Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/5cb98c-ee08-4b99-8b4d-c6f41060c5d7/1/UxU055m6SYgLYJdY0EIHyH-buK4.roa
File: UxU055m6SYgLYJdY0EIHyH-buK4.roa (raw, json)
Hash identifier: L8Prey4FtmmkUZS9Fb3qw934vxOuIVmwZLaUrRs5uYI=
Subject key identifier: 53:15:34:E7:99:BA:49:88:0B:60:97:58:D0:42:07:C8:7F:9B:B8:AE
Certificate issuer: /CN=9a78fd4d41a49384bdf6e7dc3ebbc500bf66d9d5
Certificate serial: 0194244555DF74E6354E3EA812964DAB3F33
Authority key identifier: 9A:78:FD:4D:41:A4:93:84:BD:F6:E7:DC:3E:BB:C5:00:BF:66:D9:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnj9TUGkk4S99ufcPrvFAL9m2dU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/5cb98c-ee08-4b99-8b4d-c6f41060c5d7/1/UxU055m6SYgLYJdY0EIHyH-buK4.roa
Signing time: Wed 01 Jan 2025 23:48:31 +0000
ROA not before: Wed 01 Jan 2025 23:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 45.8.84.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:55:df:74:e6:35:4e:3e:a8:12:96:4d:ab:3f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a78fd4d41a49384bdf6e7dc3ebbc500bf66d9d5
Validity
Not Before: Jan 1 23:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=531534e799ba49880b609758d04207c87f9bb8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cd:84:b0:d8:2e:47:21:5d:3f:57:95:c9:2f:
2d:4b:c1:a8:19:96:03:44:7c:c6:ea:f9:44:3f:1d:
19:df:5f:b2:0e:91:f2:d8:0e:8f:28:7e:93:7e:0a:
12:c9:7c:1f:09:47:e5:e5:d4:1f:a4:94:71:0b:8f:
94:a4:a1:8e:7b:95:dc:08:8f:de:fe:b5:0d:d2:9a:
8d:a0:9b:9a:e6:98:de:4f:ff:d1:75:44:dd:af:c6:
99:94:2b:ab:ab:d5:75:cc:aa:bf:93:fc:4f:c6:0d:
fc:81:94:3c:b7:0b:2c:34:44:96:77:51:70:05:07:
05:bc:d1:d4:2c:00:38:63:11:d6:ba:87:4d:16:2a:
be:58:91:ab:34:d8:9d:9d:fd:e8:5a:5b:63:1f:49:
72:f6:90:f9:09:80:af:ba:f3:de:7d:ee:c1:ba:1f:
82:34:ee:b2:d5:e7:9e:f5:e7:bb:2a:e7:86:15:31:
69:f1:60:cc:69:04:9c:18:18:5c:1d:f7:86:4b:0c:
d7:f7:ec:92:32:8f:1d:08:28:33:de:fe:8e:70:3b:
21:f9:eb:39:2f:17:b5:31:b4:a4:82:d3:7b:ae:d4:
18:e0:d4:c3:5c:6d:a3:21:03:6f:21:f3:13:d5:87:
82:6d:7e:dd:c5:ff:33:5d:a0:a6:11:ec:25:e7:8d:
b2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:15:34:E7:99:BA:49:88:0B:60:97:58:D0:42:07:C8:7F:9B:B8:AE
X509v3 Authority Key Identifier:
keyid:9A:78:FD:4D:41:A4:93:84:BD:F6:E7:DC:3E:BB:C5:00:BF:66:D9:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnj9TUGkk4S99ufcPrvFAL9m2dU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5cb98c-ee08-4b99-8b4d-c6f41060c5d7/1/UxU055m6SYgLYJdY0EIHyH-buK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5cb98c-ee08-4b99-8b4d-c6f41060c5d7/1/mnj9TUGkk4S99ufcPrvFAL9m2dU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.84.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:79:83:a7:87:29:5d:6c:64:58:c9:15:cb:7f:9a:0a:27:b9:
f5:66:4b:dc:de:da:73:17:13:1f:fd:2e:f5:dd:b0:fc:d2:a4:
09:14:f3:0a:cb:01:08:de:47:4c:f7:8c:28:80:fb:1b:2d:08:
8a:25:2c:53:99:1c:ab:22:50:81:b0:f5:6d:8b:3e:bc:8a:17:
2a:b7:52:ec:74:81:97:8e:fc:28:35:fc:6b:62:30:86:00:71:
36:d0:02:29:94:af:06:f9:48:dc:79:b9:ec:eb:ac:c1:0b:35:
c2:e5:11:96:c4:e4:49:4d:7b:a7:6b:35:66:b3:ee:c8:bc:e1:
7a:6c:dd:55:10:bc:07:84:5d:05:b9:54:4b:f5:ee:04:31:19:
25:2a:1b:1b:91:20:ac:cf:8e:f9:32:c2:e2:3b:70:16:c5:97:
3c:c4:25:0f:0a:a4:70:62:7b:6f:2f:ef:14:d6:22:2e:97:0f:
86:cf:a1:f7:cc:c0:fb:1f:08:57:d3:c9:d4:c8:5f:91:50:50:
90:b7:6d:98:48:cd:55:b5:17:7f:69:dd:12:a8:5a:ce:0a:30:
4c:b8:6d:7d:9c:2f:da:7d:a8:30:3e:78:d8:bd:48:06:7b:12:
30:29:f8:f4:0a:47:6f:8d:03:5a:09:12:a6:04:c9:a8:25:73:
e2:89:80:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:20:45 2025 by rpki-client