Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/8w7sh7kPr7cNfCXDINecFZ9OZ6o.roa
File: 8w7sh7kPr7cNfCXDINecFZ9OZ6o.roa (raw, json)
Hash identifier: GrafIp8+FGxgqIEl9HMR6Gne28PniznpZeiyhhnDdYE=
Subject key identifier: F3:0E:EC:87:B9:0F:AF:B7:0D:7C:25:C3:20:D7:9C:15:9F:4E:67:AA
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 0760E056
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/8w7sh7kPr7cNfCXDINecFZ9OZ6o.roa
Signing time: Mon 17 Jan 2022 08:37:08 +0000
ROA not before: Mon 17 Jan 2022 08:37:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 45.131.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123789398 (0x760e056)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jan 17 08:37:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f30eec87b90fafb70d7c25c320d79c159f4e67aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:18:a5:8d:68:0e:f4:aa:2b:d5:31:5b:23:41:
1f:1b:d4:18:51:f4:70:45:e7:88:6a:67:0d:d0:fd:
a8:04:03:e0:40:4a:4b:3f:0d:3b:90:c4:64:86:28:
bc:0c:c3:af:bf:c0:7f:39:78:2f:c7:f8:48:ca:57:
ae:b6:77:78:1b:3b:b0:fa:2c:29:19:48:5a:b7:e5:
13:41:96:49:76:eb:fe:e8:4d:44:5e:3e:23:c6:e9:
95:b5:79:eb:fe:a0:28:c0:ca:dc:7c:a6:2b:b8:82:
d2:9c:a3:a5:55:8f:d3:b5:2c:8b:62:9d:c3:ca:be:
6b:b6:38:43:82:d9:b1:93:53:eb:72:57:6c:6d:a2:
3b:26:27:2a:fb:60:92:7e:3d:c0:44:7c:f6:2b:74:
71:01:9a:91:ca:bf:a1:88:65:6e:89:0a:cc:6c:7d:
fb:39:df:25:5d:4e:81:5a:26:41:cd:b2:ec:05:8d:
91:6e:2a:15:b0:d6:fc:8d:18:c6:6c:3b:dc:3a:80:
51:b5:ea:87:e9:d3:e1:d9:81:c7:64:c1:23:4d:0f:
4f:98:86:8b:80:41:02:f5:be:e0:e1:b7:16:c3:37:
3e:5c:20:db:fc:05:8f:d7:f8:ae:d3:8d:d5:5b:ce:
fc:fd:46:1d:fd:5a:7f:9a:d9:a1:1f:18:20:ad:07:
d9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0E:EC:87:B9:0F:AF:B7:0D:7C:25:C3:20:D7:9C:15:9F:4E:67:AA
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/8w7sh7kPr7cNfCXDINecFZ9OZ6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.2.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ea:83:16:36:b3:b6:68:73:19:c2:59:93:f3:8c:c2:37:36:
40:c6:18:f8:29:df:49:c8:d4:55:3e:e1:4f:21:bf:e7:17:70:
63:14:29:23:0f:6b:f9:7c:c8:1c:4e:87:48:5c:f0:27:23:14:
af:35:e0:02:c1:10:09:85:51:05:1d:d2:68:2d:bf:b9:6e:41:
32:db:7e:aa:4f:9d:bc:ee:71:47:47:35:f6:b9:9f:ea:80:34:
ee:e5:6e:b9:bf:29:13:9d:5f:3e:86:0b:ff:b6:85:4f:2b:73:
66:75:bf:22:03:1a:11:21:eb:cd:2f:a6:8a:e0:23:44:70:6a:
5d:b9:c6:4a:79:71:16:f2:83:e7:05:89:cc:e1:65:9b:6e:aa:
f8:c7:d6:a5:87:0e:83:2f:a3:2e:a2:9d:2c:15:71:b9:6e:41:
c7:0e:5c:9d:9c:69:b3:3a:fe:3c:24:42:fc:e8:db:9e:87:82:
c2:4c:d7:3a:0f:e8:08:b1:43:d7:32:33:9c:16:c2:bf:9c:cf:
50:a7:cf:0b:48:68:52:23:0b:1d:ae:e1:f2:d8:27:8b:8f:dd:
5b:dd:27:9e:10:62:51:eb:f3:08:e8:c8:c7:7b:b5:c5:e9:5d:
9d:f1:17:7f:f2:d4:43:17:54:03:e2:f1:a5:6f:b8:a5:cb:db:
7a:5f:11:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:43:16 2025 by rpki-client