Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8a87df-760b-45ae-9a34-3e6a9ad01ac5/1/OjUcAOvvwDuUGUDNa97RRK8x59A.roa
File: OjUcAOvvwDuUGUDNa97RRK8x59A.roa (raw, json)
Hash identifier: 1tNq1BfNNW6f1EJ10WUTPakCrtuynid6CL7JPnSayb0=
Subject key identifier: 3A:35:1C:00:EB:EF:C0:3B:94:19:40:CD:6B:DE:D1:44:AF:31:E7:D0
Certificate issuer: /CN=d793a8d736beb92be16d193b101f93be55325919
Certificate serial: 0790F8AF
Authority key identifier: D7:93:A8:D7:36:BE:B9:2B:E1:6D:19:3B:10:1F:93:BE:55:32:59:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15Oo1za-uSvhbRk7EB-TvlUyWRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8a87df-760b-45ae-9a34-3e6a9ad01ac5/1/OjUcAOvvwDuUGUDNa97RRK8x59A.roa
Signing time: Sat 01 Jan 2022 12:04:41 +0000
ROA not before: Sat 01 Jan 2022 12:04:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 5.180.152.0/22 maxlen: 24
45.145.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126941359 (0x790f8af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d793a8d736beb92be16d193b101f93be55325919
Validity
Not Before: Jan 1 12:04:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a351c00ebefc03b941940cd6bded144af31e7d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:32:d8:4d:3a:87:a6:7d:69:ff:23:db:85:39:
61:3e:1d:12:51:27:a5:da:35:0b:75:c2:88:e6:d4:
4c:0d:90:9c:9e:6d:ea:fe:de:f1:3b:23:f5:2e:e6:
71:5e:53:2a:30:d2:04:7c:8c:92:ca:f2:7c:a1:f1:
3c:4f:0b:4f:d2:fc:9e:9f:64:c5:a9:dc:3a:34:a6:
d5:1d:88:11:b4:00:af:57:c0:53:b3:02:64:b7:85:
3f:10:82:db:71:f2:89:cd:42:84:4f:34:57:99:2b:
05:2c:84:96:d6:26:2b:f3:e8:62:52:ef:b6:2c:b9:
d7:6d:6c:e0:56:e6:4b:83:cb:94:c8:fd:ec:d7:81:
aa:d4:c3:73:00:31:c9:53:4f:0b:36:93:be:05:a1:
05:b2:20:23:cd:60:4f:11:06:5b:26:66:0a:33:54:
ce:25:a0:a6:1c:9b:49:14:64:b1:8e:a5:d2:bd:4b:
08:01:b1:54:41:bf:92:5b:05:25:10:2f:25:b3:d3:
80:90:df:65:b2:b2:b6:33:89:63:a9:57:20:d5:6e:
bb:0d:b1:4a:5e:37:c4:f0:d2:61:e3:db:0d:32:1c:
4e:7c:21:02:03:99:e6:54:e4:0f:84:a2:6f:49:66:
f1:ba:37:79:84:a0:96:48:41:27:d5:6e:df:6b:f5:
36:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:35:1C:00:EB:EF:C0:3B:94:19:40:CD:6B:DE:D1:44:AF:31:E7:D0
X509v3 Authority Key Identifier:
keyid:D7:93:A8:D7:36:BE:B9:2B:E1:6D:19:3B:10:1F:93:BE:55:32:59:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15Oo1za-uSvhbRk7EB-TvlUyWRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8a87df-760b-45ae-9a34-3e6a9ad01ac5/1/OjUcAOvvwDuUGUDNa97RRK8x59A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8a87df-760b-45ae-9a34-3e6a9ad01ac5/1/15Oo1za-uSvhbRk7EB-TvlUyWRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.152.0/22
45.145.96.0/22
Signature Algorithm: sha256WithRSAEncryption
58:58:48:62:b9:3f:6c:70:1f:83:c9:15:0b:4e:64:17:e9:6c:
8e:92:30:2f:84:ee:67:a5:bf:7a:83:93:b3:63:ec:3f:b6:ca:
88:c9:a8:86:34:f2:c0:56:f5:da:c6:50:29:b8:df:59:e0:a2:
70:70:8a:74:90:39:f0:ed:b7:a9:4c:32:e1:1a:b3:20:3c:cc:
83:39:da:89:8b:26:90:8a:47:dd:41:3b:97:84:cc:36:3d:07:
45:0d:fa:85:a9:e3:c3:56:f5:4e:2a:cb:8c:82:37:ec:06:72:
5f:f0:4e:27:23:9f:71:8d:70:d8:cf:29:39:16:db:96:3c:23:
4c:b4:d4:62:17:c2:18:2d:fa:e9:56:4b:d0:c0:d8:4e:71:d3:
de:e2:88:d9:0d:50:f5:3e:a7:eb:a5:07:bf:1d:e8:0a:9c:c9:
79:b3:6a:20:e3:95:00:2a:49:99:6e:66:28:8a:74:89:34:eb:
b0:83:9a:8b:89:9b:43:84:16:5b:e4:9a:c9:2f:90:ba:93:73:
81:d9:52:0c:b1:4e:47:e4:ed:76:35:01:4c:f1:df:d7:21:53:
44:05:32:2f:eb:ff:a3:00:84:24:cf:e0:b5:c7:21:76:a4:9c:
52:d7:81:ae:f6:5a:9b:f8:0b:f4:02:75:d5:3d:b8:43:12:db:
3a:8f:ed:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:58 2025 by rpki-client