Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/2a5623-f5c6-4315-8b7b-25f9336f9c77/1/Y0zlwo8Zi_BPihm9IdVgKI0QlxA.roa
File: Y0zlwo8Zi_BPihm9IdVgKI0QlxA.roa (raw, json)
Hash identifier: t7U5L0vEleketBGt+wdi1WJcKHRYFhxRSsZOAjbIfeY=
Subject key identifier: 63:4C:E5:C2:8F:19:8B:F0:4F:8A:19:BD:21:D5:60:28:8D:10:97:10
Certificate issuer: /CN=119109f0ef595ea8b68586483dbc6fb3cfe56f2b
Certificate serial: 0CC6
Authority key identifier: 11:91:09:F0:EF:59:5E:A8:B6:85:86:48:3D:BC:6F:B3:CF:E5:6F:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EZEJ8O9ZXqi2hYZIPbxvs8_lbys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/2a5623-f5c6-4315-8b7b-25f9336f9c77/1/Y0zlwo8Zi_BPihm9IdVgKI0QlxA.roa
Signing time: Wed 26 Jan 2022 18:27:26 +0000
ROA not before: Wed 26 Jan 2022 18:27:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49392
IP address blocks: 45.11.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3270 (0xcc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=119109f0ef595ea8b68586483dbc6fb3cfe56f2b
Validity
Not Before: Jan 26 18:27:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=634ce5c28f198bf04f8a19bd21d560288d109710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ca:60:59:64:48:04:ac:9f:3d:9b:c9:8a:b9:
13:2e:6a:d5:05:26:8b:27:80:eb:06:84:9f:2c:d6:
f3:4f:d8:1a:e5:9d:1e:44:69:9b:a7:10:86:a2:63:
e6:85:68:43:15:c8:d5:6d:53:11:97:60:f2:e7:35:
6b:13:7c:a6:9b:91:1a:48:f5:84:cc:08:94:94:c8:
8f:25:54:70:4f:a3:4f:dc:e5:8b:a5:f1:6a:ec:33:
e4:2e:b5:d1:0e:f3:4a:21:aa:5a:e1:04:06:67:58:
d7:af:71:2f:b7:30:b5:ef:0a:c5:2c:da:1b:36:02:
ff:03:24:de:23:73:fa:ba:15:21:fa:f6:49:15:94:
a1:f4:0d:34:f8:d5:c9:e9:2e:ca:fc:6d:5b:ad:08:
a6:52:9d:05:bd:7e:ae:e7:fd:48:d2:f0:64:15:fb:
c4:e4:66:10:92:9b:4c:b7:4b:a4:64:a6:87:2c:27:
aa:ea:c0:e9:2d:ad:ae:73:cb:d2:1c:23:3c:c3:99:
ea:b4:9a:fc:1c:26:c2:61:24:30:fc:3c:e1:dc:bb:
83:f0:ad:ba:32:e6:68:30:30:0a:ec:ab:73:f9:28:
bf:ff:fd:33:ee:55:3b:dc:5f:28:c8:ff:25:4b:a8:
30:e6:e2:41:95:98:b5:dc:9e:00:b6:ec:a5:1e:1e:
0e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4C:E5:C2:8F:19:8B:F0:4F:8A:19:BD:21:D5:60:28:8D:10:97:10
X509v3 Authority Key Identifier:
keyid:11:91:09:F0:EF:59:5E:A8:B6:85:86:48:3D:BC:6F:B3:CF:E5:6F:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EZEJ8O9ZXqi2hYZIPbxvs8_lbys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2a5623-f5c6-4315-8b7b-25f9336f9c77/1/Y0zlwo8Zi_BPihm9IdVgKI0QlxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2a5623-f5c6-4315-8b7b-25f9336f9c77/1/EZEJ8O9ZXqi2hYZIPbxvs8_lbys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.196.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:0a:8a:02:fe:8c:3a:7d:8a:d7:49:0e:97:c2:38:8b:3d:c9:
12:71:27:92:e9:2b:c5:cd:d6:e0:5c:9b:00:56:04:cd:02:d7:
28:91:26:f4:7f:5b:bc:b1:4f:2e:b2:7b:e4:33:64:66:88:6f:
93:e4:14:4e:fb:43:59:09:ad:a6:81:df:2c:bf:52:cd:1a:e1:
4c:de:95:40:79:2d:e4:42:f9:8a:6b:bd:35:d0:bb:c3:01:04:
a2:57:4d:34:47:2d:56:79:4a:ea:af:c4:88:8c:80:58:32:15:
db:32:1f:0e:bc:76:94:01:6e:0d:c3:83:5a:3c:c7:cc:00:f4:
10:2c:c8:2e:c1:c2:dc:5c:b0:f5:b1:82:dc:b4:f5:be:8d:38:
85:3b:e8:22:85:43:13:f1:cc:6a:4b:12:43:cc:f2:bb:87:7d:
32:3d:65:d8:ee:d6:a9:51:19:d9:86:a2:86:d3:3a:93:81:76:
c8:9b:23:5c:ed:b6:b0:63:4f:10:8a:47:3e:d1:aa:ab:28:5e:
7e:48:c3:48:b7:46:e9:3a:94:e0:4c:33:12:c3:bf:5e:cc:12:
0e:04:6c:b8:3c:d3:12:7a:1e:a0:19:bf:ec:b1:33:5f:7f:c5:
96:c7:aa:57:88:9b:16:f7:14:4e:93:b4:8c:fc:86:96:a0:b8:
ad:94:37:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:39:38 2025 by rpki-client