Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/c1b548-5344-4833-aec2-f2a3fb0e70d3/1/HgDH8SLF3RhUSEw5OEScTqwSkmw.roa
File: HgDH8SLF3RhUSEw5OEScTqwSkmw.roa (raw, json)
Hash identifier: UWGmotTiCascx3cyNtFj8kV4JzVIyRCM3vuVvyKzFW4=
Subject key identifier: 1E:00:C7:F1:22:C5:DD:18:54:48:4C:39:38:44:9C:4E:AC:12:92:6C
Certificate issuer: /CN=1db853b861973fc506e64714cca796d15ccace51
Certificate serial: 0832D5B2
Authority key identifier: 1D:B8:53:B8:61:97:3F:C5:06:E6:47:14:CC:A7:96:D1:5C:CA:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbhTuGGXP8UG5kcUzKeW0VzKzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/c1b548-5344-4833-aec2-f2a3fb0e70d3/1/HgDH8SLF3RhUSEw5OEScTqwSkmw.roa
Signing time: Wed 20 Apr 2022 12:51:57 +0000
ROA not before: Wed 20 Apr 2022 12:51:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208608
IP address blocks: 45.128.16.0/24 maxlen: 24
45.128.18.0/24 maxlen: 24
2a0e:3bc0:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137549234 (0x832d5b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1db853b861973fc506e64714cca796d15ccace51
Validity
Not Before: Apr 20 12:51:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e00c7f122c5dd1854484c3938449c4eac12926c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5d:52:69:47:85:c4:3a:ff:a6:6f:4c:fa:56:
c4:33:35:85:38:b6:88:84:ed:b6:83:8e:24:94:e9:
eb:59:84:16:3b:b9:88:6c:54:14:12:8e:ef:6f:49:
24:8b:0a:06:50:da:ee:43:22:88:74:4c:7e:dc:cf:
34:9d:7c:b9:af:93:cb:ab:e2:dd:e1:70:a7:6a:4b:
12:a0:e5:32:93:6a:6a:25:57:d7:77:2e:a3:cb:08:
f9:af:03:b8:44:3b:51:8e:b0:f6:bb:a5:25:c7:71:
02:ad:68:c0:da:43:09:1f:5b:99:14:b7:14:39:10:
38:b8:5c:b1:1c:54:41:5c:a3:2d:33:73:4f:4a:f1:
55:04:f2:50:a5:23:56:f4:77:6f:aa:06:cd:e1:d2:
77:e0:86:a3:7f:a7:44:00:04:3f:cd:f9:d3:e3:ec:
a9:80:dd:85:d4:0e:f1:41:20:7c:ff:4d:84:d8:83:
47:5a:a0:85:b3:85:2f:a7:52:c8:f1:aa:ef:42:69:
80:18:6b:29:30:8a:2e:78:fa:d5:5c:f8:e2:35:92:
5a:7e:8a:9b:c4:5d:6e:ad:f4:03:9a:1e:6c:f7:aa:
16:01:d2:be:52:66:76:f7:f1:74:87:7a:49:49:78:
14:9e:ec:85:95:93:99:b7:e9:6e:b0:83:43:ba:6c:
89:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:00:C7:F1:22:C5:DD:18:54:48:4C:39:38:44:9C:4E:AC:12:92:6C
X509v3 Authority Key Identifier:
keyid:1D:B8:53:B8:61:97:3F:C5:06:E6:47:14:CC:A7:96:D1:5C:CA:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbhTuGGXP8UG5kcUzKeW0VzKzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c1b548-5344-4833-aec2-f2a3fb0e70d3/1/HgDH8SLF3RhUSEw5OEScTqwSkmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c1b548-5344-4833-aec2-f2a3fb0e70d3/1/HbhTuGGXP8UG5kcUzKeW0VzKzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.16.0/24
45.128.18.0/24
IPv6:
2a0e:3bc0:1::/48
Signature Algorithm: sha256WithRSAEncryption
24:fc:60:cf:f1:35:2c:96:aa:d7:5d:a9:62:f6:4f:5b:75:87:
a6:4a:27:19:d4:7f:26:71:5e:2f:e3:24:84:02:c0:48:00:bc:
95:51:c8:79:51:c2:ac:44:0a:aa:58:f9:18:a3:00:28:a7:e2:
30:59:38:05:fb:22:93:e1:38:ea:66:95:fc:12:d7:1e:7b:04:
72:2d:6a:d1:a7:e9:6b:1c:73:65:00:35:15:e1:68:f6:1f:71:
35:9b:ce:61:c0:53:6f:be:73:38:19:6f:96:b1:ca:06:e3:f0:
4e:fb:3f:cb:1a:06:c3:ad:e8:4b:1c:a7:c1:f9:32:ff:4b:ea:
7e:15:8b:57:26:7d:56:c7:96:4e:df:eb:8f:9e:e7:45:f2:45:
ba:c3:dd:4a:f6:29:ad:66:88:53:ce:c8:8c:47:6b:52:81:cb:
cc:3c:9f:02:77:bc:35:ea:bc:8b:fc:e4:f0:10:f1:6f:c0:ab:
4c:f5:5a:84:9c:aa:65:cd:3d:21:dc:7e:25:0d:d6:b3:96:5c:
02:e8:4e:5f:f5:a7:cf:4b:8f:97:09:c5:cb:ae:38:f9:d9:91:
03:11:ca:b5:50:b6:1b:fe:29:03:b2:30:cf:41:e5:a9:2c:9d:
f2:66:c1:31:7e:25:0a:6d:1a:0d:a4:93:fa:0b:c9:68:36:a3:
75:9b:f4:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:10 2025 by rpki-client