Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/Qk4vXPyUVESx1QVVBM0qyemJZZQ.roa
File: Qk4vXPyUVESx1QVVBM0qyemJZZQ.roa (raw, json)
Hash identifier: GfNuYXuKsT+PUqV8z0YQlrrtCCylH2y63DjwPW1dIUA=
Subject key identifier: 42:4E:2F:5C:FC:94:54:44:B1:D5:05:55:04:CD:2A:C9:E9:89:65:94
Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Certificate serial: 01866072BBD3890369693539E5239DF1CB02
Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/Qk4vXPyUVESx1QVVBM0qyemJZZQ.roa
Signing time: Fri 17 Feb 2023 17:36:17 +0000
ROA not before: Fri 17 Feb 2023 17:36:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7411
IP address blocks: 45.13.250.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:60:72:bb:d3:89:03:69:69:35:39:e5:23:9d:f1:cb:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Validity
Not Before: Feb 17 17:36:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=424e2f5cfc945444b1d5055504cd2ac9e9896594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c0:81:d6:5a:5d:d7:f5:02:f2:8b:aa:3d:1e:
12:7b:34:f6:0a:59:da:16:c8:10:fa:10:52:d8:6e:
49:f9:34:11:d3:88:3e:5d:88:94:6a:65:cd:67:f9:
73:7e:26:cb:07:93:c2:20:5d:24:84:fd:28:45:5b:
35:aa:55:bc:33:34:9f:03:1b:d3:b5:c7:5c:f0:df:
33:33:16:0b:99:19:90:25:31:a9:8b:ef:da:4b:58:
0f:ac:68:3c:d3:05:bc:8f:7c:a1:8b:f2:c9:2b:36:
60:85:78:ac:9a:d6:e9:ae:a1:c6:54:7f:40:9c:ea:
8a:ff:86:8e:07:8c:c5:b3:07:5f:5b:b0:dc:e9:0d:
18:c2:03:ff:55:18:70:46:45:10:43:ac:00:65:9d:
7a:3b:b8:da:79:54:3a:ed:10:76:9d:db:c8:7b:7b:
af:b1:1c:1e:0d:3f:e3:99:45:a1:03:fa:16:db:6e:
1a:7f:50:d9:7f:9e:1a:95:42:3c:44:cd:4b:39:7a:
70:53:6d:2b:36:f1:c6:66:e6:79:89:92:33:90:4e:
05:56:ec:5c:cb:c1:a7:14:0b:22:ef:56:be:ef:5d:
a1:8b:ae:c8:e7:2c:ba:15:3d:fc:7f:d9:2d:91:21:
7d:1f:0c:b0:0a:b4:40:7d:1f:21:f4:ac:74:00:c0:
32:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4E:2F:5C:FC:94:54:44:B1:D5:05:55:04:CD:2A:C9:E9:89:65:94
X509v3 Authority Key Identifier:
keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/Qk4vXPyUVESx1QVVBM0qyemJZZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.250.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:90:46:81:e7:9d:6c:e6:3b:5b:e2:50:4a:ee:a7:0c:f8:49:
c4:f1:dc:65:6c:fe:99:ce:0e:77:c7:20:ab:4b:91:47:52:72:
b0:ff:c0:0b:26:82:81:7d:c2:72:ad:02:6e:f1:ec:32:f2:a9:
f8:f9:a4:39:62:74:7c:cb:6f:03:37:3c:ba:d2:37:49:70:03:
09:e8:23:b5:97:e8:66:96:a9:9d:94:0f:a8:d6:e0:b3:3c:fe:
2a:2d:7e:a1:51:b9:a9:be:28:cc:a8:29:bd:4b:6f:bc:50:a9:
ca:bf:36:9d:72:02:ae:31:0f:b3:6a:bf:65:80:0e:c8:5a:fb:
68:31:13:13:30:34:f1:38:6c:d8:b8:13:c8:84:c4:ec:da:0f:
b5:f1:b7:59:1a:23:10:e3:5f:9c:c2:18:ae:c7:bb:ef:6b:97:
d9:4c:a5:64:a7:39:26:5a:52:ba:a1:ea:f7:ce:63:23:90:7e:
3c:a5:f2:c8:eb:c5:42:94:2f:5c:1c:73:e4:3b:29:0d:dd:46:
12:69:4b:a6:a8:27:c2:a3:4a:3e:bf:e0:33:33:49:d4:5e:25:
a4:8d:82:e1:21:c6:b1:64:85:dd:2f:52:82:fc:a8:2b:96:dc:
ec:4e:1c:dc:6b:e2:70:2f:e7:ac:d9:5c:99:22:05:bf:00:19:
a2:2b:2a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:27:51 2025 by rpki-client