Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/cbd3e2-39bd-43bd-a2ee-0fe07e2100b4/1/j415gM4UNyaEs4D_2enJKR53QYg.roa
File: j415gM4UNyaEs4D_2enJKR53QYg.roa (raw, json)
Hash identifier: 0Es+L+MOw5nBUNNzqUXVV7NAXQwUbuuomIjDBqhqinU=
Subject key identifier: 8F:8D:79:80:CE:14:37:26:84:B3:80:FF:D9:E9:C9:29:1E:77:41:88
Certificate issuer: /CN=952879533d71204ec6c8c3ea217ac5165a576f59
Certificate serial: 073A0952
Authority key identifier: 95:28:79:53:3D:71:20:4E:C6:C8:C3:EA:21:7A:C5:16:5A:57:6F:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSh5Uz1xIE7GyMPqIXrFFlpXb1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/cbd3e2-39bd-43bd-a2ee-0fe07e2100b4/1/j415gM4UNyaEs4D_2enJKR53QYg.roa
Signing time: Sat 01 Jan 2022 15:58:32 +0000
ROA not before: Sat 01 Jan 2022 15:58:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44285
IP address blocks: 45.156.180.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121243986 (0x73a0952)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=952879533d71204ec6c8c3ea217ac5165a576f59
Validity
Not Before: Jan 1 15:58:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f8d7980ce14372684b380ffd9e9c9291e774188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:08:d8:d9:07:3e:f7:88:de:42:24:55:2d:d3:
17:75:dd:82:5b:7f:dd:c3:d8:c8:ee:07:6e:eb:1c:
64:8e:91:d0:49:10:fb:78:07:d8:25:c9:73:34:b2:
0b:44:63:e3:05:81:e8:83:46:9d:ec:cb:5c:b0:23:
8d:a3:31:1f:ae:4a:d7:14:cc:60:bf:ed:1c:8c:98:
6b:0e:1a:39:09:0b:cc:ee:54:e5:bc:eb:f0:b3:69:
44:85:eb:25:94:d9:91:56:08:87:48:7c:c4:a3:4a:
82:4c:a8:f1:6a:9b:60:35:90:cd:ad:d7:ee:dd:77:
c4:65:35:d5:b1:b4:ae:b7:c1:c7:9b:19:c8:2d:ff:
03:db:a5:79:d6:87:b4:b0:97:6b:c9:07:43:9b:99:
6d:0d:08:18:82:51:10:40:55:94:cb:cd:01:bc:88:
8b:4a:83:dc:47:4c:8f:16:11:64:13:32:9b:89:ea:
37:0c:37:fc:c4:ad:1a:a7:17:96:ca:21:62:70:dd:
86:f0:2f:5a:ef:7c:cb:ee:83:21:cd:9c:da:a7:2f:
f0:a4:fa:b8:4f:b3:b1:d8:a1:a4:3d:c4:34:10:8f:
98:47:9b:09:36:0f:18:19:be:2f:24:01:5d:ea:b8:
a4:fc:8e:97:04:df:ba:71:5c:78:82:52:b0:24:cd:
da:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:8D:79:80:CE:14:37:26:84:B3:80:FF:D9:E9:C9:29:1E:77:41:88
X509v3 Authority Key Identifier:
keyid:95:28:79:53:3D:71:20:4E:C6:C8:C3:EA:21:7A:C5:16:5A:57:6F:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSh5Uz1xIE7GyMPqIXrFFlpXb1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cbd3e2-39bd-43bd-a2ee-0fe07e2100b4/1/j415gM4UNyaEs4D_2enJKR53QYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cbd3e2-39bd-43bd-a2ee-0fe07e2100b4/1/lSh5Uz1xIE7GyMPqIXrFFlpXb1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.180.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:7a:6b:36:19:76:61:47:18:25:c5:ba:42:d4:16:6f:a4:52:
c4:66:00:2d:0c:cf:d7:18:68:54:a0:c8:ec:5e:4a:cb:ff:8c:
f1:cc:03:59:54:03:56:14:0d:2a:51:66:40:a7:9e:8d:6e:f2:
79:7c:b9:68:ec:ba:80:e0:54:cf:e6:a0:d2:ac:20:a1:e5:40:
a8:58:d6:dd:85:77:c4:c9:fc:24:d4:f2:97:42:5e:e2:cf:b9:
3b:7b:6f:a2:7f:bd:42:9f:af:ba:ec:e0:44:3e:0e:93:2b:83:
a3:95:3c:bf:64:b0:94:32:19:f5:34:8a:e7:d3:df:50:ab:5c:
a2:e8:1f:15:1d:67:72:49:24:52:66:5d:b1:d1:86:0f:ee:68:
17:e7:b8:ea:9c:8d:c6:ce:df:34:c5:87:ee:17:13:c2:1d:fa:
ad:bd:2b:9f:bf:99:4f:16:2c:4d:b4:f3:2d:3d:ae:ad:84:4e:
f7:c3:71:35:81:92:d9:ad:37:33:e8:e4:0f:9f:dc:4f:d5:23:
78:7a:7a:24:ee:ff:d9:52:32:5a:5e:53:8f:d3:59:66:b5:eb:
cf:be:ca:c9:3c:97:10:c2:47:8b:98:b9:5d:bb:2e:f9:3a:96:
2c:16:dd:ed:f9:b5:f5:04:de:5a:f5:cb:ae:b7:92:d3:d4:42:
e1:c8:bf:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:10:26 2025 by rpki-client