Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/RQQhkk1xowa-qMmgXHsMJ2q3noo.roa
File: RQQhkk1xowa-qMmgXHsMJ2q3noo.roa (raw, json)
Hash identifier: 3sNAn6hJDbqVr5A0d81Vthe/ype8tyoz+ZUSdcGwWPY=
Subject key identifier: 45:04:21:92:4D:71:A3:06:BE:A8:C9:A0:5C:7B:0C:27:6A:B7:9E:8A
Certificate issuer: /CN=7ba2be98438b98ee68a0d1b8c4144520bd0a623d
Certificate serial: 0194DF65ED0AD47A7496718BF994EDC19675
Authority key identifier: 7B:A2:BE:98:43:8B:98:EE:68:A0:D1:B8:C4:14:45:20:BD:0A:62:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6K-mEOLmO5ooNG4xBRFIL0KYj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/RQQhkk1xowa-qMmgXHsMJ2q3noo.roa
Signing time: Fri 07 Feb 2025 07:53:06 +0000
ROA not before: Fri 07 Feb 2025 07:53:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205610
IP address blocks: 45.82.239.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:df:65:ed:0a:d4:7a:74:96:71:8b:f9:94:ed:c1:96:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ba2be98438b98ee68a0d1b8c4144520bd0a623d
Validity
Not Before: Feb 7 07:53:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=450421924d71a306bea8c9a05c7b0c276ab79e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5d:02:b4:f7:64:f1:cc:91:47:21:fd:54:33:
06:5e:c1:97:1e:61:5c:e8:8c:c8:98:0e:46:ff:48:
a3:05:7f:4e:61:76:cb:97:f3:88:c1:06:a5:cc:15:
01:ff:c4:76:a4:0b:ef:61:e2:3e:bf:17:5b:44:d0:
0d:88:ea:77:5a:33:34:d7:48:d4:db:61:38:7d:6e:
c3:88:c7:e5:0c:9c:cf:da:3b:d9:58:52:e0:04:e7:
62:3d:10:64:24:f5:f3:cc:e4:3a:42:71:6f:d9:66:
eb:f2:f2:7d:2e:5b:46:00:a1:2c:8a:64:fb:f8:4d:
3f:20:37:f8:df:e4:de:43:9d:f3:9d:31:c5:19:a7:
17:03:4f:35:ae:84:df:37:64:27:8f:07:40:69:26:
ca:2a:89:87:76:b1:ce:83:b8:83:95:dd:9f:1a:d4:
36:02:cd:86:2e:93:1c:d6:35:c3:72:53:ec:9e:c0:
c3:e3:be:38:65:bf:7a:79:fd:eb:32:da:c0:eb:7e:
91:12:8e:89:9f:97:fc:ac:75:e4:8d:bf:5c:12:a3:
1d:d7:d3:5f:a0:7e:c0:3c:74:48:d7:0a:6b:db:31:
c9:59:4f:32:c2:cf:50:61:ad:c9:84:28:c5:ed:d9:
bc:bc:09:20:ec:f0:10:ed:aa:74:4f:65:b5:81:01:
4c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:04:21:92:4D:71:A3:06:BE:A8:C9:A0:5C:7B:0C:27:6A:B7:9E:8A
X509v3 Authority Key Identifier:
keyid:7B:A2:BE:98:43:8B:98:EE:68:A0:D1:B8:C4:14:45:20:BD:0A:62:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6K-mEOLmO5ooNG4xBRFIL0KYj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/RQQhkk1xowa-qMmgXHsMJ2q3noo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/845e76-9c2d-4aff-92af-4935b3f5c209/1/e6K-mEOLmO5ooNG4xBRFIL0KYj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.239.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:97:5d:28:67:4a:ae:b7:96:81:16:8c:63:29:ce:b3:95:be:
86:30:90:f1:e0:4b:32:80:26:fe:ae:12:e7:fb:65:4c:a4:db:
3a:98:89:95:cb:42:10:f5:7c:03:c5:4b:47:6c:54:13:ca:c5:
af:cc:2b:96:ba:3c:c3:fe:f3:82:de:a8:e8:72:49:b3:94:f1:
90:c1:05:b6:fe:73:2b:06:76:b0:a2:99:54:33:76:68:8d:da:
b7:7b:66:33:c8:0a:d3:fd:60:b1:00:81:ea:c6:8a:40:24:8f:
97:79:8f:50:a8:27:ee:72:6a:db:27:9a:3a:b6:a4:6a:24:96:
f6:90:cd:e7:5c:a0:5e:38:5c:59:d9:81:8e:8e:7b:03:5a:3d:
af:83:a0:88:97:7d:1f:3a:f0:6a:4c:fc:9b:cd:84:4f:b4:c2:
ac:c1:77:0d:2e:a8:8c:ee:f8:1d:58:4b:4a:b0:2d:30:24:bf:
e7:c0:74:2b:55:ca:66:09:16:ec:53:66:fd:92:09:50:46:18:
1e:10:8b:61:f2:d5:ce:51:71:71:37:c6:6e:32:d6:9c:fe:d4:
d7:46:f1:33:1b:f3:28:45:dc:13:de:c1:1c:19:60:e9:d8:f3:
f3:f8:29:7a:88:64:a2:5e:72:ca:0b:8f:d8:58:08:eb:8f:35:
10:6a:59:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:01:58 2025 by rpki-client