Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/e0nDnsOLrPdyn4NXIaEo7sEBjy8.roa
File: e0nDnsOLrPdyn4NXIaEo7sEBjy8.roa (raw, json)
Hash identifier: T4opEF7Q0ApkGwquQf6ONKYZv/3pmIKSJmTqCrWA2MA=
Subject key identifier: 7B:49:C3:9E:C3:8B:AC:F7:72:9F:83:57:21:A1:28:EE:C1:01:8F:2F
Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Certificate serial: 01856D01D1A450EB3383652AECE5E5886C96
Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/e0nDnsOLrPdyn4NXIaEo7sEBjy8.roa
Signing time: Sun 01 Jan 2023 11:05:13 +0000
ROA not before: Sun 01 Jan 2023 11:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205405
IP address blocks: 145.14.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:d1:a4:50:eb:33:83:65:2a:ec:e5:e5:88:6c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Validity
Not Before: Jan 1 11:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b49c39ec38bacf7729f835721a128eec1018f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1c:ae:24:df:a3:90:b9:eb:26:22:74:e6:7c:
2e:f5:d2:36:c9:36:fb:12:e2:d3:2b:71:c7:fa:e0:
20:7f:a6:8d:ef:5b:c5:f6:31:4f:bd:69:0a:cf:a4:
a5:93:c9:a4:fd:ab:68:68:fd:03:e0:49:87:1e:0d:
6c:6e:3c:a8:a2:5f:94:02:21:48:74:c9:10:e1:59:
21:d0:36:b2:7e:4c:a0:97:b0:95:b9:50:33:38:b2:
c1:9c:ab:68:a2:9b:21:79:02:66:ff:f4:6e:5f:62:
7b:bb:b7:49:d8:fe:aa:a6:41:22:25:c4:fc:05:cb:
e1:2d:d9:c3:52:d9:e0:9d:38:bc:08:77:70:41:c5:
68:47:3f:12:4f:dc:8f:17:d2:a8:08:fa:27:e0:6e:
9b:70:9b:05:41:fa:81:05:c0:6e:95:eb:a2:c8:c1:
d7:3a:41:3e:f4:11:f6:d3:16:0e:90:a3:34:24:ad:
90:55:62:6a:6b:a8:7a:a9:2b:65:c4:49:a7:ac:63:
42:b1:19:52:01:30:b6:22:4c:e3:38:a9:91:f2:fd:
b7:39:2a:42:00:47:5d:7c:3f:73:5e:f2:ed:5a:01:
de:3f:44:49:72:ee:ed:f6:6c:78:a8:01:26:72:07:
db:7d:eb:09:e8:b0:07:dc:19:2a:18:ed:b0:f5:dd:
15:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:49:C3:9E:C3:8B:AC:F7:72:9F:83:57:21:A1:28:EE:C1:01:8F:2F
X509v3 Authority Key Identifier:
keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/e0nDnsOLrPdyn4NXIaEo7sEBjy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.14.4.0/24
Signature Algorithm: sha256WithRSAEncryption
66:d2:32:df:fb:c3:09:2a:33:7a:c6:bf:be:aa:c8:1c:90:9a:
80:b0:41:49:9a:94:ff:46:5a:9a:10:c6:21:81:f1:ed:5f:ef:
e3:32:fb:5d:93:f0:9d:27:be:da:ce:23:de:a8:5f:b7:23:5c:
eb:75:ba:bb:8f:e3:a2:03:89:82:f3:7f:fa:44:df:06:3c:ed:
37:82:70:c6:cd:71:e6:e2:93:69:07:e3:d0:ec:93:4b:a7:be:
af:09:4a:49:4b:74:35:86:68:46:94:b1:ef:8b:dd:cf:26:1c:
ef:ff:fe:0c:aa:72:07:aa:b8:09:25:fb:fa:eb:78:d0:26:fb:
ee:da:30:c7:6a:77:db:01:26:37:68:4c:73:69:ad:b4:a2:80:
7c:69:ed:99:90:87:c5:3f:ed:79:b0:77:79:c2:45:dc:75:aa:
75:85:7f:39:b5:47:55:c2:cf:cb:8d:5c:10:fa:7c:e1:f3:4f:
21:14:85:16:aa:1c:d9:9d:39:76:65:3e:8d:6c:46:2c:da:69:
3a:cb:8e:9c:8f:1f:0f:50:96:44:b0:82:55:07:b1:05:02:2d:
fe:2a:65:6c:4f:63:47:24:1c:84:66:5f:ef:c6:59:54:b9:3c:
c1:07:c0:a8:e8:8d:a9:70:f3:22:d1:39:da:36:75:69:68:4f:
c6:be:0e:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:41:45 2025 by rpki-client