Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/bC43v_Yj3LgmNhwsuu2ZVkWJptA.roa
File: bC43v_Yj3LgmNhwsuu2ZVkWJptA.roa (raw, json)
Hash identifier: sI+P3pYGiCSodGaUBn8itcgDeJQc8TSEABQKMWEBs/g=
Subject key identifier: 6C:2E:37:BF:F6:23:DC:B8:26:36:1C:2C:BA:ED:99:56:45:89:A6:D0
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 07966BF7
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/bC43v_Yj3LgmNhwsuu2ZVkWJptA.roa
Signing time: Mon 07 Feb 2022 20:58:12 +0000
ROA not before: Mon 07 Feb 2022 20:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211557
IP address blocks: 45.147.47.0/24 maxlen: 24
45.141.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127298551 (0x7966bf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Feb 7 20:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c2e37bff623dcb826361c2cbaed99564589a6d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a7:2e:4c:08:54:9b:ec:e3:87:4b:eb:66:61:
69:d3:56:ae:09:b4:36:ad:4e:d9:8a:2a:c7:91:3a:
07:75:b5:66:d2:00:d6:6a:01:53:0f:89:34:6c:cf:
b5:8e:62:4f:50:3a:bb:49:32:4e:fa:3e:24:44:86:
eb:23:76:d0:ef:a7:60:90:5b:dc:7e:f8:9c:7b:f9:
ed:bf:b9:ca:a6:55:62:1b:0d:61:47:06:b8:0b:78:
b1:82:76:1b:a9:69:1f:7e:a5:1b:51:c2:c8:ea:5a:
51:90:01:24:9d:e7:44:32:24:a3:ae:52:f0:a0:36:
23:19:ca:f6:37:58:d1:fa:17:12:f2:2c:bf:95:2c:
5b:ce:7b:66:b0:4e:bf:6a:4b:88:48:87:87:84:a9:
ca:70:57:56:d1:e6:ee:5e:9e:57:88:ad:d7:8d:83:
bc:c4:cf:08:1f:d9:82:4b:dc:dd:4b:da:0e:b2:48:
90:6d:b1:1c:f6:2c:f1:80:4b:f3:dc:d2:dc:b0:62:
1b:94:53:14:8a:02:93:55:d2:df:81:31:60:b6:f7:
de:a6:e5:8b:39:35:94:a9:82:b9:03:45:35:ca:aa:
2a:63:c4:fd:f7:14:e8:11:d3:36:ca:2a:54:d7:d0:
cf:e8:3a:73:8e:5c:32:f1:6f:45:1d:77:af:8c:e5:
71:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2E:37:BF:F6:23:DC:B8:26:36:1C:2C:BA:ED:99:56:45:89:A6:D0
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/bC43v_Yj3LgmNhwsuu2ZVkWJptA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.149.0/24
45.147.47.0/24
Signature Algorithm: sha256WithRSAEncryption
53:b2:66:69:6b:d8:d0:4d:52:c5:66:ec:3d:ed:c0:61:c1:58:
fa:27:f5:01:bf:72:ab:76:0d:25:13:4a:ef:d9:ab:b9:68:ea:
64:3a:dd:5a:e0:35:6d:a0:fc:4c:1f:03:0c:89:65:63:d9:b2:
7c:57:b4:26:1a:b2:0e:4a:11:7c:3d:ca:6d:a3:b2:2e:45:48:
e2:a6:78:41:4b:79:ef:72:80:10:15:c1:5c:19:5c:62:fe:05:
5b:f1:58:97:78:e0:cb:74:fc:4c:de:cf:50:c9:0a:c8:fd:3d:
6b:14:3e:b2:f0:ce:e1:75:7c:a5:d8:4b:3a:f5:3a:bb:a4:e2:
3c:59:40:f8:6e:c8:11:c8:0a:ac:b4:27:e8:c6:e1:3a:41:74:
b0:0c:8e:3e:01:70:19:9d:0f:3a:01:4f:d7:5a:21:41:8f:cf:
48:07:5e:c7:85:4e:2c:d0:20:30:ff:ba:59:31:27:ee:a1:2f:
aa:e2:c2:f1:1b:20:5a:4b:a4:70:71:50:05:5f:0e:7d:a3:6a:
8a:a5:45:d7:db:c6:af:e1:89:e1:4e:a5:42:98:66:47:b0:04:
9b:cc:ed:37:29:bf:e8:69:4b:3f:b1:99:22:8c:17:55:05:c9:
35:83:26:5f:6b:8d:17:55:ac:0d:a4:b2:60:2c:80:a5:8e:aa:
63:87:b8:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:02 2025 by rpki-client