Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/Q7dSA4F2KjjDvGKXMeR7EUfgeYo.roa
File: Q7dSA4F2KjjDvGKXMeR7EUfgeYo.roa (raw, json)
Hash identifier: vcphCAZTH2cC2HiExI+rrXEDYuDAUqbPFWe0mXCdO6k=
Subject key identifier: 43:B7:52:03:81:76:2A:38:C3:BC:62:97:31:E4:7B:11:47:E0:79:8A
Certificate issuer: /CN=62d18b312e353e78fa8ee5f80d36f741cdcde3aa
Certificate serial: 01DEB338
Authority key identifier: 62:D1:8B:31:2E:35:3E:78:FA:8E:E5:F8:0D:36:F7:41:CD:CD:E3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/Q7dSA4F2KjjDvGKXMeR7EUfgeYo.roa
Signing time: Sat 01 Jan 2022 03:57:23 +0000
ROA not before: Sat 01 Jan 2022 03:57:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.94.134.0/24 maxlen: 24
45.94.133.0/24 maxlen: 24
45.94.135.0/24 maxlen: 24
45.94.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31372088 (0x1deb338)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62d18b312e353e78fa8ee5f80d36f741cdcde3aa
Validity
Not Before: Jan 1 03:57:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43b7520381762a38c3bc629731e47b1147e0798a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4b:03:af:e9:b2:17:36:86:91:16:92:69:0e:
ec:f9:0f:84:2a:d7:8e:70:55:1a:76:4e:ab:13:f5:
da:8f:d4:23:63:86:49:ed:79:1d:56:aa:e2:91:f8:
80:c1:1f:a5:61:79:f5:a8:84:a3:e1:eb:ea:cc:21:
ab:da:23:fd:ea:b4:5d:99:da:21:8e:e0:54:86:dc:
ec:88:bf:f5:0f:aa:85:f4:49:ad:8f:01:37:74:52:
ff:b1:5c:a8:43:18:e6:e4:ad:fc:f0:8a:81:7a:23:
85:bc:b4:15:1b:64:82:96:91:fe:89:cf:75:60:7e:
70:cf:39:27:59:3a:72:69:e6:92:eb:2d:c7:f3:5e:
6f:f7:93:3c:e6:5c:88:74:1f:6f:cb:4a:c2:4a:8a:
07:7e:60:0b:da:58:18:6b:ff:02:aa:dc:2b:91:a5:
07:fc:5d:81:a2:41:a1:a0:ca:6b:d6:0c:99:6b:11:
7b:19:6d:da:eb:ac:96:19:a8:c8:98:55:01:f8:f2:
34:b6:12:b0:ee:3c:42:61:14:8f:ee:36:66:ec:4f:
95:60:aa:e3:03:11:5f:44:2e:12:c0:8f:ef:d2:2d:
54:a3:af:7c:d8:82:cb:a5:06:b1:22:21:ba:70:1d:
2d:7b:fe:d0:28:08:24:18:cc:28:f5:ae:f1:c4:e1:
ba:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B7:52:03:81:76:2A:38:C3:BC:62:97:31:E4:7B:11:47:E0:79:8A
X509v3 Authority Key Identifier:
keyid:62:D1:8B:31:2E:35:3E:78:FA:8E:E5:F8:0D:36:F7:41:CD:CD:E3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YtGLMS41Pnj6juX4DTb3Qc3N46o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/Q7dSA4F2KjjDvGKXMeR7EUfgeYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/3b9215-9807-481e-9a1e-732272023ec2/1/YtGLMS41Pnj6juX4DTb3Qc3N46o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.132.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:a3:03:c9:68:01:8e:c5:af:97:ae:33:e6:0e:92:9a:42:60:
16:62:96:cd:bc:4f:25:ce:fb:5c:48:fc:0b:b6:13:7c:09:d4:
52:c2:d0:b8:8b:1f:7b:91:3a:88:cb:b9:27:d8:39:a9:5c:f0:
8a:90:17:39:4b:75:f0:f6:bb:20:5b:0d:32:fd:f6:2f:73:86:
03:44:06:85:44:ee:69:f0:e5:8b:72:05:c8:9d:8c:94:bb:65:
65:f6:12:63:7a:e6:4a:e2:cc:68:be:fc:2a:da:2a:dd:d3:ce:
24:be:54:95:39:31:db:c3:ad:0b:c5:30:aa:13:0b:e4:ea:50:
5d:24:20:d6:3d:d7:b7:02:eb:f4:64:ad:15:ec:83:0c:d1:73:
cb:e7:2a:e4:2c:83:08:84:04:dc:77:68:48:fe:78:da:52:43:
f6:02:57:28:09:8e:bb:5f:0b:a2:99:27:ec:1e:81:17:85:d4:
bc:a7:7e:5e:1c:1a:0b:98:c9:4f:13:06:ef:39:21:92:af:3f:
2f:06:9b:7f:1a:47:c2:2f:14:f3:01:2c:63:8f:6e:5d:12:b8:
ff:59:a5:f3:53:fc:49:50:74:8b:51:1c:fc:de:b7:2d:31:a0:
d3:ce:b7:f3:4e:a1:34:01:30:dc:32:35:fc:81:96:bc:d4:80:
e4:1f:30:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:42 2025 by rpki-client