Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/4a95c1-1a50-4aff-bdab-0f6c9dd4f8fc/1/MOy6a5SByu5zbLu4uzMRLATAvuk.roa
File: MOy6a5SByu5zbLu4uzMRLATAvuk.roa (raw, json)
Hash identifier: FkmFlc+XpMkT1rIAombbJRWkX64T6qiCjc3WEQoM6/g=
Subject key identifier: 30:EC:BA:6B:94:81:CA:EE:73:6C:BB:B8:BB:33:11:2C:04:C0:BE:E9
Certificate issuer: /CN=85649727630464fb08709ac936433978f4a10eaa
Certificate serial: 0524896C
Authority key identifier: 85:64:97:27:63:04:64:FB:08:70:9A:C9:36:43:39:78:F4:A1:0E:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWSXJ2MEZPsIcJrJNkM5ePShDqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/4a95c1-1a50-4aff-bdab-0f6c9dd4f8fc/1/MOy6a5SByu5zbLu4uzMRLATAvuk.roa
Signing time: Sat 01 Jan 2022 14:07:56 +0000
ROA not before: Sat 01 Jan 2022 14:07:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 45.144.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86280556 (0x524896c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85649727630464fb08709ac936433978f4a10eaa
Validity
Not Before: Jan 1 14:07:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30ecba6b9481caee736cbbb8bb33112c04c0bee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a1:db:56:db:cc:94:0b:ca:33:3e:14:18:51:
77:3d:3a:f6:59:42:de:12:28:c2:c9:cc:63:41:0e:
99:2c:b0:f2:aa:25:19:85:69:4f:5f:f6:d1:a7:28:
45:02:ce:93:7c:c5:aa:a8:29:1c:f4:11:eb:d8:0f:
85:0c:9e:65:8d:70:bc:4e:0a:ce:58:1d:b7:7a:47:
bb:67:67:75:5c:c5:69:c5:2e:4b:6d:0e:58:0d:2e:
2a:77:de:d0:fc:8a:5e:63:91:06:90:7f:00:af:a6:
02:65:7a:1d:2a:56:8c:d9:56:ac:4f:65:b7:68:6f:
32:d2:e8:8b:66:ce:8f:e9:88:25:47:01:c8:35:e8:
23:04:f5:dd:d5:ec:1c:6b:19:b8:20:fc:2f:2e:6b:
7d:53:b8:e5:fb:d7:9d:fc:f1:39:01:5e:e1:c3:74:
2d:fd:b1:79:2a:9d:c2:d3:8a:25:8e:f1:99:eb:3d:
d7:53:81:23:82:56:39:c3:5f:3b:c3:c7:c9:41:6d:
4a:f9:fc:7d:c9:78:a4:ea:32:c1:b4:1f:f4:f4:c2:
64:07:6f:d3:84:1b:52:1b:84:5e:fa:f7:5c:c5:cc:
4c:fb:ce:84:b0:80:3b:42:1b:75:69:69:b2:a8:2c:
ed:e1:de:ca:52:83:52:05:16:ee:10:94:3e:97:7a:
7b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:EC:BA:6B:94:81:CA:EE:73:6C:BB:B8:BB:33:11:2C:04:C0:BE:E9
X509v3 Authority Key Identifier:
keyid:85:64:97:27:63:04:64:FB:08:70:9A:C9:36:43:39:78:F4:A1:0E:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWSXJ2MEZPsIcJrJNkM5ePShDqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/4a95c1-1a50-4aff-bdab-0f6c9dd4f8fc/1/MOy6a5SByu5zbLu4uzMRLATAvuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/4a95c1-1a50-4aff-bdab-0f6c9dd4f8fc/1/hWSXJ2MEZPsIcJrJNkM5ePShDqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.0.0/24
Signature Algorithm: sha256WithRSAEncryption
92:8f:02:58:9d:3e:dd:b9:71:bf:cd:bf:72:d9:bd:ec:ee:98:
42:6b:6a:95:bc:3f:32:34:0d:45:75:81:00:81:5d:fb:90:00:
36:ec:ed:66:80:ce:ce:1f:6b:3f:9e:7f:ba:38:41:d5:ec:1e:
7a:a0:ad:71:b9:a2:1f:5c:f5:fe:f2:b4:55:82:c7:09:4f:06:
43:09:48:08:5f:02:24:37:47:84:a6:1c:cb:cd:c4:39:a0:b5:
f0:b0:c5:17:4b:03:41:49:70:a4:74:2e:3d:23:cc:64:40:00:
7b:ac:e1:ca:ce:2e:00:32:5b:5c:09:d8:b1:1d:c5:14:56:a6:
3a:1d:92:97:1b:53:f8:3f:e6:8c:22:c5:78:a2:74:b3:3b:31:
7e:50:53:6f:f8:8a:88:a2:72:7b:24:48:99:b7:ba:de:7b:b8:
d3:92:ca:b3:21:7e:c0:5b:7e:c9:b2:5e:4b:04:17:4d:8d:5f:
83:a2:16:35:41:a7:a1:83:cd:16:9e:39:35:98:99:c8:e3:56:
42:f1:67:a2:c8:fd:79:b9:ec:45:a1:76:29:9b:25:37:97:02:
b1:05:cf:49:f4:d7:47:46:bc:8d:a0:ea:64:7d:51:d6:3b:23:
ff:7e:29:63:85:8c:46:54:89:12:b3:06:38:8f:1e:c3:4c:c4:
03:44:93:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:49 2025 by rpki-client