Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/aa164f-e5ad-4237-9bb9-0e57bd92b798/1/Lgf-ygAnz74VIgsIwJYPhmH-fZ0.roa
File: Lgf-ygAnz74VIgsIwJYPhmH-fZ0.roa (raw, json)
Hash identifier: smv/ekRc9kb29qsR3+iw36M/As+HL/zYdFJ6ng+6Oxc=
Subject key identifier: 2E:07:FE:CA:00:27:CF:BE:15:22:0B:08:C0:96:0F:86:61:FE:7D:9D
Certificate issuer: /CN=a0ba80b0c82149955a753443844041808445ddaf
Certificate serial: 01856D53F22C751756295B0AED5609D44428
Authority key identifier: A0:BA:80:B0:C8:21:49:95:5A:75:34:43:84:40:41:80:84:45:DD:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLqAsMghSZVadTRDhEBBgIRF3a8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/aa164f-e5ad-4237-9bb9-0e57bd92b798/1/Lgf-ygAnz74VIgsIwJYPhmH-fZ0.roa
Signing time: Sun 01 Jan 2023 12:34:55 +0000
ROA not before: Sun 01 Jan 2023 12:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57335
IP address blocks: 45.130.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:f2:2c:75:17:56:29:5b:0a:ed:56:09:d4:44:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ba80b0c82149955a753443844041808445ddaf
Validity
Not Before: Jan 1 12:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e07feca0027cfbe15220b08c0960f8661fe7d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:02:8a:3c:71:ba:92:90:91:75:3e:5f:64:b3:
6b:97:f0:6c:22:88:dd:cb:05:74:3d:f3:51:d2:c5:
bc:50:1e:c0:81:68:49:71:7b:5b:14:39:4b:a1:a4:
1d:7b:b1:de:7e:f8:02:6d:3d:63:17:ff:06:16:34:
ed:f3:a2:b6:60:f5:57:09:62:1b:60:15:2f:25:41:
2c:0b:81:e3:28:5c:f4:a7:ba:94:bc:3a:0b:34:f6:
27:95:a6:97:b9:6b:60:4c:78:cb:e2:4e:66:b8:ab:
ca:b0:e8:68:88:24:31:ad:a1:0d:6f:4e:a9:10:16:
47:15:30:70:19:7f:43:5b:11:8d:7b:1c:41:26:98:
6f:0c:28:02:f3:04:bd:5c:86:d6:68:60:e8:3f:1e:
10:d7:fa:95:d2:4c:27:f7:e3:6a:48:98:52:ad:1b:
5d:36:4d:8b:bc:c6:2c:ae:0d:bb:17:ba:a5:53:97:
5d:e3:4a:bc:e1:09:a9:17:5d:57:b7:11:b2:81:7a:
08:2e:59:aa:94:58:a5:f6:3a:e1:8e:dc:5a:c3:90:
9c:fa:8a:22:92:72:25:62:c2:05:ca:44:10:e5:17:
fc:17:67:0d:f8:43:d3:db:5a:a6:ef:c0:92:28:90:
e1:18:9f:35:3f:b0:90:58:63:31:16:7d:49:d3:3b:
0b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:07:FE:CA:00:27:CF:BE:15:22:0B:08:C0:96:0F:86:61:FE:7D:9D
X509v3 Authority Key Identifier:
keyid:A0:BA:80:B0:C8:21:49:95:5A:75:34:43:84:40:41:80:84:45:DD:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLqAsMghSZVadTRDhEBBgIRF3a8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/aa164f-e5ad-4237-9bb9-0e57bd92b798/1/Lgf-ygAnz74VIgsIwJYPhmH-fZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/aa164f-e5ad-4237-9bb9-0e57bd92b798/1/oLqAsMghSZVadTRDhEBBgIRF3a8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.232.0/22
Signature Algorithm: sha256WithRSAEncryption
97:5a:31:9e:7f:e5:8d:51:e2:4a:f5:4c:1a:80:d4:62:5b:6e:
ae:54:f8:7b:2b:3a:de:b8:ca:ae:cd:d2:dc:cf:30:97:68:80:
83:99:7b:21:da:ec:d6:50:f6:65:e6:8c:f4:a9:3b:52:43:b9:
4b:db:e0:28:8e:61:f0:c2:a7:13:28:96:dd:0b:31:f7:7b:62:
8d:01:15:91:0e:6f:c4:8c:2a:79:c6:a5:31:17:46:76:b4:93:
2a:e8:c2:82:85:24:a7:24:bd:73:49:fc:d0:57:f7:a7:7c:a3:
d1:37:71:d2:74:56:81:53:c6:b5:81:55:db:40:21:bb:0c:18:
92:8d:17:76:58:2c:2d:ad:4d:85:fe:8a:41:9c:b0:bd:5c:bf:
35:20:9f:40:7f:2d:69:9c:1f:e5:f0:bb:ff:82:3e:0a:7c:07:
ec:60:26:05:53:5d:22:d8:26:96:c0:37:cc:14:0c:a3:ee:4e:
89:e3:a6:d6:39:0d:3a:f8:58:7a:cc:b1:ad:3a:a6:27:e0:c2:
19:ca:cd:e0:1c:a2:56:31:b8:4a:cf:2c:a6:46:45:35:b6:56:
79:30:34:a5:8b:a0:3b:6e:1a:5d:ec:6f:b9:c1:c8:82:ce:e5:
47:c5:65:e4:b7:71:23:8e:c2:ba:83:92:5c:f6:d7:18:4b:35:
31:2f:a0:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:05:21 2025 by rpki-client