Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/hXrvNHcaNo7IgK5p0QRPmKzfBgM.roa
File: hXrvNHcaNo7IgK5p0QRPmKzfBgM.roa (raw, json)
Hash identifier: mzzImArX61U2u17eRQlcRaHXlSuhA3sNV/cAdWzlatA=
Subject key identifier: 85:7A:EF:34:77:1A:36:8E:C8:80:AE:69:D1:04:4F:98:AC:DF:06:03
Certificate issuer: /CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Certificate serial: 06DA9BC2
Authority key identifier: 1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/hXrvNHcaNo7IgK5p0QRPmKzfBgM.roa
Signing time: Wed 11 May 2022 06:31:01 +0000
ROA not before: Wed 11 May 2022 06:31:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 45.146.160.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114990018 (0x6da9bc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Validity
Not Before: May 11 06:31:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=857aef34771a368ec880ae69d1044f98acdf0603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d6:64:a5:1b:08:be:e7:b3:4d:3c:d7:51:85:
3a:99:04:4e:a5:ab:18:af:c6:a7:75:12:da:8c:53:
1a:11:d2:82:57:02:a2:4c:f7:cd:92:4e:1e:6d:6d:
c0:d6:ab:82:3e:b2:33:ed:3c:29:2e:5c:bf:e8:c7:
5e:32:f0:00:88:1a:4d:06:02:5d:8e:3a:c6:d2:05:
4a:50:b2:a0:83:61:b3:f9:52:74:f3:58:d8:67:f0:
02:27:73:70:7c:75:4b:98:3a:0c:13:6a:fd:84:e7:
da:f9:6a:75:38:66:1e:2a:e4:ba:c2:5b:32:c0:47:
94:57:b9:d1:33:c6:a5:14:01:94:9a:69:71:95:66:
62:ec:20:d6:6f:cc:e3:44:8e:8e:17:d6:55:06:b3:
89:4e:41:ae:d5:f4:39:ac:02:94:12:c7:64:e9:c6:
55:31:bc:59:ba:df:07:72:fb:b9:62:ee:60:d3:a8:
7a:8d:ac:29:7b:8c:08:15:50:78:b9:e2:15:89:cf:
fa:10:c2:38:95:9a:4d:69:51:8f:0a:75:c6:8d:5a:
04:f4:f5:f3:b6:b1:94:4f:b5:2c:5b:6c:6d:57:cc:
4a:99:a3:dd:4c:0b:ae:9b:0b:7e:ca:92:a9:4a:6d:
c1:5a:84:ef:eb:db:24:47:95:6e:07:fa:40:50:e1:
40:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7A:EF:34:77:1A:36:8E:C8:80:AE:69:D1:04:4F:98:AC:DF:06:03
X509v3 Authority Key Identifier:
keyid:1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/hXrvNHcaNo7IgK5p0QRPmKzfBgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/HVrzriH5fsTsddUahaPhYu16ntc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.160.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f6:76:c7:d2:36:17:2e:d0:3b:1e:b0:af:22:98:8b:40:92:
dc:8b:4f:dc:59:ee:91:34:ca:22:9c:37:65:4b:f5:71:8f:c8:
03:e8:b7:69:4f:78:6e:c3:cd:92:85:69:48:a8:86:34:7e:11:
12:8a:6e:6c:21:ed:d4:fd:fa:0b:af:bf:39:57:00:95:64:6c:
ba:26:7a:f9:42:f3:12:5f:9d:12:f3:86:d2:8e:b8:69:14:2d:
17:61:0e:bd:6b:96:90:02:35:e5:99:9f:74:63:14:6b:0b:72:
47:59:b9:ea:15:a1:a3:5b:eb:f1:ee:f3:fe:cd:5b:dd:b0:63:
6d:e5:19:cd:1d:e6:78:75:8c:cb:50:9e:28:bc:17:06:92:27:
f5:25:87:3e:19:9c:78:a0:81:08:bd:e1:77:9f:68:53:8a:02:
d4:d9:ae:9f:f3:bf:c2:57:71:e4:ce:5d:9f:9b:78:96:29:d9:
f2:d6:ee:36:02:b9:23:d7:12:5c:51:4b:0f:7f:4f:0a:13:49:
cf:86:ba:45:4f:d0:13:a6:c4:33:df:cf:4c:76:de:8a:87:cc:
82:30:40:ae:38:3a:22:26:e3:1f:de:fd:2f:7a:87:d0:9d:db:
8e:9e:c9:19:be:23:eb:76:ae:4d:11:74:7e:95:5c:49:34:c2:
56:ea:b1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:39 2025 by rpki-client