Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/5duJmGAMhHccRyVLAgDMJeceOTQ.roa
File: 5duJmGAMhHccRyVLAgDMJeceOTQ.roa (raw, json)
Hash identifier: KvlxiNfMlVdabsgBOCXxyMRZMDVc/gefSEv1JdqATPc=
Subject key identifier: E5:DB:89:98:60:0C:84:77:1C:47:25:4B:02:00:CC:25:E7:1E:39:34
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 087345C6
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/5duJmGAMhHccRyVLAgDMJeceOTQ.roa
Signing time: Thu 05 May 2022 13:30:42 +0000
ROA not before: Thu 05 May 2022 13:30:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 45.147.45.0/24 maxlen: 24
45.136.7.0/24 maxlen: 24
5.180.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141772230 (0x87345c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: May 5 13:30:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5db8998600c84771c47254b0200cc25e71e3934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1a:61:62:48:23:5c:57:7c:6d:3c:a2:ed:b3:
4a:21:ed:43:71:e9:dc:48:0a:ff:fc:be:42:84:c3:
c5:1d:9f:bb:b7:02:70:9e:4a:7e:b6:15:68:0a:04:
97:ff:af:a5:97:83:f7:35:d3:ba:e8:62:f2:42:4e:
95:ee:18:fe:60:4e:18:ba:66:15:a5:6d:c7:b6:d5:
51:70:f6:31:5a:b5:f3:96:db:c4:82:63:bf:fe:82:
23:96:5d:d9:73:3d:e2:d1:8b:ef:c4:84:46:27:cc:
ab:4f:b0:52:38:24:fa:f1:fa:0d:4d:72:d9:ae:25:
70:2a:8f:d9:0a:72:3f:b7:b9:4a:9b:ae:4d:e3:3b:
2e:30:e8:3c:38:08:06:47:6e:a8:34:81:ce:12:3a:
57:5f:37:e7:47:b5:f7:20:76:dd:f1:2d:0f:aa:88:
80:84:8c:7e:49:a6:89:6e:05:0f:16:c5:fe:4e:c4:
66:d5:15:42:d0:d2:a8:e5:18:9e:e9:a1:92:6c:b5:
3f:f1:e2:96:3f:e2:35:82:bd:fd:49:6c:d1:58:c2:
a5:fd:b4:2c:e2:39:fc:6a:d2:c5:5c:55:f5:19:ee:
62:b4:7d:23:64:e4:d6:ae:17:a6:b0:a8:36:e5:3a:
ca:c3:23:b4:6f:c7:36:6c:54:a2:63:2c:99:1f:81:
3c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:DB:89:98:60:0C:84:77:1C:47:25:4B:02:00:CC:25:E7:1E:39:34
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/5duJmGAMhHccRyVLAgDMJeceOTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
45.136.7.0/24
45.147.45.0/24
Signature Algorithm: sha256WithRSAEncryption
02:0f:4a:0a:55:b7:ae:b7:1c:2c:e7:b0:c3:78:90:59:30:56:
a8:08:e7:40:5a:b0:ea:43:e5:f0:58:4f:b5:06:03:11:c2:54:
c4:48:f8:63:53:9f:83:14:c1:7c:ab:84:61:ee:a6:66:bb:33:
31:11:73:5b:f2:d2:70:6d:6e:dc:e6:2b:29:7b:66:ae:69:c5:
17:a3:34:65:49:a4:07:a8:01:93:ad:86:cf:76:22:0f:79:29:
09:24:22:cd:9a:8a:4c:96:77:95:67:5a:19:85:cd:14:63:68:
cd:c9:90:d7:8e:40:ba:d5:16:60:ad:7c:be:92:70:6b:86:2f:
3b:16:32:f7:69:d4:9b:97:1b:c1:2c:87:8a:d2:39:9b:50:bb:
17:a8:f7:fe:71:9d:d7:6a:de:26:9e:6f:3d:b2:fd:2d:8e:a3:
23:01:ac:b2:fe:33:d0:f2:ed:bf:94:c5:a2:7d:e4:e1:52:22:
fd:2c:69:f3:d5:f1:59:14:03:0a:b3:80:bf:e9:cd:34:01:7d:
5e:fe:e5:7c:fb:8d:13:ea:df:50:c4:56:a0:54:6d:c4:be:be:
78:4d:6d:af:e5:e3:2c:f2:ed:f4:fa:93:96:aa:d2:3d:54:26:
22:9a:63:c1:0b:8b:85:4a:9f:36:eb:28:e0:b9:48:f2:39:4b:
ff:b5:93:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:52 2025 by rpki-client