Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/CrTfBtxnf8gBCTEcTl4PSymCBEE.roa
File: CrTfBtxnf8gBCTEcTl4PSymCBEE.roa (raw, json)
Hash identifier: cakF9FVGoF4LWOmnqKjfA2DPXa2uxQ9pc3ubY8M55bg=
Subject key identifier: 0A:B4:DF:06:DC:67:7F:C8:01:09:31:1C:4E:5E:0F:4B:29:82:04:41
Certificate issuer: /CN=366de22f152d2f1333a940e1e0bbd6b4d8beac48
Certificate serial: 041570BC
Authority key identifier: 36:6D:E2:2F:15:2D:2F:13:33:A9:40:E1:E0:BB:D6:B4:D8:BE:AC:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nm3iLxUtLxMzqUDh4LvWtNi-rEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/CrTfBtxnf8gBCTEcTl4PSymCBEE.roa
Signing time: Sat 01 Jan 2022 13:59:13 +0000
ROA not before: Sat 01 Jan 2022 13:59:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 393398
IP address blocks: 45.151.90.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68513980 (0x41570bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=366de22f152d2f1333a940e1e0bbd6b4d8beac48
Validity
Not Before: Jan 1 13:59:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ab4df06dc677fc80109311c4e5e0f4b29820441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f8:76:ba:4f:19:6a:56:df:c6:de:db:f5:7f:
69:d2:00:c4:1d:94:36:b0:b2:f5:00:fa:2a:10:e2:
a7:d8:01:b8:d1:5b:40:63:4d:f1:f9:20:68:e9:ba:
50:5e:4b:76:bd:47:36:ea:91:e2:59:a4:ff:72:8e:
1a:f1:28:d0:2e:9f:71:32:28:93:be:8b:96:f2:ff:
c1:15:83:8c:13:b0:05:ce:aa:d8:01:4b:b7:b3:3a:
ea:77:98:1a:bb:e0:20:14:d9:81:92:12:89:92:d2:
5d:2c:1a:66:e8:f6:73:69:80:69:a8:5c:a8:69:e8:
9f:4f:4a:ec:21:76:62:f0:24:cb:0a:60:31:a3:78:
6d:85:99:c3:7f:92:e0:01:af:3f:db:7a:12:0c:70:
c4:0b:96:81:e5:7c:38:fc:69:fc:8f:62:c5:a1:df:
c5:15:79:35:3b:0f:13:af:f7:e4:a6:54:1a:c4:cc:
51:07:21:2f:51:71:27:4f:be:59:0f:c8:e7:3d:0b:
67:51:8e:a5:16:3d:58:63:5d:d2:82:f4:24:f7:b3:
ee:4b:c9:7b:30:3b:48:51:4e:71:ac:41:49:19:33:
75:12:4c:88:ae:0f:29:78:33:0a:72:95:bc:9f:35:
77:00:e3:81:30:3f:f9:10:1b:59:0e:ea:c0:7d:8b:
be:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B4:DF:06:DC:67:7F:C8:01:09:31:1C:4E:5E:0F:4B:29:82:04:41
X509v3 Authority Key Identifier:
keyid:36:6D:E2:2F:15:2D:2F:13:33:A9:40:E1:E0:BB:D6:B4:D8:BE:AC:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nm3iLxUtLxMzqUDh4LvWtNi-rEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/CrTfBtxnf8gBCTEcTl4PSymCBEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e3afdd-c306-4a4d-ba4b-7b3bdf547f49/1/Nm3iLxUtLxMzqUDh4LvWtNi-rEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.90.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:ab:78:7c:bf:b0:f3:47:8c:26:06:58:b9:7c:2f:2f:5d:65:
17:dd:5c:ba:43:5c:8b:a1:42:c9:95:9b:39:20:7f:f3:55:9c:
1b:c4:86:9f:c6:36:df:14:44:e6:fb:ee:43:1c:b6:9c:3c:8e:
8f:f6:45:8f:19:1e:c2:24:85:03:99:e8:3a:94:6f:99:f0:8a:
fd:20:5b:4d:02:71:c7:fc:43:da:54:45:75:ca:2a:bc:4f:8a:
a4:10:ac:8d:89:a2:e6:05:b1:ff:42:a4:b7:95:93:f6:46:88:
e1:86:49:81:e8:66:d4:a1:fe:3a:31:ba:ce:98:e2:7b:11:3f:
9d:1e:43:2e:ca:9c:43:3e:ed:30:69:e5:1c:20:7a:c2:06:dc:
f2:ea:3f:23:96:35:e4:d9:b6:f5:e4:9b:15:57:2d:53:12:b4:
e6:ca:32:66:9f:ff:20:20:95:9e:0e:bd:27:0d:5a:c3:9e:c6:
15:2e:37:32:0e:08:2b:d8:22:c5:3d:96:d1:8c:86:dd:87:65:
f6:98:b5:b6:64:e1:21:ce:5c:92:b0:8d:35:9a:7d:dd:8b:08:
c9:4b:9d:d2:21:a3:e0:2b:e2:e8:33:73:f3:4e:bd:d5:f5:ec:
7b:10:db:35:87:b6:0c:12:9c:6e:0a:6c:0a:cf:f2:0f:2d:4c:
9c:ff:c1:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:52:15 2025 by rpki-client