Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/lfVPdlK0JbI8S4Vywp0RJ2Nj1To.roa
File: lfVPdlK0JbI8S4Vywp0RJ2Nj1To.roa (raw, json)
Hash identifier: Q8UNS53bFN8IF1xVq2mqON/U4pLDe0pLcLUtdxa2iIM=
Subject key identifier: 95:F5:4F:76:52:B4:25:B2:3C:4B:85:72:C2:9D:11:27:63:63:D5:3A
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 019427487C82ACEED53C5F43C1078B18D941
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/lfVPdlK0JbI8S4Vywp0RJ2Nj1To.roa
Signing time: Thu 02 Jan 2025 13:50:49 +0000
ROA not before: Thu 02 Jan 2025 13:50:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 45.140.152.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:7c:82:ac:ee:d5:3c:5f:43:c1:07:8b:18:d9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 13:50:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=95f54f7652b425b23c4b8572c29d11276363d53a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:53:ba:54:05:da:11:40:44:7a:83:58:94:d9:
da:b3:fc:7d:bb:88:6a:1a:68:51:82:b4:56:70:54:
ad:66:76:65:ea:26:90:30:37:3a:fd:96:e1:5b:2c:
7e:d4:cb:88:71:be:76:7d:f5:38:be:d3:cd:1a:8c:
30:1f:20:92:97:db:56:bc:92:36:5f:f1:4f:3c:ce:
7a:ac:00:38:5d:e1:93:e4:09:61:eb:eb:34:d6:a7:
8f:be:e1:ba:bb:bf:bd:35:41:1c:48:30:56:3a:0a:
a6:d2:b8:ed:a9:f0:36:dd:60:0d:13:d8:77:e3:19:
fc:17:39:73:2e:9a:a2:6f:37:11:e1:b9:e7:c8:c6:
b0:5d:00:a5:bd:d8:b6:0e:03:c3:a4:da:48:4c:94:
e4:12:09:44:5f:21:43:04:ee:50:a5:23:16:fe:f0:
62:f0:ee:68:03:5f:c0:0f:d7:a1:96:92:2c:bd:ff:
a6:d3:3b:ec:6d:b0:50:f0:c0:67:e4:aa:aa:b3:77:
da:8d:91:ec:5f:01:5d:e3:ef:04:28:f3:48:b6:2e:
61:39:b6:02:af:a7:12:57:10:a4:9b:42:cc:18:5d:
c9:87:94:ea:63:9e:fc:f0:06:0d:cd:d1:02:dd:e5:
0b:53:80:92:a4:e4:f9:2c:2c:2a:0a:6f:35:de:c8:
45:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:F5:4F:76:52:B4:25:B2:3C:4B:85:72:C2:9D:11:27:63:63:D5:3A
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/lfVPdlK0JbI8S4Vywp0RJ2Nj1To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.152.0/22
Signature Algorithm: sha256WithRSAEncryption
22:d1:df:d3:3f:45:55:31:26:03:3b:3e:4b:00:d0:8a:03:85:
65:99:86:33:dc:ad:61:5a:3d:e4:d9:8e:94:48:36:9a:f2:46:
18:60:c0:f4:a4:0f:c2:7d:4e:bb:bd:3e:ae:9c:c8:59:04:03:
8e:fe:81:77:23:6a:36:55:c3:fa:50:5d:62:a2:18:59:ff:06:
50:ad:54:d1:7a:69:04:1b:0b:eb:f5:b1:95:1d:e9:3b:5b:88:
15:6c:60:f7:12:a4:86:73:8c:5e:3d:2b:eb:18:a8:d1:0a:94:
7c:77:19:8b:48:14:48:fa:3d:46:35:30:a6:ae:5c:60:09:97:
4a:83:99:dc:e7:c1:75:02:52:c2:af:24:ec:65:e6:d8:43:9d:
db:de:38:d2:3e:1d:d3:b6:e9:db:95:4d:59:14:fa:f5:bf:d5:
2e:8e:e5:9b:d3:59:20:a4:ca:71:08:20:a3:6c:69:d9:bb:23:
5d:61:0b:77:3f:34:ff:cd:a8:ab:e5:fb:c6:48:04:41:23:29:
d1:94:c2:a3:24:a4:87:ea:df:85:ee:7d:61:66:d6:ce:f4:10:
cc:0f:06:84:65:75:0c:e7:ec:0e:b1:e0:db:fe:3b:fa:7b:4a:
24:1d:3d:86:e0:36:d7:39:c5:15:00:47:e2:86:43:99:51:91:
99:24:ac:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:55:36 2025 by rpki-client