Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/cgFbpQIWYIP7HROfJfTEr5XOunU.roa
File: cgFbpQIWYIP7HROfJfTEr5XOunU.roa (raw, json)
Hash identifier: SxtEjbd1pq592tF+iPr+kDN4RKBlFoJ4B0XYGIBKD7k=
Subject key identifier: 72:01:5B:A5:02:16:60:83:FB:1D:13:9F:25:F4:C4:AF:95:CE:BA:75
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 0187A4438601AA9A461943E70BB0B251709A
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/cgFbpQIWYIP7HROfJfTEr5XOunU.roa
Signing time: Fri 21 Apr 2023 14:41:41 +0000
ROA not before: Fri 21 Apr 2023 14:41:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.156.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a4:43:86:01:aa:9a:46:19:43:e7:0b:b0:b2:51:70:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Apr 21 14:41:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72015ba502166083fb1d139f25f4c4af95ceba75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9d:2d:0f:a4:75:3c:8c:a8:c5:c2:0a:de:a8:
6f:79:c5:2d:9b:11:e4:44:af:6a:92:9b:26:88:ba:
39:4a:74:a1:21:9a:2d:3e:90:ef:33:c6:82:e2:74:
61:fa:14:e2:0a:06:5d:8c:a1:30:75:36:fa:46:e7:
dc:9b:00:c4:c4:1d:ed:60:64:0d:e4:2e:96:7c:68:
70:38:bd:49:91:9a:60:3d:4f:47:b6:d2:50:94:d4:
55:01:aa:2e:00:19:f8:7f:b1:96:c1:60:51:e2:b6:
f6:ca:15:6b:49:90:a5:37:29:af:e0:42:54:06:64:
d4:9b:b9:66:b2:c7:12:66:fd:25:0e:e5:fc:53:42:
38:c3:e6:3a:90:3f:96:10:86:c7:e8:d3:c6:70:28:
36:be:05:a8:63:50:a2:20:04:4e:84:f4:e3:84:3f:
4c:53:2b:77:5c:8c:86:67:77:74:e3:b7:62:90:99:
e2:56:75:ac:2c:c4:f8:73:f0:ed:f7:ee:c8:4a:c6:
d3:6c:e9:72:0f:e0:73:dc:e9:b3:af:8d:27:c3:f0:
32:bf:97:80:c0:b5:17:ab:c3:24:59:71:75:a7:e9:
0b:1b:69:89:4c:e1:97:89:58:df:c6:bb:34:e1:1a:
99:43:51:83:95:78:9c:2f:1b:2f:69:52:9e:bb:29:
f4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:01:5B:A5:02:16:60:83:FB:1D:13:9F:25:F4:C4:AF:95:CE:BA:75
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/cgFbpQIWYIP7HROfJfTEr5XOunU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.144.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:a3:ac:cc:a9:6f:20:1a:5f:4d:5e:fe:ac:ec:e2:f4:0c:8c:
96:c4:d0:c1:c9:61:6e:32:af:b6:09:a8:34:1b:b7:b6:dc:a9:
ee:56:43:3d:c5:ea:41:c1:3d:21:14:7a:ff:f8:14:bb:bb:fd:
09:7b:85:ca:2b:3a:80:0c:05:03:b3:37:64:a6:30:e1:34:04:
9c:49:45:c8:e9:39:87:85:30:e9:11:38:9f:bb:77:a3:df:c0:
7e:4f:5c:a1:86:a9:68:4d:c6:9e:75:8b:f1:83:fc:2f:dd:1d:
7a:71:bf:bd:9f:d5:8b:33:5b:8b:c2:39:f4:85:8a:22:15:53:
a4:33:bb:32:7d:0c:0e:d4:28:ef:3f:32:fd:34:2d:56:bd:77:
90:59:8b:2c:26:f7:db:4f:53:ac:9b:82:e4:99:e4:ba:89:27:
2d:18:ae:ca:34:89:74:0f:ed:8b:f9:72:7e:90:a0:ee:1b:c3:
99:3d:78:c8:87:5f:81:ed:d6:ab:2c:b4:85:d3:5f:0e:e2:2d:
10:b2:1e:08:ef:fc:15:92:63:7c:e8:81:c3:a8:f4:fd:a0:0d:
2b:02:45:89:6e:76:de:da:3d:ba:d9:b8:82:84:8c:88:6c:f5:
0d:c0:80:b8:d4:92:17:20:e7:b5:d2:e9:4a:d0:66:dc:96:3a:
1c:c1:b4:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:03:28 2025 by rpki-client