Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/hx6rtEql1olvWKbW-V9Iy6wwbjU.roa
File: hx6rtEql1olvWKbW-V9Iy6wwbjU.roa (raw, json)
Hash identifier: E8pqEDaXF7nHKqwKJPhGESJoQlJqkTug4lEq8H1eiqA=
Subject key identifier: 87:1E:AB:B4:4A:A5:D6:89:6F:58:A6:D6:F9:5F:48:CB:AC:30:6E:35
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 01936DCCF9C3C9260ADF0084B24194525AEE
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/hx6rtEql1olvWKbW-V9Iy6wwbjU.roa
Signing time: Wed 27 Nov 2024 13:26:10 +0000
ROA not before: Wed 27 Nov 2024 13:26:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200950
IP address blocks: 45.152.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:cc:f9:c3:c9:26:0a:df:00:84:b2:41:94:52:5a:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Nov 27 13:26:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=871eabb44aa5d6896f58a6d6f95f48cbac306e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:63:b2:88:c5:1b:06:71:bf:a0:91:7a:e5:f0:
d8:20:f3:b5:af:0b:00:72:1b:55:fd:59:a0:06:ca:
dc:0f:ac:f9:fb:08:75:d8:fb:c3:aa:d4:22:ac:bb:
84:c6:d0:38:f0:26:45:27:19:02:d7:37:b3:91:5b:
14:bc:d2:2d:5b:c4:7b:89:c3:5c:f9:12:32:97:3c:
d7:5e:9e:15:b4:7a:8a:c3:45:da:55:5d:0b:9f:89:
3e:15:b4:74:64:11:18:93:a3:c4:ff:ca:4c:e4:06:
a0:33:0f:e6:8e:41:a1:12:8d:f1:06:4c:b4:c4:98:
53:27:2b:43:c8:98:8a:cd:b8:fd:19:ec:19:fc:aa:
7f:1b:af:91:c2:5e:6a:02:9b:9d:93:5c:dd:f0:6e:
cb:88:aa:87:ca:4a:28:bf:fb:5c:0b:84:08:2c:56:
9f:cc:3b:39:95:7a:75:df:b3:27:4b:66:9e:89:7b:
00:57:a5:b9:c1:19:69:14:76:db:9e:83:46:40:1b:
c2:5d:9f:ed:70:cd:fd:6d:83:e9:ab:49:c8:31:01:
fc:f6:41:e4:f5:93:50:23:64:76:38:c2:b9:4b:c5:
77:01:83:53:60:69:11:44:21:a9:75:25:e7:f6:c3:
90:77:08:6d:08:ee:77:0b:be:fd:6f:46:ba:67:a1:
d0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1E:AB:B4:4A:A5:D6:89:6F:58:A6:D6:F9:5F:48:CB:AC:30:6E:35
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/hx6rtEql1olvWKbW-V9Iy6wwbjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.37.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:34:6b:b2:dc:5f:1a:36:24:e7:44:8d:47:cb:bd:08:0e:42:
2d:ba:35:84:96:24:1e:16:ac:36:e6:16:fe:33:7a:4d:2e:a3:
a6:f6:75:f7:f9:5c:7e:5a:71:ac:b8:f5:69:65:c1:d2:30:ef:
10:f7:60:d8:9e:ed:ac:bb:ed:df:88:03:e7:13:44:86:e9:17:
16:0a:f5:0d:35:1c:ec:8e:ab:70:34:fc:73:9e:69:c8:83:26:
dc:ae:a9:de:2e:16:a9:e0:0b:b7:9b:6f:69:70:b9:e6:90:3c:
f7:b6:74:cd:47:5f:87:c4:aa:4b:7d:31:7d:ab:fe:3c:5d:fd:
8c:dc:96:e3:15:4a:b3:e7:87:d7:d7:54:31:45:b7:17:0f:18:
43:5e:05:82:ea:c6:0c:b2:bb:28:0d:45:d4:e2:9f:23:21:d6:
67:bd:76:0b:f1:80:25:95:18:7d:fa:68:f8:c1:5f:77:3f:58:
f3:17:96:01:7a:46:6c:3f:dd:f4:d0:89:75:81:d8:ab:7c:ff:
fe:7b:b4:1b:d8:ea:bf:e9:a8:94:c9:d0:8b:30:c9:83:ba:70:
cd:82:39:0d:52:a0:28:47:a0:42:13:c4:45:ff:e9:52:66:da:
7a:d8:45:7d:75:49:6f:0f:0f:04:3a:1f:a3:05:db:33:94:39:
b8:e6:97:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:36:04 2025 by rpki-client