Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/X1cE1IX5V5U0N3FsyeDQbrqbJcY.roa
File: X1cE1IX5V5U0N3FsyeDQbrqbJcY.roa (raw, json)
Hash identifier: vXFl04x+6hQ17/0OtsBAq47QILHJz6YPVBxvRe7vKjw=
Subject key identifier: 5F:57:04:D4:85:F9:57:95:34:37:71:6C:C9:E0:D0:6E:BA:9B:25:C6
Certificate issuer: /CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Certificate serial: 018B1B8001843EB743B86374BD7389EAB848
Authority key identifier: 33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/X1cE1IX5V5U0N3FsyeDQbrqbJcY.roa
Signing time: Tue 10 Oct 2023 21:30:55 +0000
ROA not before: Tue 10 Oct 2023 21:30:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.93.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1b:80:01:84:3e:b7:43:b8:63:74:bd:73:89:ea:b8:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Validity
Not Before: Oct 10 21:30:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f5704d485f957953437716cc9e0d06eba9b25c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:99:db:4f:e5:b6:e0:d9:83:a0:3a:e3:1e:de:
b0:dc:ca:f6:55:04:4b:67:03:23:c3:8f:0e:3d:a0:
ce:1a:b9:33:09:f1:ef:6a:b2:9b:28:7a:9a:6b:f0:
de:a3:7a:15:6d:78:50:6b:c7:c7:3d:95:62:5c:73:
09:d2:9c:c3:19:46:82:5d:bf:2c:2c:7f:9c:f9:9a:
b2:11:7d:00:cd:92:5a:75:f8:dd:7c:ee:93:06:4e:
b8:f7:0b:af:f9:a4:19:83:b2:65:08:25:cc:bf:87:
e4:77:5d:23:cb:9d:0b:3c:f9:f8:3f:1e:43:82:b9:
25:4a:25:43:40:65:8f:65:1d:6d:23:08:48:81:bd:
3c:a1:cc:bb:e4:b5:1f:c3:25:05:6b:0d:91:a3:fe:
57:3f:1b:c7:34:52:7e:d1:be:82:ba:b4:de:61:65:
5c:97:c7:56:36:2b:6e:ec:49:b8:1b:16:51:3c:37:
7f:8c:39:46:81:4a:d8:74:19:a8:f3:2c:ae:fe:c5:
2e:61:a2:cc:3f:61:f9:c0:f4:0f:1b:1c:fa:de:9b:
1f:22:0e:75:44:1e:63:17:51:10:01:80:4f:9b:ec:
e1:bb:17:92:95:27:17:9c:7e:b2:28:ad:2e:67:a4:
d5:9d:57:86:1b:f5:15:12:8b:da:66:cd:c1:b7:e1:
f6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:57:04:D4:85:F9:57:95:34:37:71:6C:C9:E0:D0:6E:BA:9B:25:C6
X509v3 Authority Key Identifier:
keyid:33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/X1cE1IX5V5U0N3FsyeDQbrqbJcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/M_XOH8N5J8taTmexdsemOzL_bok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.22.0/24
Signature Algorithm: sha256WithRSAEncryption
16:5b:c1:0c:ab:8a:05:a0:e8:17:db:eb:47:19:33:dd:d4:94:
e8:47:b1:6f:b8:17:b3:08:3b:03:b6:83:c3:19:32:15:81:f4:
53:e7:8c:98:bc:77:8f:7e:0c:fb:b3:08:41:ad:35:57:bc:47:
d3:ee:0d:0c:ba:07:2e:16:0c:5c:31:4e:6b:cc:98:af:f0:42:
b9:a9:11:fe:9e:df:53:f5:35:53:0a:e5:ee:f4:72:24:93:25:
20:27:56:83:1b:3c:03:cb:2a:ae:ae:32:46:cc:e6:3c:18:db:
97:23:2a:8a:24:1a:64:64:83:d1:85:1d:c1:ad:e3:89:31:8b:
02:ab:8a:22:d4:2a:8c:c9:39:03:32:ee:c4:19:76:bf:8c:12:
a6:ac:c6:e1:81:d2:9a:1a:90:17:03:36:15:ac:53:9a:0f:45:
0f:dc:13:c8:45:5b:1e:76:94:c6:09:92:1e:bc:69:85:3e:50:
d6:aa:d0:86:95:2c:fc:2c:cd:f4:cc:c7:0a:83:1f:ae:1a:58:
7a:78:48:96:26:9d:f5:37:3c:9b:b5:26:f5:c3:00:dd:b0:2b:
0f:ae:89:b1:0b:b2:ef:e0:4b:8d:4f:bb:01:94:68:1c:c1:8f:
d3:13:9e:59:4b:46:3d:2a:ba:32:02:2a:d5:9c:21:ed:75:28:
9c:1e:38:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:36 2025 by rpki-client