Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/W5McIko7i-eKUmbh5TfuRzWrSuU.roa
File: W5McIko7i-eKUmbh5TfuRzWrSuU.roa (raw, json)
Hash identifier: uG7ygzcyvJXYwoupZxKYgCLbticeAJzJpQyS+5bEFFo=
Subject key identifier: 5B:93:1C:22:4A:3B:8B:E7:8A:52:66:E1:E5:37:EE:47:35:AB:4A:E5
Certificate issuer: /CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Certificate serial: 018345BFEAB8A235DB6DC3C6C44E75F45EDA
Authority key identifier: 37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/W5McIko7i-eKUmbh5TfuRzWrSuU.roa
Signing time: Fri 16 Sep 2022 10:02:28 +0000
ROA not before: Fri 16 Sep 2022 10:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 45.128.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:bf:ea:b8:a2:35:db:6d:c3:c6:c4:4e:75:f4:5e:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37a8b5a1895c5088205095c2f7a5efe91d539e45
Validity
Not Before: Sep 16 10:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b931c224a3b8be78a5266e1e537ee4735ab4ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e5:46:46:1f:c5:84:ba:85:7a:74:57:92:57:
53:83:44:11:53:1b:c5:ef:0a:aa:c3:33:77:b4:08:
b1:9e:78:13:a1:ca:02:da:66:6b:94:55:bc:4e:24:
5e:19:02:1b:be:88:9a:32:b1:d7:c1:b6:6c:65:f5:
84:9c:5a:04:a1:07:ca:01:b3:b2:d7:66:77:af:3b:
bf:1d:c7:a9:50:65:d3:78:3e:be:89:7e:57:b3:1a:
78:8d:ea:57:0b:52:b4:e7:f5:36:78:24:12:5e:f4:
a8:0a:d1:20:fe:21:52:5d:b9:aa:00:9e:6f:10:30:
fd:21:b0:50:73:15:27:44:62:21:4a:1d:6e:04:4c:
d3:f1:88:42:d8:0e:6f:cf:3c:78:96:e3:94:70:e0:
ce:6c:c6:75:3d:3b:69:09:a3:85:51:1c:ec:f7:52:
bc:3f:77:c3:2d:6d:9d:65:a2:fc:b6:64:04:f2:f9:
bb:27:5f:4d:73:c7:a9:de:d4:f4:2b:34:e7:05:a3:
7a:c5:c2:86:4e:f5:93:6e:8d:d3:61:f2:da:2d:08:
a8:cb:87:d3:37:20:c3:79:8c:6f:f3:81:4c:87:e9:
e7:a6:c8:46:30:f3:79:e7:90:05:2f:2a:64:c0:be:
e0:d7:76:d5:d4:2c:69:13:e3:21:b3:a7:dd:b0:ca:
56:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:93:1C:22:4A:3B:8B:E7:8A:52:66:E1:E5:37:EE:47:35:AB:4A:E5
X509v3 Authority Key Identifier:
keyid:37:A8:B5:A1:89:5C:50:88:20:50:95:C2:F7:A5:EF:E9:1D:53:9E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N6i1oYlcUIggUJXC96Xv6R1TnkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/W5McIko7i-eKUmbh5TfuRzWrSuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/c57839-5b81-4df4-88f0-149d8a8e1fcd/1/N6i1oYlcUIggUJXC96Xv6R1TnkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.235.0/24
Signature Algorithm: sha256WithRSAEncryption
59:c7:9f:d7:c5:b0:f8:7f:61:e1:ec:61:77:30:c4:ad:59:51:
1e:05:0e:0e:0a:a8:10:50:84:de:05:da:47:4b:3e:1e:c4:18:
7d:23:83:dd:9a:0e:18:17:35:aa:8e:1a:bb:3a:66:99:dd:a2:
5e:60:10:80:31:b8:61:b3:ed:f9:e7:91:8f:03:76:c8:5e:c4:
8b:e4:74:1e:c8:4d:91:a4:37:03:57:e7:2b:70:2f:a6:fb:a9:
f3:17:21:81:66:bf:98:68:af:91:47:45:eb:25:7e:18:d0:f9:
0b:01:f7:21:d8:ff:de:f6:3f:26:79:e3:51:85:71:1d:7e:bd:
8c:0d:c5:22:cf:3c:01:aa:3c:ac:51:58:fc:c2:bf:16:7f:85:
14:4d:e7:00:d8:7b:40:45:0e:6a:de:b9:0c:ad:5b:78:3a:0c:
3f:f0:8b:f6:da:aa:05:e2:5f:12:60:a1:94:74:af:78:02:18:
23:1f:14:5e:54:e1:ae:29:4d:08:61:fb:49:5d:cc:a1:b7:68:
5b:5b:fb:01:de:6f:37:64:c5:da:27:9c:f1:c6:4a:11:39:0e:
6d:d8:f0:aa:3e:71:68:c0:cd:62:31:ad:20:0e:95:51:cc:f1:
a2:46:6b:06:19:a7:6a:0f:54:95:b2:31:7e:ae:82:ed:ff:3d:
df:a3:72:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:49 2025 by rpki-client