Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/6716ad-839e-4d68-a59b-fc065ac96cff/1/8O9cIZ_G4WdQDQA7B58nkAqmw18.roa
File: 8O9cIZ_G4WdQDQA7B58nkAqmw18.roa (raw, json)
Hash identifier: Sf7SVVW+7Jr9SdxHk9N6fXPvhI+ivt8LA4hdf9GxS7A=
Subject key identifier: F0:EF:5C:21:9F:C6:E1:67:50:0D:00:3B:07:9F:27:90:0A:A6:C3:5F
Certificate issuer: /CN=ab2d4da2f52ac5d8c4c03ccc30615fa0a39088d7
Certificate serial: 0638A37C
Authority key identifier: AB:2D:4D:A2:F5:2A:C5:D8:C4:C0:3C:CC:30:61:5F:A0:A3:90:88:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy1NovUqxdjEwDzMMGFfoKOQiNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/6716ad-839e-4d68-a59b-fc065ac96cff/1/8O9cIZ_G4WdQDQA7B58nkAqmw18.roa
Signing time: Sat 01 Jan 2022 07:55:24 +0000
ROA not before: Sat 01 Jan 2022 07:55:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209858
IP address blocks: 45.129.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104375164 (0x638a37c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2d4da2f52ac5d8c4c03ccc30615fa0a39088d7
Validity
Not Before: Jan 1 07:55:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0ef5c219fc6e167500d003b079f27900aa6c35f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5c:1c:5e:d6:f8:2f:f6:08:13:aa:d7:e9:a5:
10:52:6f:df:13:2f:10:0b:2d:7a:ee:3a:f0:d4:71:
ff:38:48:58:ab:0b:28:6e:55:a6:46:cc:ff:86:f8:
c8:2c:8a:de:73:81:ec:78:9a:ef:a1:83:05:18:3a:
15:d5:e2:e7:76:e6:98:d8:fb:9a:9a:b3:22:77:c8:
db:cf:95:0f:84:05:12:18:99:9b:c0:47:24:3a:4b:
6e:bc:b2:fc:64:6c:8c:2e:91:c4:d0:13:42:e4:28:
d7:37:9d:0f:c3:c4:3a:70:e1:44:6e:a3:13:60:2d:
04:84:bf:53:9c:27:a0:4f:a5:10:d4:2a:79:a4:a0:
94:33:2d:5f:68:7d:9f:25:8b:c7:16:67:75:ce:e8:
79:a3:fb:8e:82:26:c2:02:d3:29:89:01:e2:03:e7:
a5:e7:d8:f5:01:f3:91:3c:80:57:b9:cb:8f:7a:6c:
2e:fc:b9:80:c7:87:9e:15:6c:56:57:99:44:92:97:
1e:bb:c0:e3:b9:78:f6:1d:af:86:20:b1:34:87:35:
05:dc:8b:13:55:f5:55:f6:96:20:1e:23:cd:20:58:
87:82:3a:c9:e1:06:01:11:50:ee:0f:82:8f:62:92:
be:b3:05:5a:e3:b8:7a:d0:89:f3:99:ee:4d:74:af:
f7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:EF:5C:21:9F:C6:E1:67:50:0D:00:3B:07:9F:27:90:0A:A6:C3:5F
X509v3 Authority Key Identifier:
keyid:AB:2D:4D:A2:F5:2A:C5:D8:C4:C0:3C:CC:30:61:5F:A0:A3:90:88:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy1NovUqxdjEwDzMMGFfoKOQiNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/6716ad-839e-4d68-a59b-fc065ac96cff/1/8O9cIZ_G4WdQDQA7B58nkAqmw18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/6716ad-839e-4d68-a59b-fc065ac96cff/1/qy1NovUqxdjEwDzMMGFfoKOQiNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.164.0/24
Signature Algorithm: sha256WithRSAEncryption
57:75:2d:f2:91:77:dd:11:3c:34:06:f3:b0:77:9d:4e:26:31:
36:01:00:58:61:1c:6c:39:d6:30:af:ba:21:b7:b6:df:54:01:
10:ab:94:38:27:d7:15:22:dc:80:f4:95:94:60:5b:f4:35:a4:
f9:53:05:80:8a:3b:36:8a:7a:6d:2a:59:8a:19:48:b1:8b:94:
93:07:ac:a6:59:a1:21:72:84:06:48:76:57:8e:82:b0:52:7c:
27:5f:18:d4:01:f1:18:d5:70:90:da:33:7b:58:ef:cc:87:06:
cf:44:13:44:b7:c2:2f:58:66:03:f9:ff:65:60:d5:0a:52:3f:
d4:eb:13:cc:0f:c3:40:9f:ad:3e:38:cc:ff:a4:14:13:92:b8:
fb:db:33:81:63:ea:0d:36:da:c1:87:d7:d8:9b:a1:d1:4d:e3:
d3:72:e2:0a:77:ca:23:95:61:ae:91:a5:03:e8:db:c3:8d:55:
ed:ba:9f:1a:70:2c:b7:e2:6b:01:d9:30:64:f8:ed:30:54:2d:
bc:bc:52:ee:25:a5:b5:60:26:ac:ac:b7:fb:03:db:11:77:9f:
5a:bd:30:ad:04:b1:4f:c4:2d:43:26:12:9f:20:d0:0e:b9:e1:
16:73:d0:9f:83:3c:88:6f:94:f6:43:6a:74:fb:a1:d2:e0:82:
5e:3b:f2:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:03:56 2025 by rpki-client