Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/O4AfijzijslCSTTW352bk9fTK5Q.roa
File: O4AfijzijslCSTTW352bk9fTK5Q.roa (raw, json)
Hash identifier: /zEl55TNm1dUUVIYMAN4hTJFE8jO3BIPJ/4pHI4Fep8=
Subject key identifier: 3B:80:1F:8A:3C:E2:8E:C9:42:49:34:D6:DF:9D:9B:93:D7:D3:2B:94
Certificate issuer: /CN=4a7209f8b7ed4fa9bfb278880c29f98d6a96b63c
Certificate serial: 08754330
Authority key identifier: 4A:72:09:F8:B7:ED:4F:A9:BF:B2:78:88:0C:29:F9:8D:6A:96:B6:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SnIJ-LftT6m_sniIDCn5jWqWtjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/O4AfijzijslCSTTW352bk9fTK5Q.roa
Signing time: Mon 04 Apr 2022 20:12:00 +0000
ROA not before: Mon 04 Apr 2022 20:12:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 45.142.112.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141902640 (0x8754330)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a7209f8b7ed4fa9bfb278880c29f98d6a96b63c
Validity
Not Before: Apr 4 20:12:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b801f8a3ce28ec9424934d6df9d9b93d7d32b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:51:bb:d6:b7:ac:28:ba:5d:25:36:7f:ed:0b:
86:f3:cc:97:34:eb:c4:9a:00:54:50:7d:ec:d6:b9:
b1:e3:7d:1d:67:43:e5:29:22:5b:9e:c7:1b:fd:7a:
6b:b5:5a:8b:08:12:6c:6f:c0:b3:12:3a:99:a6:1e:
c0:31:6a:f8:f4:f6:cc:02:4e:ee:d3:e2:25:95:61:
ca:0e:f0:58:e2:3e:96:fb:1b:c5:99:d7:a2:92:cc:
b6:76:e8:6b:85:10:1b:c3:47:4a:6a:51:af:fe:90:
c8:de:58:38:27:03:bc:c5:1c:81:7f:bb:df:18:ae:
72:70:98:eb:e9:34:77:86:93:31:b1:7d:9a:bd:d0:
71:a5:44:ef:a0:63:aa:f4:7a:1a:fe:bd:49:78:68:
d2:9f:e0:dd:f3:03:83:63:71:43:ad:51:70:1d:fe:
41:e3:a3:5f:7f:f7:60:51:e0:fc:21:f8:74:25:1e:
0a:a6:6a:29:28:d2:d6:9c:9f:d8:9e:d2:50:cc:66:
79:08:ff:3d:b3:5a:f9:a9:25:71:e9:04:ed:43:41:
c1:0b:d7:c8:02:da:86:e8:d6:a5:56:52:ff:e6:65:
93:bd:71:1d:1d:25:3b:41:4a:ee:22:be:f4:2d:9f:
2b:7c:2a:e0:b3:1c:a6:af:e4:3a:0e:80:53:7f:f2:
34:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:80:1F:8A:3C:E2:8E:C9:42:49:34:D6:DF:9D:9B:93:D7:D3:2B:94
X509v3 Authority Key Identifier:
keyid:4A:72:09:F8:B7:ED:4F:A9:BF:B2:78:88:0C:29:F9:8D:6A:96:B6:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SnIJ-LftT6m_sniIDCn5jWqWtjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/O4AfijzijslCSTTW352bk9fTK5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/SnIJ-LftT6m_sniIDCn5jWqWtjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.112.0/24
Signature Algorithm: sha256WithRSAEncryption
84:09:94:26:f4:17:78:a7:09:8b:d3:42:8b:0f:b2:d1:5f:92:
54:41:dd:8b:84:38:a1:70:b6:67:97:2c:2f:0a:32:30:41:58:
e4:7a:d0:84:a6:a5:17:28:9f:55:46:b9:21:89:5f:bb:74:a3:
1b:6f:16:c1:a7:09:64:2d:36:33:73:cd:1a:cc:3a:b7:a7:a7:
03:23:b9:2d:28:d8:62:e9:14:51:07:2c:b6:67:b1:28:2a:35:
d5:eb:4a:07:27:84:67:96:11:ed:29:2c:85:3e:af:97:e0:53:
a4:15:7c:7d:76:8c:54:58:57:d6:4f:03:c4:ce:4c:f0:16:fe:
7b:d6:75:fe:f2:3f:62:d1:51:99:2d:f4:bd:e2:eb:27:de:91:
47:29:b6:fb:82:06:55:e5:6f:16:f4:25:e9:93:2c:9b:d6:ce:
64:87:21:67:05:f4:ff:5f:c7:bf:4c:d1:ac:26:0c:e9:97:79:
32:c6:8b:dd:0d:84:4c:3b:3d:04:85:2b:83:a5:4a:29:cb:d9:
dd:d0:de:90:fb:6a:b4:7c:31:eb:9c:dd:8e:9d:67:48:33:41:
92:cf:e2:e4:79:99:bd:8f:75:24:18:51:88:52:40:2a:3b:18:
64:f1:6c:77:6d:ea:fb:0a:3b:f0:a9:4f:38:82:c0:4c:aa:44:
09:7f:3e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:53 2025 by rpki-client