Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/8zdUyLpASwC0H-a8_gopztG5h4o.roa
File: 8zdUyLpASwC0H-a8_gopztG5h4o.roa (raw, json)
Hash identifier: vCwEyHRU7BKh9U04RYuDKzOWH/jGHQekhGpEA5zSATY=
Subject key identifier: F3:37:54:C8:BA:40:4B:00:B4:1F:E6:BC:FE:0A:29:CE:D1:B9:87:8A
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 01856D78680F3FB85F3B4BCA2DAE96C3E010
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/8zdUyLpASwC0H-a8_gopztG5h4o.roa
Signing time: Sun 01 Jan 2023 13:14:45 +0000
ROA not before: Sun 01 Jan 2023 13:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 45.95.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:68:0f:3f:b8:5f:3b:4b:ca:2d:ae:96:c3:e0:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jan 1 13:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f33754c8ba404b00b41fe6bcfe0a29ced1b9878a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d2:4d:1e:c5:60:2f:b1:d5:1d:a0:d2:65:26:
eb:f9:23:37:57:6a:38:12:67:24:b0:89:ce:88:3d:
d1:72:27:71:65:e5:7b:47:10:93:3e:45:6c:cd:43:
6e:af:07:f8:b3:63:b6:d1:cf:59:19:e1:05:ca:34:
9e:dc:45:e2:33:b8:70:12:dc:20:11:d0:42:c9:58:
2a:f8:e6:00:56:a8:ca:fd:88:0e:32:bd:97:75:cf:
1c:4a:5e:ec:96:6e:e8:84:40:75:6f:f0:dd:8a:13:
91:c3:25:27:49:57:1e:b6:04:7f:e0:ae:68:05:b7:
d6:d9:25:2b:d2:b1:10:68:f4:ff:9d:88:97:63:15:
3e:d8:8c:64:66:91:7b:9c:a1:12:bc:07:c9:b1:db:
73:aa:15:ed:0a:b6:94:80:62:fc:3e:25:21:87:27:
78:cf:80:26:78:d7:42:3c:82:54:d5:c4:ec:7b:5b:
1e:fb:48:12:51:3f:eb:68:43:39:66:c8:e6:c4:9a:
49:15:ff:bc:0d:6d:bb:de:be:31:e3:0e:21:63:fb:
75:6e:7a:99:dd:72:bc:24:54:cd:5d:a4:6b:e2:2b:
9d:9e:05:ce:b8:5f:7f:5c:b0:11:c9:3b:eb:ad:47:
90:28:5b:19:08:0c:5a:1f:18:00:7e:4d:01:d6:bd:
56:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:37:54:C8:BA:40:4B:00:B4:1F:E6:BC:FE:0A:29:CE:D1:B9:87:8A
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/8zdUyLpASwC0H-a8_gopztG5h4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.212.0/24
Signature Algorithm: sha256WithRSAEncryption
28:fd:de:6b:7d:f1:d1:09:25:c6:b8:a9:d0:dd:85:ca:b9:e3:
fe:04:56:bf:b3:5a:9f:0b:6e:97:d3:21:17:af:23:99:ac:15:
26:10:fd:a5:01:44:4e:89:e4:9c:6a:42:0d:88:0d:c7:05:ca:
01:97:72:98:b0:0e:36:5e:1f:af:56:b9:3f:2b:68:4e:29:12:
80:89:15:58:11:1f:ce:30:40:e7:84:aa:f9:de:96:17:07:36:
c1:39:00:b8:9a:ba:8f:20:3b:47:f2:fc:8f:57:23:82:ba:55:
ab:2d:1d:1c:f5:78:36:fc:34:27:4a:a8:a7:72:59:7d:58:29:
0c:e8:37:67:0d:8a:fc:96:8a:4e:bb:e4:df:a4:52:1e:53:97:
1b:e3:0c:c5:ec:31:22:5b:e2:03:4a:a0:7a:49:3b:3f:fe:66:
7b:97:28:cd:73:30:76:aa:19:42:e4:fd:f0:2d:20:77:5f:72:
a7:b5:7c:26:39:d3:40:d5:32:da:ab:0f:d8:9f:d7:38:2d:78:
17:d7:d6:30:9c:ae:88:91:03:64:c8:40:e3:4e:63:c4:75:0f:
c6:94:05:14:9f:9e:10:0b:80:6c:da:b4:f1:52:79:82:06:f5:
e5:0b:9d:ee:70:59:de:5e:c9:5f:0f:4d:0e:80:09:dc:5e:15:
01:26:83:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:46:44 2025 by rpki-client