Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/U8JXAPraj43LsMFW3hM9X5UFm0E.roa
File: U8JXAPraj43LsMFW3hM9X5UFm0E.roa (raw, json)
Hash identifier: pkp8WG0LtpBBcumYXjYAX+izAbA6sM1KMTww6YDqwOw=
Subject key identifier: 53:C2:57:00:FA:DA:8F:8D:CB:B0:C1:56:DE:13:3D:5F:95:05:9B:41
Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Certificate serial: 018650BE966314B90A00BC37405B96A83679
Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/U8JXAPraj43LsMFW3hM9X5UFm0E.roa
Signing time: Tue 14 Feb 2023 16:25:13 +0000
ROA not before: Tue 14 Feb 2023 16:25:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11351
IP address blocks: 45.81.26.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:50:be:96:63:14:b9:0a:00:bc:37:40:5b:96:a8:36:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Validity
Not Before: Feb 14 16:25:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53c25700fada8f8dcbb0c156de133d5f95059b41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:52:dd:a0:bb:23:35:64:05:de:e5:ab:8e:35:
e7:d4:4b:74:17:bc:fe:b7:28:5b:d5:72:6d:62:9f:
e0:4e:94:86:97:49:66:5f:77:c6:31:de:9c:a2:dc:
ed:3a:f3:ca:f5:1a:0e:f5:0f:46:f8:26:87:51:58:
6b:08:81:df:58:c1:05:3a:a5:6e:f4:17:cc:e2:ac:
4d:a9:2d:52:40:8a:11:3c:bc:74:b4:d9:0e:78:a7:
3e:78:c6:91:b6:90:08:76:19:e9:4e:58:47:db:49:
7e:52:e6:a7:b0:b0:7f:cd:cd:be:14:90:c8:5a:2a:
15:17:00:05:a6:95:18:61:12:18:45:83:db:26:9c:
61:86:f4:56:6f:77:6b:3e:fc:72:3f:14:e1:1d:fb:
ea:04:08:83:00:d6:a5:2e:2a:3a:72:bf:b4:bc:04:
63:07:78:51:71:23:c9:d2:01:e6:22:92:78:a0:4d:
52:97:f7:99:53:e1:73:0b:72:be:83:64:96:8a:bd:
7f:6e:1f:b7:15:cb:15:c5:0e:2b:a0:70:0a:bb:ee:
f4:42:7e:5b:b2:40:ce:4e:d1:1a:23:96:6d:81:6b:
bc:d7:57:2e:85:4c:a0:44:d2:39:4f:b4:9a:42:8e:
de:ef:fa:15:d8:73:a5:cf:90:9f:c5:77:b2:a7:14:
34:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C2:57:00:FA:DA:8F:8D:CB:B0:C1:56:DE:13:3D:5F:95:05:9B:41
X509v3 Authority Key Identifier:
keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/U8JXAPraj43LsMFW3hM9X5UFm0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.26.0/23
Signature Algorithm: sha256WithRSAEncryption
91:0a:38:ae:5a:5b:7e:61:06:63:f1:d5:6f:41:ea:cc:26:90:
f6:5f:8d:05:58:23:94:ed:43:27:f8:c3:6a:7c:17:63:29:0f:
9d:26:2e:fc:2d:55:2d:c9:48:f6:16:ff:75:05:dc:70:11:a2:
66:c8:54:18:35:76:f9:94:8a:a1:39:9b:c4:d1:f4:6a:a3:5b:
98:b6:86:b9:9e:27:67:87:9b:33:be:02:54:e0:fa:b4:19:42:
b4:4f:56:21:b5:0b:59:22:c7:2c:a3:10:4e:06:e2:fe:56:ba:
89:25:82:c1:d7:fe:49:6e:ad:58:30:ce:99:e1:68:ef:b2:db:
31:f8:04:2d:d1:9f:68:f7:cf:11:20:3d:ba:46:e7:2f:a4:b1:
1b:6e:52:c1:df:ae:e0:1e:fb:44:15:2b:f3:31:66:31:ee:cc:
d5:c8:11:1d:8f:16:43:44:bd:02:e6:98:10:96:76:8f:fa:53:
f1:17:18:a0:07:63:cf:af:d1:a9:93:4d:62:58:4e:74:4e:5a:
51:fb:95:fb:c1:ea:d0:8f:9f:cc:d6:34:90:6d:72:9c:36:66:
3a:0f:9d:1b:9b:e6:69:c0:98:aa:45:0c:22:4e:79:97:51:af:
68:83:ae:88:9e:33:d3:df:00:26:69:36:c4:e7:78:0c:5e:0f:
b8:2c:a0:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:13 2025 by rpki-client