Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/ac6a15-7264-4555-a497-840e6a5bec47/1/sU-fuX5ft_NxzhnAmZZ9D044KhY.roa
File: sU-fuX5ft_NxzhnAmZZ9D044KhY.roa (raw, json)
Hash identifier: sy0YD/MD4SsOqEaEfvfuefZKBAM5MZba69XgybF/n1U=
Subject key identifier: B1:4F:9F:B9:7E:5F:B7:F3:71:CE:19:C0:99:96:7D:0F:4E:38:2A:16
Certificate issuer: /CN=427876fcedf3322241ca2d0f12ffa92f44ee3014
Certificate serial: 0183184F7357138A3C4A27F452702035FFC1
Authority key identifier: 42:78:76:FC:ED:F3:32:22:41:CA:2D:0F:12:FF:A9:2F:44:EE:30:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qnh2_O3zMiJByi0PEv-pL0TuMBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/ac6a15-7264-4555-a497-840e6a5bec47/1/sU-fuX5ft_NxzhnAmZZ9D044KhY.roa
Signing time: Wed 07 Sep 2022 14:16:43 +0000
ROA not before: Wed 07 Sep 2022 14:16:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206366
IP address blocks: 45.142.68.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:18:4f:73:57:13:8a:3c:4a:27:f4:52:70:20:35:ff:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427876fcedf3322241ca2d0f12ffa92f44ee3014
Validity
Not Before: Sep 7 14:16:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b14f9fb97e5fb7f371ce19c099967d0f4e382a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cc:86:b3:4c:cb:98:88:e0:7c:b0:ca:53:de:
af:bb:2d:41:df:56:2c:ee:07:1f:f6:52:01:1a:6a:
d6:0c:33:c0:e8:aa:23:34:23:ae:6d:2e:4e:8f:9a:
06:84:25:cf:f3:91:7b:35:f7:0a:ef:52:88:95:5b:
ad:1f:a6:95:ea:51:63:0c:a3:76:f6:ed:7c:39:8c:
23:b6:9c:11:be:97:f9:56:f0:48:f4:f7:5a:4a:19:
c5:a8:60:00:fb:33:39:08:86:a2:6d:fb:81:ca:34:
00:be:68:4c:aa:ec:9b:e1:39:7e:af:b8:8e:a7:5e:
ce:15:f6:54:50:78:d4:09:95:61:fa:b8:4f:a2:7a:
ee:c2:8b:5e:ab:56:2d:5a:ce:0d:b3:55:b6:bb:db:
41:a8:7a:a0:ab:af:c2:b2:b8:f8:56:b5:f2:19:73:
b9:1c:48:38:f8:3a:6f:58:6c:62:ba:62:12:2b:87:
9e:e7:4f:da:68:d7:e4:67:b0:18:af:41:c0:1a:9f:
81:8f:df:79:5a:94:04:d6:de:4d:19:7b:69:e2:24:
94:d1:1d:96:58:55:dc:fa:f2:cc:e0:9c:82:31:18:
ec:38:a7:bd:34:78:8b:20:71:80:dc:ac:fc:01:cd:
aa:1d:08:b7:3e:9f:cf:1c:12:8e:31:80:ce:64:8d:
36:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4F:9F:B9:7E:5F:B7:F3:71:CE:19:C0:99:96:7D:0F:4E:38:2A:16
X509v3 Authority Key Identifier:
keyid:42:78:76:FC:ED:F3:32:22:41:CA:2D:0F:12:FF:A9:2F:44:EE:30:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qnh2_O3zMiJByi0PEv-pL0TuMBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/ac6a15-7264-4555-a497-840e6a5bec47/1/sU-fuX5ft_NxzhnAmZZ9D044KhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/ac6a15-7264-4555-a497-840e6a5bec47/1/Qnh2_O3zMiJByi0PEv-pL0TuMBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.68.0/22
Signature Algorithm: sha256WithRSAEncryption
32:06:b0:01:0f:35:31:05:f4:b6:1e:15:95:3b:18:34:ea:8c:
43:aa:c2:d3:cf:cd:67:50:6c:42:c0:eb:ed:0f:93:35:aa:8e:
c4:4c:88:c7:29:c2:d0:3f:1f:71:2d:7f:e7:cf:14:c5:ff:a1:
1b:6e:54:95:0b:81:47:5b:e1:c2:1f:81:d3:27:15:d7:32:30:
b5:4c:42:2f:f3:24:a8:ca:a3:20:c8:ae:ee:7c:55:32:4d:11:
bd:f6:c0:84:b7:61:9b:90:c8:d2:e2:c7:8e:79:54:02:cd:2b:
03:cb:29:15:8c:9b:37:3d:45:61:40:94:ba:a8:c8:b1:6e:70:
3d:7c:59:c5:d7:ea:ce:19:1c:e6:67:76:86:3b:7a:7b:a7:b2:
e8:27:a0:05:48:83:85:d4:87:ed:e5:2e:b2:79:9c:9c:c1:98:
7c:ad:68:af:78:23:58:a0:30:4f:c7:30:85:24:c0:ef:cb:c8:
e6:46:ff:b9:b9:33:6b:67:ea:82:b1:f1:4f:da:45:b1:92:ca:
39:80:31:2b:da:44:33:87:b6:ad:1c:6c:9c:82:1e:af:27:ba:
e0:0a:2c:37:5e:de:1b:2b:63:f2:82:10:6c:4a:c3:2b:1a:6b:
9b:d6:71:62:bf:32:ac:5c:7f:f3:2d:b8:91:95:ab:28:28:de:
b2:7b:f0:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 16:31:46 2025 by rpki-client