Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/7e5d60-7041-49b9-820b-fc836eb8300b/1/oA8gEkvaIZLnf-CtadMpZzVIjZw.roa
File: oA8gEkvaIZLnf-CtadMpZzVIjZw.roa (raw, json)
Hash identifier: uXUxPa+X5daPsLNl3iUWu7Lr4eevpjVVGuBQTwMRzZk=
Subject key identifier: A0:0F:20:12:4B:DA:21:92:E7:7F:E0:AD:69:D3:29:67:35:48:8D:9C
Certificate issuer: /CN=6b6b9a8241f08fff86c06e5c0ef1ecced643fef3
Certificate serial: 018E7C719FC6E5B50F3D208343461EEEA391
Authority key identifier: 6B:6B:9A:82:41:F0:8F:FF:86:C0:6E:5C:0E:F1:EC:CE:D6:43:FE:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a2uagkHwj_-GwG5cDvHsztZD_vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/7e5d60-7041-49b9-820b-fc836eb8300b/1/oA8gEkvaIZLnf-CtadMpZzVIjZw.roa
Signing time: Tue 26 Mar 2024 20:26:45 +0000
ROA not before: Tue 26 Mar 2024 20:26:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212150
IP address blocks: 45.92.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7c:71:9f:c6:e5:b5:0f:3d:20:83:43:46:1e:ee:a3:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b6b9a8241f08fff86c06e5c0ef1ecced643fef3
Validity
Not Before: Mar 26 20:26:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a00f20124bda2192e77fe0ad69d3296735488d9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8b:ca:b5:0f:91:31:3e:ed:df:17:f0:09:09:
96:52:72:4f:5d:a9:e6:50:71:45:42:c0:27:f2:7c:
fd:ef:20:26:d0:c4:bf:b1:a1:d1:e3:a3:fe:66:76:
08:75:8c:64:36:06:e5:29:44:fa:70:ee:a7:1f:61:
74:e4:ec:a5:2f:fb:0f:39:00:56:b6:02:01:df:9b:
e6:cf:cd:e9:50:89:e5:22:f3:fd:6e:67:d4:77:0e:
81:d2:c6:ff:08:28:e4:0f:61:2e:e9:23:78:fd:f9:
0e:08:f1:11:0f:96:0b:6b:26:06:21:e6:aa:16:68:
22:17:fb:b8:fe:4d:18:11:06:1a:af:a4:bd:a0:b4:
0b:f9:58:8a:6a:32:3d:3f:37:b4:5a:fe:7c:ba:dc:
fc:e0:3e:a1:b4:bd:d6:2d:7b:bf:df:ff:17:26:b3:
31:98:cc:06:32:9e:60:c8:5d:60:9d:bc:68:06:8e:
e3:fa:20:ad:63:1e:72:cb:56:ea:cb:25:87:84:0d:
42:44:24:b0:f4:e4:93:e0:f6:8d:de:15:cc:e7:bd:
cd:06:8b:6d:33:45:e5:4b:be:35:85:c7:23:44:f2:
ec:e7:f3:60:13:9b:a5:70:01:58:84:53:85:3f:ae:
26:09:b1:28:a4:98:ba:20:4d:2a:24:10:fe:a3:ae:
43:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:0F:20:12:4B:DA:21:92:E7:7F:E0:AD:69:D3:29:67:35:48:8D:9C
X509v3 Authority Key Identifier:
keyid:6B:6B:9A:82:41:F0:8F:FF:86:C0:6E:5C:0E:F1:EC:CE:D6:43:FE:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2uagkHwj_-GwG5cDvHsztZD_vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/7e5d60-7041-49b9-820b-fc836eb8300b/1/oA8gEkvaIZLnf-CtadMpZzVIjZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/7e5d60-7041-49b9-820b-fc836eb8300b/1/a2uagkHwj_-GwG5cDvHsztZD_vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.77.0/24
Signature Algorithm: sha256WithRSAEncryption
64:05:a0:f8:18:fc:9f:f1:e4:c6:c1:af:e6:c9:c8:5e:e2:e9:
a7:f1:ca:42:68:8f:ef:3b:93:37:b3:15:63:a8:8b:dd:69:85:
91:55:7e:af:90:76:76:10:27:cc:86:82:ed:b5:a5:34:8a:77:
c0:de:73:d3:ee:15:10:92:40:a4:9f:c2:42:36:39:47:3a:79:
c5:6a:eb:83:5b:5c:d6:db:15:89:24:fc:92:fa:e3:35:81:fc:
c3:c6:b5:18:20:b5:71:06:88:71:18:21:7a:36:e6:af:56:8e:
af:f6:22:90:cf:83:6e:e2:71:55:6f:94:a7:c5:4e:b2:bb:5a:
04:51:56:88:07:6e:e6:bd:3a:ef:78:ad:2c:73:aa:84:90:a2:
0c:92:c1:5b:fd:33:67:9b:4f:ac:65:96:f3:56:46:6c:00:ec:
26:55:fa:a0:db:67:b6:48:58:44:c1:83:dd:79:a7:03:44:ff:
34:a6:b7:ed:ee:7f:6d:9b:d8:7c:f1:3a:5c:35:39:b8:43:e0:
3d:88:05:0c:ce:80:c7:38:d4:59:a0:54:ba:19:bc:90:b4:30:
26:59:53:72:84:4e:ec:43:68:20:37:9a:53:9b:f6:62:bb:6b:
cd:8e:12:ae:05:f6:20:3a:8b:a1:0a:a2:2f:dc:7f:3c:40:e8:
b4:9a:fb:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:59:17 2025 by rpki-client