Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d319ee-867c-4251-b1e2-89e2fbd41482/1/cFW1g4lFlKiNuQgMQ7KXVPf0-1o.roa
File: cFW1g4lFlKiNuQgMQ7KXVPf0-1o.roa (raw, json)
Hash identifier: bFHYD7eZ1W8mP7dHnox2mdtjENVFnOkFlmkCg6/lo5U=
Subject key identifier: 70:55:B5:83:89:45:94:A8:8D:B9:08:0C:43:B2:97:54:F7:F4:FB:5A
Certificate issuer: /CN=64a68fc98cbdd586c14195005e272c347d79d423
Certificate serial: 06CAAFBE
Authority key identifier: 64:A6:8F:C9:8C:BD:D5:86:C1:41:95:00:5E:27:2C:34:7D:79:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKaPyYy91YbBQZUAXicsNH151CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d319ee-867c-4251-b1e2-89e2fbd41482/1/cFW1g4lFlKiNuQgMQ7KXVPf0-1o.roa
Signing time: Sat 01 Jan 2022 04:53:38 +0000
ROA not before: Sat 01 Jan 2022 04:53:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201508
IP address blocks: 45.94.32.0/24 maxlen: 24
45.94.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113946558 (0x6caafbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a68fc98cbdd586c14195005e272c347d79d423
Validity
Not Before: Jan 1 04:53:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7055b583894594a88db9080c43b29754f7f4fb5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bb:80:bc:81:a4:24:8f:da:04:3d:8e:88:c7:
f5:e9:14:1c:63:c0:fc:e0:a5:69:16:29:b1:11:3b:
3b:26:22:8a:81:c9:b9:3d:27:ea:30:69:dc:14:8e:
68:93:54:1b:50:2f:c8:17:5f:08:e1:d4:0c:cc:aa:
5d:eb:53:09:97:e9:73:64:4f:f5:0e:f3:4d:e3:a3:
67:7c:01:e9:97:bf:ca:27:40:44:18:66:8d:e4:a6:
27:c0:cb:32:c7:29:c2:b7:32:f2:d0:51:02:dd:05:
89:28:04:54:4b:09:eb:f6:35:87:cc:ce:d7:3a:1e:
8b:00:d6:bf:1d:3c:3d:f5:42:ad:e9:c2:4a:ca:c7:
dc:22:d5:9c:3b:7a:a4:19:9d:87:55:57:01:be:21:
b5:5f:fc:00:55:76:a7:a0:0a:e7:df:66:5f:7b:f4:
36:94:63:fa:f1:59:ac:54:fa:4e:e3:90:db:5b:36:
2f:90:de:12:9f:47:4a:76:37:5e:34:cb:78:54:94:
08:b8:84:a0:58:c7:05:c8:0f:02:de:ca:2e:d3:3a:
e0:1c:c0:a8:1e:fc:87:db:0a:25:9c:11:11:c3:82:
13:28:dd:a4:a0:2e:54:b1:4d:e4:4e:85:58:4c:12:
23:1b:e0:85:89:2c:e4:20:cb:fc:07:43:be:f4:74:
43:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:55:B5:83:89:45:94:A8:8D:B9:08:0C:43:B2:97:54:F7:F4:FB:5A
X509v3 Authority Key Identifier:
keyid:64:A6:8F:C9:8C:BD:D5:86:C1:41:95:00:5E:27:2C:34:7D:79:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKaPyYy91YbBQZUAXicsNH151CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d319ee-867c-4251-b1e2-89e2fbd41482/1/cFW1g4lFlKiNuQgMQ7KXVPf0-1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d319ee-867c-4251-b1e2-89e2fbd41482/1/ZKaPyYy91YbBQZUAXicsNH151CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.32.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:c5:c3:92:53:97:4b:f7:d2:a0:c4:df:9c:92:78:5a:cb:0f:
58:54:01:54:6d:45:c3:0d:98:a6:9f:90:af:04:a2:24:e5:e0:
ff:e5:be:e0:e3:f9:e3:31:cd:3e:f4:e7:a1:ec:9b:67:b8:5d:
a6:75:ae:4f:2a:9a:4b:34:5b:1a:62:d9:bd:95:14:1e:08:1d:
b5:8e:65:be:d5:8b:70:d2:30:f9:e2:35:31:e7:61:92:94:77:
17:9c:2c:18:2e:bb:d3:8e:da:43:ee:a3:7e:83:1c:27:9d:c8:
06:ac:17:b7:b5:e4:5e:4d:0c:ba:c3:2a:ef:a8:49:99:75:89:
58:7c:61:d9:7d:dc:e5:61:b8:a5:9e:2b:ca:76:b1:01:a7:57:
9a:bf:96:29:cd:b7:76:3c:21:31:4c:0e:f1:dc:67:9f:ea:42:
2c:d2:41:0f:5e:83:df:42:6d:3f:ff:5a:dc:47:f2:24:f8:23:
2e:30:3d:83:73:5e:60:91:43:5c:fc:c2:9d:c3:15:e7:c4:91:
db:76:ea:70:d1:1b:eb:28:82:f3:10:85:cb:df:33:b3:e6:c1:
67:f3:31:cc:4e:6a:79:16:50:5e:7e:5f:20:81:22:26:15:48:
12:6c:0c:2e:66:12:cd:07:be:fd:f7:0c:21:da:21:0e:b8:5b:
3b:1f:93:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:56 2025 by rpki-client