Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/uoEYBh_D16kjfg8FUw9ViiB5xiI.roa
File: uoEYBh_D16kjfg8FUw9ViiB5xiI.roa (raw, json)
Hash identifier: zucVd1a0y9r5OcP8OCPm0bJoMO433hzGIjwNIuCLZG4=
Subject key identifier: BA:81:18:06:1F:C3:D7:A9:23:7E:0F:05:53:0F:55:8A:20:79:C6:22
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 0944D467
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/uoEYBh_D16kjfg8FUw9ViiB5xiI.roa
Signing time: Mon 02 May 2022 10:07:43 +0000
ROA not before: Mon 02 May 2022 10:07:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41270
IP address blocks: 45.133.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155505767 (0x944d467)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: May 2 10:07:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba8118061fc3d7a9237e0f05530f558a2079c622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:44:66:a4:8b:6e:f9:df:bd:cb:48:f3:00:be:
75:7f:96:2f:f5:e9:5e:38:a8:17:32:7c:4c:0b:bb:
02:68:bc:02:5f:b7:bb:57:80:b0:26:dd:40:7d:36:
33:9a:39:c6:6b:17:f5:08:34:17:27:40:c6:70:4c:
d7:f7:05:a4:02:de:50:44:fe:da:3b:e2:1a:ee:55:
9b:8d:7a:a5:d1:2a:51:85:bb:24:ba:15:83:a4:e8:
38:be:15:d5:1b:ab:2a:c4:58:cc:30:60:3a:5e:1a:
de:fe:4c:86:c0:cb:f4:87:0c:57:77:ff:30:0a:67:
de:4e:ef:f9:13:85:11:2f:0d:a4:c2:8e:78:86:9a:
f0:fb:55:5a:bd:d5:24:36:d1:e8:31:a7:c5:d3:08:
99:48:ba:f0:ff:ef:ed:58:9b:d0:e1:a2:ff:ca:69:
f9:6e:22:11:2c:d1:b4:3d:20:7c:44:97:b1:c7:6b:
b3:fe:cf:d7:04:fd:88:b3:1b:e6:db:f2:b6:e8:14:
c6:a1:99:11:c4:a9:4a:5d:78:72:a0:00:69:22:02:
88:ff:a9:97:9c:27:de:a4:13:db:bc:46:74:ad:1e:
5f:1e:97:15:f6:41:10:80:89:12:84:12:2d:85:ba:
22:17:a3:00:28:13:d1:9f:7e:c3:54:f5:d9:a9:13:
a7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:81:18:06:1F:C3:D7:A9:23:7E:0F:05:53:0F:55:8A:20:79:C6:22
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/uoEYBh_D16kjfg8FUw9ViiB5xiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.153.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:e3:6e:f5:ab:cf:a7:fe:cd:6b:da:43:91:d5:91:b9:d6:96:
f9:ac:b1:4d:8e:5d:45:fd:5a:9e:85:28:36:15:50:19:07:a9:
48:aa:51:62:fc:f7:25:7e:67:ef:41:68:7b:5e:96:af:1f:b1:
33:41:16:4d:f4:d3:88:7c:54:13:e6:ca:f0:73:41:f2:40:78:
3e:aa:7a:ab:53:04:69:14:02:ca:15:04:a6:fc:b6:05:a4:c6:
f1:3b:71:e5:7e:78:3c:5d:28:de:81:27:f3:6b:79:6c:3e:25:
78:5c:9f:51:c3:61:f3:90:1d:6f:4f:66:7f:fd:14:f2:b8:a7:
24:af:b4:fe:19:83:42:1b:a0:03:2d:7e:c3:ea:79:49:16:38:
c2:6f:e0:ac:e8:d8:f7:92:72:63:9a:66:db:2b:04:a4:3e:d6:
6f:96:5a:41:ea:02:4a:da:82:7a:e9:1f:9a:fa:bf:d6:7a:f9:
77:41:1b:8d:06:08:bb:78:63:d0:3b:77:e0:d2:d9:87:71:f2:
48:aa:b2:14:3c:d8:5d:25:61:6c:d1:c6:43:ee:79:10:cb:14:
92:cb:31:60:fc:10:96:05:d5:7a:47:16:e4:61:76:64:47:d8:
88:8c:ba:c0:5f:dd:7e:0a:c0:24:a4:c6:b3:c2:83:63:09:4e:
95:d1:ea:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:42 2025 by rpki-client