Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/2Fa9I4eMPzfo939SHVylXbzPrz8.roa
File: 2Fa9I4eMPzfo939SHVylXbzPrz8.roa (raw, json)
Hash identifier: nGUhV51P4Xt7y4WWujwqar1e4qSQSqC/VceFTeZqU6Y=
Subject key identifier: D8:56:BD:23:87:8C:3F:37:E8:F7:7F:52:1D:5C:A5:5D:BC:CF:AF:3F
Certificate issuer: /CN=83286fa6da7d252e7828f84923f55919142b007f
Certificate serial: 0194258F758386550276F00735324888D326
Authority key identifier: 83:28:6F:A6:DA:7D:25:2E:78:28:F8:49:23:F5:59:19:14:2B:00:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyhvptp9JS54KPhJI_VZGRQrAH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/2Fa9I4eMPzfo939SHVylXbzPrz8.roa
Signing time: Thu 02 Jan 2025 05:49:06 +0000
ROA not before: Thu 02 Jan 2025 05:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208169
IP address blocks: 45.151.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:75:83:86:55:02:76:f0:07:35:32:48:88:d3:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83286fa6da7d252e7828f84923f55919142b007f
Validity
Not Before: Jan 2 05:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d856bd23878c3f37e8f77f521d5ca55dbccfaf3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:45:98:cd:00:5d:85:6b:c0:13:12:9f:80:d8:
bd:9c:a1:9d:dd:04:cf:a5:7a:8c:89:69:45:d4:63:
e5:bd:e3:f2:e0:10:b3:84:97:8e:8a:fd:2f:11:89:
34:70:47:f0:9a:7a:b5:c4:8b:3c:25:ac:76:de:87:
82:6d:04:bc:12:d3:3d:ad:f3:78:2c:71:77:13:81:
4e:a5:25:44:6b:5c:c5:32:5c:df:90:be:38:40:79:
8b:a7:89:da:8d:4e:ea:02:d5:18:e2:e5:eb:a8:37:
27:97:c9:1b:1e:04:59:8b:29:ba:74:d0:7f:c3:78:
3c:f1:bb:47:8b:a2:36:4b:28:df:d7:f8:07:88:50:
35:a8:a5:7d:1c:c7:ad:51:e8:8a:36:f7:e3:9e:a7:
99:eb:be:53:93:04:f7:24:5e:14:ad:32:af:69:41:
3e:58:57:5a:2d:96:72:b8:2c:95:8f:9d:4b:e5:c2:
18:61:af:20:30:7d:2b:b7:d0:99:5a:46:3d:23:15:
5b:ab:6d:af:ea:da:9b:f0:0d:0f:9d:d8:8f:03:0b:
aa:78:44:6c:46:8b:92:93:60:f6:5d:8a:dc:16:56:
60:ab:da:fd:41:a5:16:33:19:45:97:22:97:14:e5:
1e:67:f6:c8:62:5f:af:84:c6:75:45:a9:ce:bd:2b:
37:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:56:BD:23:87:8C:3F:37:E8:F7:7F:52:1D:5C:A5:5D:BC:CF:AF:3F
X509v3 Authority Key Identifier:
keyid:83:28:6F:A6:DA:7D:25:2E:78:28:F8:49:23:F5:59:19:14:2B:00:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyhvptp9JS54KPhJI_VZGRQrAH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/2Fa9I4eMPzfo939SHVylXbzPrz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/gyhvptp9JS54KPhJI_VZGRQrAH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.167.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:c1:f5:4a:2e:f6:4c:0b:e0:66:f9:9b:a5:01:62:72:10:e6:
5b:ee:b8:e6:5b:68:29:a9:4d:0f:32:9f:8b:3f:64:bb:3c:d9:
37:58:e2:6d:7c:b1:02:3d:f8:a5:4b:af:5c:95:47:6e:15:22:
23:18:1a:4a:39:fe:31:a1:1d:90:c0:23:8d:24:91:a1:c3:f5:
b5:98:96:bb:12:93:1d:a5:ba:d5:a6:30:7a:01:48:c3:14:85:
22:c8:2d:f7:8e:71:79:47:50:92:dd:ed:28:4b:62:ce:a3:28:
c0:b6:1c:7d:00:b0:3e:c5:3a:cf:40:fc:59:fc:43:95:01:d3:
4c:45:07:5f:9e:92:f9:eb:00:43:e3:3b:a6:01:6f:0d:73:e5:
0a:47:e5:ba:a6:6b:f5:71:94:7d:4e:1f:87:29:69:c7:cd:01:
f3:74:a4:e4:2c:e2:9b:0e:2c:32:35:74:88:f6:17:aa:00:f6:
a2:d6:e9:59:4e:f9:15:9a:0c:67:6e:7d:65:90:14:ba:f8:7a:
e7:ec:ee:a4:3e:f6:e4:b6:84:b8:ca:94:ef:f4:37:34:a7:74:
b7:d2:43:7f:da:1d:a0:25:c4:b8:f9:95:b4:de:42:ee:06:72:
e0:9a:00:32:b9:21:37:63:b8:a5:29:42:28:3e:25:dd:7e:ce:
b5:97:31:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:33:59 2025 by rpki-client