Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/RCT6CKZeWLSF2X2afopa8ym-ivM.roa
File: RCT6CKZeWLSF2X2afopa8ym-ivM.roa (raw, json)
Hash identifier: nXma96+5OWfTuyXNLped4F9X7QrQqCXyaBcBxotYVd0=
Subject key identifier: 44:24:FA:08:A6:5E:58:B4:85:D9:7D:9A:7E:8A:5A:F3:29:BE:8A:F3
Certificate issuer: /CN=60c9aa8b71e548bd7565ba663fa32f7d1aec41ab
Certificate serial: 01843115988F617EF43DBF489EF9EB34B2EA
Authority key identifier: 60:C9:AA:8B:71:E5:48:BD:75:65:BA:66:3F:A3:2F:7D:1A:EC:41:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMmqi3HlSL11ZbpmP6MvfRrsQas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/RCT6CKZeWLSF2X2afopa8ym-ivM.roa
Signing time: Tue 01 Nov 2022 02:46:49 +0000
ROA not before: Tue 01 Nov 2022 02:46:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14315
IP address blocks: 45.155.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:31:15:98:8f:61:7e:f4:3d:bf:48:9e:f9:eb:34:b2:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c9aa8b71e548bd7565ba663fa32f7d1aec41ab
Validity
Not Before: Nov 1 02:46:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4424fa08a65e58b485d97d9a7e8a5af329be8af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:1a:90:00:dd:ad:e5:11:b8:04:b2:6e:eb:8b:
5c:c5:0a:d0:99:82:ae:01:ab:ba:74:37:01:c9:23:
48:67:09:27:69:a2:45:7f:91:c5:eb:39:e0:9f:7b:
92:46:5d:7a:b4:f5:09:29:05:d5:b1:50:6f:09:5a:
01:10:ae:4e:7a:de:71:8d:e6:e7:12:bd:71:3d:c0:
82:df:3a:9c:65:0c:77:1f:72:a1:53:38:35:9d:84:
24:f4:5b:66:2a:04:2f:73:f1:29:74:0c:1c:12:a3:
0b:f5:9e:b9:0f:3d:f5:84:b3:66:b7:34:e2:4d:aa:
e8:bc:8b:7e:4e:9f:fa:b9:24:48:a7:04:5a:85:05:
81:30:2f:ef:57:55:ae:08:d9:80:73:e4:bb:6d:33:
fd:20:4d:0c:f5:1c:00:5a:50:55:ef:5e:35:89:27:
d2:48:92:00:e7:fa:95:12:cb:5e:cd:dd:69:79:c2:
12:04:ca:83:5d:58:6c:b8:05:20:fe:46:8f:d8:f4:
f8:a2:33:5a:e6:bc:0a:4d:03:1e:24:76:49:69:d3:
55:13:5e:ab:de:f8:ea:36:dd:86:b6:6f:e9:b1:f7:
41:63:c3:26:01:53:37:e9:64:bf:af:1d:27:fa:f8:
4c:c6:d9:2a:7f:e4:23:63:e0:01:81:e0:83:1a:fa:
4c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:24:FA:08:A6:5E:58:B4:85:D9:7D:9A:7E:8A:5A:F3:29:BE:8A:F3
X509v3 Authority Key Identifier:
keyid:60:C9:AA:8B:71:E5:48:BD:75:65:BA:66:3F:A3:2F:7D:1A:EC:41:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMmqi3HlSL11ZbpmP6MvfRrsQas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/RCT6CKZeWLSF2X2afopa8ym-ivM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/38b542-4677-4a7e-b212-c8acce156f0d/1/YMmqi3HlSL11ZbpmP6MvfRrsQas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.224.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:64:3f:68:db:1d:5c:85:00:76:54:cf:c3:d1:47:e6:53:4b:
f7:ef:1c:71:67:dd:12:29:64:f6:cd:b2:44:30:5f:7b:cf:10:
72:96:aa:d5:1b:bd:e8:7e:3c:0a:f2:5f:2c:e9:1b:c1:4e:ad:
45:8e:21:27:84:ab:41:51:ed:fd:3b:d8:a0:dd:f6:d0:cc:78:
f6:49:38:99:0e:7d:1e:05:95:e2:ac:0f:fc:89:58:51:e2:66:
d6:e7:29:ef:c9:7c:ce:50:bf:41:66:3d:d8:13:58:fe:b7:87:
fd:80:1d:ea:ab:0f:87:01:14:2c:d6:63:5e:53:2f:80:40:a4:
4a:39:5b:cd:82:a3:4b:f7:8c:cd:58:1d:8e:74:7c:ea:b8:c1:
4d:db:19:02:80:fa:b6:15:1f:8d:95:a6:58:88:e2:63:6f:51:
4c:04:92:c3:24:9e:f7:6c:61:89:11:49:a8:98:1f:ea:6a:6a:
69:f8:a1:a5:df:8c:64:5d:34:fe:77:52:07:c7:c3:e1:8e:a1:
af:1e:fb:4c:b6:ed:40:dc:3e:f8:7b:5b:1e:15:b8:64:65:a4:
51:d0:cf:13:74:81:da:2c:18:bb:62:1e:83:8c:5b:56:bf:5b:
91:08:ea:41:3b:db:5d:08:c7:1d:e2:88:96:cf:a9:4d:9b:d1:
34:86:2a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:39 2025 by rpki-client