Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/tkZvDHKtSmiHTcCsRmUJjh5Mwe4.roa
File: tkZvDHKtSmiHTcCsRmUJjh5Mwe4.roa (raw, json)
Hash identifier: NaGhCfa1EWF5hiu/imRsudJDHYSos5FCLiJIedU8aNM=
Subject key identifier: B6:46:6F:0C:72:AD:4A:68:87:4D:C0:AC:46:65:09:8E:1E:4C:C1:EE
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 0404E837
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/tkZvDHKtSmiHTcCsRmUJjh5Mwe4.roa
Signing time: Sat 01 Jan 2022 08:03:31 +0000
ROA not before: Sat 01 Jan 2022 08:03:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 45.95.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67430455 (0x404e837)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jan 1 08:03:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6466f0c72ad4a68874dc0ac4665098e1e4cc1ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:24:b2:e1:74:9a:22:fa:2c:25:0e:9b:f5:20:
f7:18:a0:be:eb:d2:d3:fc:49:1e:f9:49:73:9a:ea:
0f:74:fa:2c:fc:8d:67:e1:d9:cc:b2:d0:2a:c9:07:
85:b2:b3:80:28:b5:64:93:39:29:6d:82:3e:17:03:
26:ab:26:03:73:b0:92:db:98:94:ff:81:0c:e7:48:
4f:15:51:c8:c3:1f:ef:64:fb:d8:11:63:95:2a:6d:
3a:e0:ed:01:1c:40:78:19:c0:72:09:3f:37:ff:ea:
6d:94:94:16:fc:24:98:3f:f6:76:1f:79:06:d1:a6:
d8:04:06:4f:f2:4f:e6:96:e5:96:ba:ee:06:bb:c9:
5c:52:fc:c0:29:07:f9:cc:c4:06:24:2e:71:64:38:
9b:ea:f9:02:f9:35:3d:9a:12:42:36:1d:f3:e1:0e:
be:5b:aa:b2:e2:5d:dc:5f:bf:0b:e3:6b:3e:c2:85:
e1:68:5c:4d:4b:83:cb:64:70:bb:7a:a6:a7:43:4b:
5d:f3:7e:6f:ce:51:f7:0c:82:83:73:1d:bb:4a:48:
d4:29:59:f9:1d:b4:d2:a9:6e:d6:12:77:54:63:f5:
b2:fa:ed:04:d0:f5:26:44:1a:e3:b6:38:2f:31:89:
d1:53:cf:da:51:4d:9d:63:40:2a:ec:8a:11:6a:51:
41:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:46:6F:0C:72:AD:4A:68:87:4D:C0:AC:46:65:09:8E:1E:4C:C1:EE
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/tkZvDHKtSmiHTcCsRmUJjh5Mwe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.212.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:28:5e:e7:a4:7a:30:56:cd:f3:2c:95:37:28:d3:71:e6:74:
87:2f:54:24:a9:5d:c3:2b:70:7a:19:86:bf:e2:99:98:f3:94:
43:c0:76:60:cd:cf:65:85:be:47:3d:8c:67:cc:19:58:d4:9f:
71:b9:66:3a:a4:49:75:bc:92:67:60:74:65:e6:b1:64:64:dc:
2e:dd:0e:f2:a5:40:84:95:93:bb:95:df:94:10:69:90:05:db:
12:4b:80:dc:e9:54:d9:79:b0:fa:ff:ac:4d:29:91:2f:f6:be:
0b:a4:64:b1:37:4b:96:da:82:61:41:8d:e7:67:b0:35:e9:33:
07:1d:9b:4b:9d:c3:70:46:41:f9:38:94:6b:2f:2d:01:f9:23:
46:44:82:49:e6:8b:84:dc:05:90:e2:12:95:f6:19:ac:3f:29:
c6:51:e7:fa:ad:9e:df:9f:ed:ca:9f:86:24:22:9e:cd:ca:ec:
37:37:42:8e:93:b8:bc:2a:f0:ec:f8:24:4d:13:14:79:82:9f:
fa:93:20:e4:33:fb:e8:2e:2b:0c:7d:d4:f3:d9:e2:8f:d8:92:
7a:89:96:0e:f4:8b:ee:22:82:20:e3:ed:a1:08:94:79:a7:ad:
55:88:bf:e5:ff:dc:b6:8c:e4:7a:52:07:37:71:20:a4:ce:ea:
85:57:90:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:05 2025 by rpki-client