Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/4bda4f-9215-4cf9-928c-c4a908f161c9/1/xSWnQQhQCC8Hk0R-Fw9_bGz25Sc.roa
File: xSWnQQhQCC8Hk0R-Fw9_bGz25Sc.roa (raw, json)
Hash identifier: z1JBNM5iMJxZpTOEWfHCpEuehja5KeEV+h0RTS6J04A=
Subject key identifier: C5:25:A7:41:08:50:08:2F:07:93:44:7E:17:0F:7F:6C:6C:F6:E5:27
Certificate issuer: /CN=ef3893083fcd141765093e9421574bd9196c2ced
Certificate serial: 0736F18A
Authority key identifier: EF:38:93:08:3F:CD:14:17:65:09:3E:94:21:57:4B:D9:19:6C:2C:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ziTCD_NFBdlCT6UIVdL2RlsLO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/4bda4f-9215-4cf9-928c-c4a908f161c9/1/xSWnQQhQCC8Hk0R-Fw9_bGz25Sc.roa
Signing time: Sat 01 Jan 2022 03:59:49 +0000
ROA not before: Sat 01 Jan 2022 03:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200780
IP address blocks: 45.85.132.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121041290 (0x736f18a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef3893083fcd141765093e9421574bd9196c2ced
Validity
Not Before: Jan 1 03:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c525a7410850082f0793447e170f7f6c6cf6e527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:61:07:5d:ff:d6:43:f9:9c:bc:35:23:20:25:
13:bf:aa:d2:76:2d:ba:d6:03:f0:19:a5:c1:ca:1d:
01:b0:df:e7:07:bb:4c:a3:6b:75:4e:92:91:08:aa:
f8:21:41:37:98:87:eb:e6:05:82:d1:5e:4b:56:96:
82:d5:72:13:b8:2d:9c:60:4c:4e:23:92:3d:3e:dd:
36:77:d7:f7:90:44:e7:df:02:26:16:75:c4:02:6d:
16:03:be:e3:41:94:d2:2a:d1:7b:c1:5a:0f:02:fd:
6e:d6:9c:b1:23:29:c0:f5:82:c1:a8:63:ac:2b:d0:
78:cc:ed:bd:31:07:2e:da:cc:37:61:08:88:f7:3b:
08:c2:85:fb:b4:74:92:42:1e:94:86:93:6f:eb:c1:
68:42:82:2a:33:d5:cd:44:27:58:c8:60:f0:f1:5a:
ff:e2:c3:c3:c7:d0:43:57:5a:a2:23:5b:79:62:03:
ec:82:f5:8f:37:9a:01:92:b7:01:84:e1:b1:9d:96:
6e:ba:dc:6e:0c:90:a2:b3:e3:c9:ec:4b:cb:b1:95:
15:46:28:00:92:28:a7:00:eb:fd:b9:85:42:63:29:
a2:0d:14:e2:a0:ed:32:3d:8e:5f:3b:59:50:7a:1f:
ef:be:a7:85:53:15:ae:fe:43:f5:69:e6:88:94:d6:
c0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:25:A7:41:08:50:08:2F:07:93:44:7E:17:0F:7F:6C:6C:F6:E5:27
X509v3 Authority Key Identifier:
keyid:EF:38:93:08:3F:CD:14:17:65:09:3E:94:21:57:4B:D9:19:6C:2C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ziTCD_NFBdlCT6UIVdL2RlsLO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/4bda4f-9215-4cf9-928c-c4a908f161c9/1/xSWnQQhQCC8Hk0R-Fw9_bGz25Sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/4bda4f-9215-4cf9-928c-c4a908f161c9/1/7ziTCD_NFBdlCT6UIVdL2RlsLO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.132.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:a0:3c:ae:c0:0e:81:a2:d7:46:57:93:cc:97:4b:b4:7f:ad:
92:d4:cc:a2:b7:b2:9e:98:f9:07:5e:20:dd:2b:54:6c:e7:88:
ae:2d:05:cb:39:9f:d3:1e:f8:e6:70:3d:f6:d6:e1:c8:88:c4:
25:c6:73:e6:af:1e:41:3c:36:a6:53:63:55:90:23:d3:a2:77:
8d:68:de:24:71:ec:df:a1:f3:66:db:9e:09:b3:44:1b:4b:b3:
50:3d:ef:02:8a:1b:a1:5c:c6:44:34:ef:4e:32:5d:57:24:9d:
be:31:e9:77:81:33:56:e2:d4:72:24:42:8d:89:99:5b:f5:0a:
b9:3a:0b:f1:d5:14:b1:b5:4f:5f:fb:b9:3d:a2:9a:a6:70:8b:
ea:10:d6:78:57:a4:c8:51:f5:cf:69:29:4c:70:9c:0d:e0:89:
ff:cf:19:38:d1:92:08:08:ba:c7:58:5d:4b:2a:f2:12:c9:b3:
2d:e8:2f:4c:8f:5e:c4:6c:52:bb:3e:fc:dd:03:98:76:07:a6:
1b:98:a0:32:f7:c7:84:09:79:07:2f:63:ef:88:0a:4f:5a:8c:
a7:ef:80:99:a6:bd:03:43:19:c9:8d:b2:d3:ba:07:f1:66:b1:
d2:87:21:6a:f4:0e:94:59:2c:62:b0:f3:7d:fb:d4:3f:8e:92:
73:fd:18:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:33:25 2025 by rpki-client