dc:5c:de:0e:95:46:ae:90:c4:
97:b8:d8:35:82:a0:4c:5c:b4:73:c7:fc:94:5e:ca:
08:b5:d9:fd:8d:1b:cc:f0:4c:21:34:57:c0:46:61:
b1:32:74:9d:a5:cc:6d:15:f8:c6:c3:15:94:07:32:
6e:d3:fa:b5:34:cd:0e:54:0b:ba:25:0d:3f:e7:88:
07:65:dc:fc:ec:79:e6:ff:31:0a:bd:1b:f9:ee:89:
cb:d1:57:c9:15:a3:2b:59:9d:81:57:ea:42:03:b9:
db:d0:23:c0:e1:19:f6:14:4c:72:97:67:da:0e:31:
bf:58:f8:17:c9:cc:d9:82:73:25:4e:31:25:c7:f8:
37:68:e1:13:6a:b7:2e:b7:66:69:0f:79:c0:f6:00:
fd:9c:a2:c4:66:f1:dd:ae:77:02:3a:dc:0e:86:03:
ee:9c:2d:cb:d2:5c:57:54:cf:d5:e8:3c:75:13:d4:
35:7b:5b:62:9f:be:92:10:e7:79:66:78:1a:d1:62:
c2:db:26:ce:46:d7:f2:64:1c:78:74:cb:1b:e9:e8:
b4:f7:70:eb:4c:46:68:bd:6a:1c:d2:42:fe:09:cc:
41:a3:46:61:8a:ab:69:40:6a:5c:8d:da:2f:fb:ad:
b6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CE:57:42:FB:F0:7E:8D:48:73:44:48:6B:57:04:F6:9B:05:B6:55
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/dM5XQvvwfo1Ic0RIa1cE9psFtlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.117.0/24
Signature Algorithm: sha256WithRSAEncryption
24:e9:41:e4:b6:4e:86:f3:b6:62:b3:46:e0:45:76:04:e9:e3:
a7:d4:7c:1c:fd:e7:03:36:94:c5:41:22:17:06:f7:94:cd:10:
ab:65:b1:a2:59:74:01:dd:6b:bf:85:c3:b9:31:be:ee:be:83:
31:b3:96:a8:34:bd:21:48:ea:e5:3d:2f:b2:83:16:bd:bc:57:
17:6e:05:de:2d:6b:93:5c:bb:78:90:9c:98:32:ec:5a:78:54:
27:47:f8:74:a9:db:80:e4:14:65:3c:5a:c2:a8:bf:e9:c7:ec:
d9:e7:c2:19:b4:9a:4a:ac:8e:21:74:14:a8:a6:2e:71:5e:2b:
86:3a:16:61:55:9c:88:06:2e:6a:6b:69:61:9a:c0:f3:a2:aa:
05:b7:40:40:3d:31:d9:b5:0a:61:0e:07:0d:18:fa:73:f0:7b:
1d:e4:2a:70:cc:15:7e:80:70:a7:fd:2a:cd:a0:ee:fb:15:fc:
52:27:90:ba:74:1b:eb:ea:d3:98:09:06:fa:af:7d:1c:ef:21:
a1:46:af:36:37:63:a4:32:cd:29:11:c8:61:1b:ef:83:0a:da:
e5:e7:28:2a:29:d1:ad:34:3b:48:5a:16:54:3c:65:97:7d:89:
55:fd:b0:96:04:a9:da:a2:aa:e5:8b:4b:7f:eb:f0:b3:50:c5:
c9:4c:44:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:17 2025 by rpki-client