Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/Wf-haqxCjxxzuH1BRFy5ZArlxvE.roa
File: Wf-haqxCjxxzuH1BRFy5ZArlxvE.roa (raw, json)
Hash identifier: kQXNvlZPtMB7sH96GAiEPMT8hFJGvdWHMMajrLGoua4=
Subject key identifier: 59:FF:A1:6A:AC:42:8F:1C:73:B8:7D:41:44:5C:B9:64:0A:E5:C6:F1
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 0194274706D93F26EA69D232B02CE9D71DF8
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/Wf-haqxCjxxzuH1BRFy5ZArlxvE.roa
Signing time: Thu 02 Jan 2025 13:49:13 +0000
ROA not before: Thu 02 Jan 2025 13:49:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61135
IP address blocks: 45.158.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:06:d9:3f:26:ea:69:d2:32:b0:2c:e9:d7:1d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 2 13:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=59ffa16aac428f1c73b87d41445cb9640ae5c6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a0:6c:b8:e2:6e:6b:c6:a8:f0:1e:a8:69:db:
66:b2:fb:bc:2b:34:52:b3:70:e0:b8:58:1f:d5:a6:
a4:0f:8f:d3:e6:78:1e:03:49:9e:20:9e:14:0d:d5:
f6:79:4e:99:77:a2:1b:3d:ee:cf:c6:14:73:96:f3:
07:14:7f:aa:8f:b0:2f:20:19:bd:49:6c:d3:ee:c5:
fe:92:46:25:5b:a0:82:c1:16:4b:8d:b2:f2:c2:77:
91:7b:d8:36:07:1f:80:a4:10:9d:e9:ff:37:39:e4:
63:e2:31:c8:45:a1:6b:85:5e:b5:01:8e:0b:f7:c0:
6e:e1:82:ad:41:3f:5b:e0:62:01:9d:14:09:73:f6:
6e:f0:b3:ae:ce:65:9f:50:7b:5a:46:b0:91:2c:13:
51:2c:c2:e0:97:e5:9c:bc:9a:e1:d7:d3:3c:8c:db:
15:fe:d7:10:51:4d:15:32:12:3b:b3:9d:db:f2:89:
ad:e2:08:b2:80:9a:ce:9e:06:d6:da:d8:4d:a3:6d:
f0:b4:07:74:3a:2b:53:c3:6f:f9:9b:9e:1d:03:c3:
7f:22:45:e0:ab:75:2d:c9:fd:72:b5:dd:b6:eb:bf:
7b:b0:be:2f:c5:e6:ca:db:1e:20:de:ce:e5:ad:29:
ed:ab:f0:41:dd:f1:c5:bf:12:06:a7:8b:26:7e:57:
45:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:FF:A1:6A:AC:42:8F:1C:73:B8:7D:41:44:5C:B9:64:0A:E5:C6:F1
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/Wf-haqxCjxxzuH1BRFy5ZArlxvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.15.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:03:5c:58:93:64:e3:b6:82:b0:f4:bb:6e:14:3b:7c:e7:14:
a8:25:43:96:f2:43:80:79:41:95:55:aa:32:ef:b0:e4:48:3b:
cf:9d:b0:4f:02:c8:ee:e5:59:6b:db:79:dd:0b:c7:e9:14:d9:
53:9b:a4:aa:26:03:bc:88:9d:f5:fd:44:49:78:c2:88:2d:77:
93:69:3e:b5:40:a8:01:67:7b:11:18:2a:cb:53:e4:ac:24:3f:
08:6a:71:8f:3e:1e:4b:9b:79:f8:9f:81:91:fc:5c:c6:86:63:
65:62:1f:8e:44:aa:a4:80:81:dc:47:00:79:4e:f7:62:5d:9d:
ca:83:f7:c9:a4:95:16:a2:be:47:e3:e3:03:e8:b5:94:11:a1:
09:fc:fa:89:e0:82:a0:d8:f4:cf:f4:6f:5a:e0:6e:e8:46:64:
e1:8a:b4:ab:c2:44:50:bf:34:7b:cb:b7:3b:c5:e7:8a:91:3a:
4c:6e:ce:02:9d:b7:ab:18:18:c5:d5:e2:69:ed:be:d3:02:20:
9a:42:dd:60:ff:01:30:f4:25:97:c0:63:10:86:73:f9:bf:59:
46:1c:e6:ce:6a:09:d0:cd:59:b7:cd:86:6c:7b:47:4a:e4:24:
0d:f2:18:ee:36:3d:29:c7:15:57:6b:d4:b8:86:41:31:76:4c:
b4:5b:0e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:24:45 2025 by rpki-client