Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/oqwj811UcTDkXR5YmcKteh54sQk.roa
File: oqwj811UcTDkXR5YmcKteh54sQk.roa (raw, json)
Hash identifier: oofjtLdQuKmwONlPZRkRje9kM443hejpVwX5Urv4PEM=
Subject key identifier: A2:AC:23:F3:5D:54:71:30:E4:5D:1E:58:99:C2:AD:7A:1E:78:B1:09
Certificate issuer: /CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Certificate serial: 01857169BD237420B7A1C4B0B4EC1C88D3C4
Authority key identifier: 80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/oqwj811UcTDkXR5YmcKteh54sQk.roa
Signing time: Mon 02 Jan 2023 07:37:13 +0000
ROA not before: Mon 02 Jan 2023 07:37:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34661
IP address blocks: 45.152.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:bd:23:74:20:b7:a1:c4:b0:b4:ec:1c:88:d3:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80e48485ce9b0e425640804edc0ed2ba6b8f4b8f
Validity
Not Before: Jan 2 07:37:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2ac23f35d547130e45d1e5899c2ad7a1e78b109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fa:cc:ec:47:fe:13:59:33:47:e5:43:90:06:
94:4c:a6:70:72:08:de:8c:f2:b2:bd:40:27:ef:9b:
6f:9d:f4:ae:49:15:e9:c6:41:e0:60:0a:f3:bc:32:
a5:6f:cf:dc:6b:7a:f7:26:b1:70:f4:11:cc:10:0b:
d6:cd:44:33:2e:c6:b1:c6:ff:60:93:cd:5c:28:4c:
ca:9f:7c:5b:4a:8f:d4:83:f8:b9:95:0c:b2:98:73:
d7:93:17:c7:cd:d0:db:50:55:18:83:6c:85:73:65:
58:3e:c8:cb:01:26:20:f9:b1:26:02:f2:ff:bc:37:
56:a8:e7:d4:35:0a:0f:69:a3:1e:4e:ae:64:61:a2:
6a:ee:2d:b3:07:3d:48:97:e7:49:48:8f:bc:d6:20:
7f:1d:87:4d:34:7d:2f:9d:ba:aa:78:28:eb:28:cb:
e6:b3:be:b3:bc:1e:40:ad:20:77:56:b8:d0:92:ea:
e8:ca:76:8b:03:49:2d:c6:67:d7:d5:81:0a:eb:98:
52:8f:20:9c:c1:69:ca:c9:fe:ff:ea:d4:bc:18:0f:
f8:f8:07:9d:f8:2d:4e:5f:c1:a6:03:f2:82:02:d5:
f6:b2:62:55:1f:06:ec:bd:80:2f:8c:28:6f:62:86:
19:c6:49:20:ca:08:1e:94:cb:4b:fe:b0:ce:70:59:
c1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AC:23:F3:5D:54:71:30:E4:5D:1E:58:99:C2:AD:7A:1E:78:B1:09
X509v3 Authority Key Identifier:
keyid:80:E4:84:85:CE:9B:0E:42:56:40:80:4E:DC:0E:D2:BA:6B:8F:4B:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOSEhc6bDkJWQIBO3A7SumuPS48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/oqwj811UcTDkXR5YmcKteh54sQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/6dc978-bfd6-41ec-8a3a-c03017e98c53/1/gOSEhc6bDkJWQIBO3A7SumuPS48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.164.0/22
Signature Algorithm: sha256WithRSAEncryption
64:b6:a0:6b:6e:af:b3:3c:93:0d:3d:97:be:05:4c:6d:7f:ab:
fc:6b:ef:41:75:21:b5:92:fe:af:21:34:b5:b0:2c:bf:57:46:
fe:d9:5e:8f:fa:94:39:68:0d:10:11:1a:33:f9:3b:dc:41:93:
21:a1:c5:db:0c:20:3d:f4:5f:ae:80:c5:54:15:d0:15:af:ed:
94:50:dd:53:45:f6:78:7a:a7:9c:7f:16:c7:5d:b2:29:cc:ea:
ca:e9:5f:5f:98:20:f5:cd:5f:8d:f7:a1:a1:8e:43:cf:48:19:
78:02:b9:c4:f9:a5:bd:b6:cf:83:8d:aa:cb:ec:7d:95:5c:a5:
58:81:4c:15:ad:30:89:3e:4e:be:66:01:08:46:05:2e:93:7f:
ae:8b:20:dd:71:70:b5:98:a0:aa:82:59:aa:f0:ef:40:57:ae:
e3:2a:0c:8b:92:0c:8c:1a:48:76:ef:79:57:c9:61:34:c7:50:
fb:97:b4:62:cc:49:57:1e:70:dc:2a:2c:06:84:a0:8d:7e:92:
ed:10:50:d9:98:d4:5e:aa:e4:68:3d:d9:ee:78:7f:27:17:7a:
aa:04:b3:7a:c7:57:7d:9f:3b:1a:88:0b:b7:15:c5:ed:58:8e:
6c:e0:6b:e9:63:39:d7:99:1e:62:ee:d9:2d:7b:a9:60:93:c3:
b2:75:93:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 04:53:02 2025 by rpki-client