Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/1fe36a-f58e-44e1-b415-3bf0dfbc748e/1/WdN2uAcdThXmTo2RSHWCUARBcEU.roa
File: WdN2uAcdThXmTo2RSHWCUARBcEU.roa (raw, json)
Hash identifier: UX2xiH9ZuipJ5CezWUHts2e3p99V9SziZ+rCW00XSTM=
Subject key identifier: 59:D3:76:B8:07:1D:4E:15:E6:4E:8D:91:48:75:82:50:04:41:70:45
Certificate issuer: /CN=a1ce6d39099e3d16a603992ac21f58554aaecf7f
Certificate serial: 01837BEC06AB5B54A98E060EA0857A43D9F2
Authority key identifier: A1:CE:6D:39:09:9E:3D:16:A6:03:99:2A:C2:1F:58:55:4A:AE:CF:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oc5tOQmePRamA5kqwh9YVUquz38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/1fe36a-f58e-44e1-b415-3bf0dfbc748e/1/WdN2uAcdThXmTo2RSHWCUARBcEU.roa
Signing time: Mon 26 Sep 2022 22:30:09 +0000
ROA not before: Mon 26 Sep 2022 22:30:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56817
IP address blocks: 45.81.40.0/23 maxlen: 23
2a0e:4d80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7b:ec:06:ab:5b:54:a9:8e:06:0e:a0:85:7a:43:d9:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1ce6d39099e3d16a603992ac21f58554aaecf7f
Validity
Not Before: Sep 26 22:30:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59d376b8071d4e15e64e8d914875825004417045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c2:d4:43:ab:38:1c:8d:3e:a9:76:96:a4:8d:
a2:6a:52:ee:66:77:58:b1:90:75:5b:50:86:ba:0e:
3b:ba:22:e6:3f:0d:3b:8b:a1:54:40:eb:cb:e4:9e:
97:50:46:1e:78:16:a1:4d:3e:68:d3:02:7f:f2:28:
6f:e7:b2:22:61:1c:e7:eb:f5:42:4b:63:b3:d1:24:
0a:d3:3e:fb:88:ad:1f:36:b7:10:a0:0d:52:d9:79:
b7:25:5e:2e:9c:e2:14:22:62:c3:f4:38:92:bf:64:
20:af:70:2a:30:04:2b:ab:ab:d0:0c:34:e2:71:69:
af:31:e4:42:c1:2c:38:98:0c:c3:b2:96:14:24:f1:
6b:06:02:cf:cb:cc:47:5d:2d:c4:27:fe:bc:84:41:
d1:d6:3e:30:dd:75:ea:f9:05:1c:4f:ad:9f:c3:23:
87:5a:7e:c4:e6:7f:4c:6e:a1:ba:cc:9f:6c:a5:49:
00:ac:fc:45:05:3d:09:08:b4:2e:36:e4:08:60:12:
bb:17:ab:cb:96:9c:72:01:a0:bd:c1:7e:47:82:c4:
4d:1d:72:b6:9d:6f:6a:08:a4:8a:a5:e9:31:d0:92:
cd:8a:c0:ab:7b:05:15:e1:53:fc:11:5e:5b:15:b5:
9d:a0:8a:07:a0:02:d7:e9:fd:62:5e:96:46:b2:de:
7c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D3:76:B8:07:1D:4E:15:E6:4E:8D:91:48:75:82:50:04:41:70:45
X509v3 Authority Key Identifier:
keyid:A1:CE:6D:39:09:9E:3D:16:A6:03:99:2A:C2:1F:58:55:4A:AE:CF:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oc5tOQmePRamA5kqwh9YVUquz38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1fe36a-f58e-44e1-b415-3bf0dfbc748e/1/WdN2uAcdThXmTo2RSHWCUARBcEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/1fe36a-f58e-44e1-b415-3bf0dfbc748e/1/oc5tOQmePRamA5kqwh9YVUquz38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.40.0/23
IPv6:
2a0e:4d80::/29
Signature Algorithm: sha256WithRSAEncryption
1c:30:ce:58:dd:2f:4c:33:f3:90:73:fc:8d:d7:7a:90:7a:8d:
33:6e:2f:b2:af:e0:26:0e:7f:7b:6e:c7:1e:54:04:52:fc:16:
c9:f2:2b:3e:9b:99:c8:54:54:82:0f:15:4a:82:c9:20:c3:41:
91:72:1f:54:a2:b6:2c:2e:6b:e8:5d:31:c0:95:76:e8:db:37:
6e:e2:9e:ab:76:51:45:f0:19:56:ec:23:f8:ed:f3:5c:ca:55:
c8:cb:5c:29:b8:06:eb:be:75:12:e6:c0:4e:03:cb:42:55:36:
4a:33:0c:f6:87:73:81:68:b9:89:dd:24:38:bd:47:50:89:59:
46:eb:43:9a:e3:12:24:2e:b7:c6:e5:a0:25:70:d3:a6:df:39:
e6:7a:dd:68:49:71:57:8f:1d:bf:31:8b:45:99:97:7b:57:1c:
7d:f5:8f:79:ee:2c:c8:f5:69:a3:14:9e:08:50:f7:91:52:47:
8a:29:73:4a:46:3f:47:c6:55:b9:9f:79:e2:4d:94:b8:8c:96:
3b:7a:5b:89:26:ec:95:eb:b7:93:eb:75:d0:2d:ed:6e:e4:2b:
da:ef:a8:01:4e:d8:08:1a:2b:83:ed:02:25:f1:27:02:1b:4a:
65:5b:b3:09:40:e8:a1:a3:6d:8e:f7:95:bf:ec:5a:00:51:77:
da:2b:cf:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:18 2025 by rpki-client