Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/57e624-db04-4ee4-a3d3-7df68541d9b8/1/pVXrYQL03xo0DAjJxHzbP7Ior80.roa
File: pVXrYQL03xo0DAjJxHzbP7Ior80.roa (raw, json)
Hash identifier: qX41Nxd8nY8Eo9KH3zYtPZKW+Uh7fBYoQOJMLqIuFeE=
Subject key identifier: A5:55:EB:61:02:F4:DF:1A:34:0C:08:C9:C4:7C:DB:3F:B2:28:AF:CD
Certificate issuer: /CN=d2b5f9cdbf9838ed8705f533ab7b23ab25b5a56f
Certificate serial: 0749B35E
Authority key identifier: D2:B5:F9:CD:BF:98:38:ED:87:05:F5:33:AB:7B:23:AB:25:B5:A5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rX5zb-YOO2HBfUzq3sjqyW1pW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/57e624-db04-4ee4-a3d3-7df68541d9b8/1/pVXrYQL03xo0DAjJxHzbP7Ior80.roa
Signing time: Sat 01 Jan 2022 08:57:04 +0000
ROA not before: Sat 01 Jan 2022 08:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41114
IP address blocks: 45.157.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122270558 (0x749b35e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2b5f9cdbf9838ed8705f533ab7b23ab25b5a56f
Validity
Not Before: Jan 1 08:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a555eb6102f4df1a340c08c9c47cdb3fb228afcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:48:43:5b:b9:a5:81:7b:2d:ca:0f:fe:40:c2:
35:bc:e3:8d:69:bd:14:f7:13:d2:22:14:a0:52:ef:
61:d8:d7:5e:01:5a:6f:7e:3f:4c:ae:bc:0c:ea:e9:
c1:0b:59:8e:8f:91:7f:4f:fb:b7:23:4d:01:22:3f:
4e:02:5f:26:19:db:d5:32:99:e6:2c:b8:39:e7:02:
73:55:7d:1f:cf:41:93:12:97:8b:58:2d:bb:19:49:
57:e5:f3:35:17:d7:75:dc:db:77:58:e0:d5:22:4c:
4d:82:be:5d:23:b6:f4:d7:cc:68:89:26:ec:4e:48:
4b:58:fa:36:f0:f9:0f:56:15:86:24:33:66:e6:c5:
47:55:0f:f7:08:da:67:74:65:9d:9a:31:c2:91:07:
e9:39:66:c9:03:05:58:76:30:b6:74:d9:5a:01:9a:
af:ce:12:91:51:d6:9a:7e:7c:6a:60:e7:c8:cb:78:
e8:97:59:10:55:f7:fe:45:b4:10:b1:60:2e:fc:08:
36:36:34:f4:7c:56:97:69:8c:f0:eb:22:2e:cd:1b:
f8:b1:16:12:82:6a:3e:56:b3:79:7d:72:9b:c4:e4:
2b:e6:41:0b:fe:81:14:85:c3:59:86:a0:47:f5:cf:
5f:d0:41:2f:c2:c4:f6:43:0f:4f:90:6d:c5:dc:1d:
96:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:55:EB:61:02:F4:DF:1A:34:0C:08:C9:C4:7C:DB:3F:B2:28:AF:CD
X509v3 Authority Key Identifier:
keyid:D2:B5:F9:CD:BF:98:38:ED:87:05:F5:33:AB:7B:23:AB:25:B5:A5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rX5zb-YOO2HBfUzq3sjqyW1pW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/57e624-db04-4ee4-a3d3-7df68541d9b8/1/pVXrYQL03xo0DAjJxHzbP7Ior80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/57e624-db04-4ee4-a3d3-7df68541d9b8/1/0rX5zb-YOO2HBfUzq3sjqyW1pW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.248.0/22
Signature Algorithm: sha256WithRSAEncryption
56:50:cc:3e:3b:61:61:a8:52:de:04:e1:ce:64:19:5b:89:60:
38:c9:93:aa:86:a6:66:37:5f:68:f9:d1:0f:c9:d7:fc:e1:61:
ba:40:49:06:fe:e8:d6:9d:cb:a8:d6:37:dc:8a:80:25:f7:38:
18:c4:04:d2:7e:05:da:31:e2:7b:0f:52:2b:4f:fc:9a:b8:be:
98:2f:cc:6b:d6:17:1f:42:18:a1:b8:e2:ab:b2:75:ea:a7:29:
da:1b:d4:75:e1:cc:f4:9d:b6:01:dc:c7:15:f5:3e:f3:ef:c0:
b9:88:a1:87:f7:5b:f2:27:19:02:b4:67:29:7a:87:95:0e:65:
d1:f9:15:d8:15:5d:23:56:76:cc:95:cc:dd:0d:01:42:f9:b7:
e3:95:02:4c:ff:b0:59:d0:4a:64:4c:3f:18:d6:e6:98:c7:68:
b2:2b:94:f1:44:09:52:44:3d:04:c3:46:67:68:f3:d5:4c:ea:
e8:16:30:d7:65:54:07:27:83:d3:09:f3:41:81:55:cd:33:33:
ac:e0:19:dc:f9:aa:7d:00:2a:af:73:43:0f:46:b7:8f:b0:26:
25:ba:a4:33:61:05:5d:10:7a:97:e9:97:b2:93:57:40:31:5b:
ca:46:aa:7c:2d:80:34:db:b0:23:2e:b0:30:3d:39:21:bb:a3:
43:d5:12:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:03:03 2025 by rpki-client