Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/3B7NNbeKRnZEKDmHNY1KeC1srmc.roa
File: 3B7NNbeKRnZEKDmHNY1KeC1srmc.roa (raw, json)
Hash identifier: b9ZXFcLIXXCFjVrGvvhUY9iQ4k5SaEKXRcy7m/BXZ+U=
Subject key identifier: DC:1E:CD:35:B7:8A:46:76:44:28:39:87:35:8D:4A:78:2D:6C:AE:67
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 019420680344292AD66C5A5C4ED120100823
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/3B7NNbeKRnZEKDmHNY1KeC1srmc.roa
Signing time: Wed 01 Jan 2025 05:47:55 +0000
ROA not before: Wed 01 Jan 2025 05:47:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41327
IP address blocks: 45.154.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:03:44:29:2a:d6:6c:5a:5c:4e:d1:20:10:08:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 1 05:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dc1ecd35b78a467644283987358d4a782d6cae67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d7:4b:5f:6f:9c:8e:d4:33:0c:14:8d:61:fe:
54:23:fc:09:c8:0f:a3:3c:1b:8a:97:e9:5c:a3:a4:
32:52:57:7a:89:e8:53:1b:45:4e:65:92:23:e9:c9:
93:e8:74:bd:7a:46:02:86:7c:51:af:75:d9:a2:fa:
58:8c:ef:c9:76:84:3d:93:94:aa:57:e3:5a:9d:23:
6d:80:58:1a:6a:1b:c1:50:ab:83:d7:1f:e2:e3:ea:
53:12:60:85:74:47:8e:29:0e:fe:08:8c:70:c2:f4:
95:ac:ad:ae:26:73:2d:bd:a0:52:b3:4c:59:57:92:
c8:83:ec:5f:e6:14:90:d3:94:5d:60:94:87:1a:65:
a3:c2:21:5e:c7:77:a5:60:03:ab:36:c2:37:0f:51:
3a:25:6b:24:c6:b4:9e:c7:ae:38:1c:d9:a4:f6:e7:
4a:53:ba:0d:62:c7:3a:40:d4:25:f5:8a:76:46:d6:
d7:1f:9b:11:44:6f:89:c2:cd:6a:2e:e2:53:c0:78:
b7:ad:64:fa:8b:36:63:47:19:d1:f5:74:44:ed:bc:
db:1b:43:d8:34:09:23:7d:2f:4a:f7:64:bb:49:5d:
de:50:d2:3b:00:b1:1f:5a:73:bc:ab:f8:1e:c8:9a:
e2:01:2b:ba:89:6c:f4:99:9b:2e:08:ef:fa:c2:a5:
eb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:1E:CD:35:B7:8A:46:76:44:28:39:87:35:8D:4A:78:2D:6C:AE:67
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/3B7NNbeKRnZEKDmHNY1KeC1srmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.236.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:1b:17:73:3a:fc:00:d0:3e:24:01:7c:6c:1f:fe:63:68:8a:
c1:a1:80:4c:d5:f3:75:9c:68:94:3e:6f:15:4c:52:c2:3f:9e:
be:70:cc:c3:75:03:f8:72:4d:31:b7:9f:dc:b5:8d:c6:97:4c:
d0:6d:ad:40:8b:a5:76:38:dd:b8:cb:2c:e9:cb:29:dd:c4:d4:
81:f9:bf:3f:47:c0:56:35:df:56:d8:58:83:10:0e:ca:03:62:
c1:51:15:56:29:71:37:f3:8b:75:c3:c7:00:d5:38:df:bc:ff:
ad:68:0b:4d:f2:ff:f3:89:02:8d:d1:0b:03:97:6e:59:c2:d9:
dc:61:49:16:30:97:5a:d3:19:b0:c2:57:51:c5:1b:24:fa:8a:
e0:17:d6:8d:f0:c3:26:8c:5c:a4:2e:f2:73:c3:2a:4b:3c:5f:
2c:c3:7d:d2:c4:fb:44:47:50:8e:22:a0:0a:0c:cb:4a:ba:53:
52:3d:ae:bd:a0:ac:a6:47:a8:3e:25:14:70:ec:05:a3:cb:4e:
cc:f7:dc:c8:6a:ce:aa:4a:6d:95:05:ae:5a:86:1d:c6:eb:0d:
ec:64:76:91:85:af:07:60:15:f8:7b:86:20:cc:2d:f0:3c:93:
e3:d2:f1:99:26:fa:3d:89:e6:9a:e7:fc:e4:a4:4f:22:c8:44:
05:ca:d4:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:45:24 2025 by rpki-client