Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/vhqfgZBGlkmJeOA75et_kaK8pwc.roa
File: vhqfgZBGlkmJeOA75et_kaK8pwc.roa (raw, json)
Hash identifier: HXruhXdyCN/4KKZEyQ4qWiEgEF32HHhcblnNFIim6w8=
Subject key identifier: BE:1A:9F:81:90:46:96:49:89:78:E0:3B:E5:EB:7F:91:A2:BC:A7:07
Certificate issuer: /CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Certificate serial: 01941F8C15F390911F02B6D26ABCE68AFB5B
Authority key identifier: 1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/vhqfgZBGlkmJeOA75et_kaK8pwc.roa
Signing time: Wed 01 Jan 2025 01:47:41 +0000
ROA not before: Wed 01 Jan 2025 01:47:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201104
IP address blocks: 94.45.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:15:f3:90:91:1f:02:b6:d2:6a:bc:e6:8a:fb:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Validity
Not Before: Jan 1 01:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=be1a9f81904696498978e03be5eb7f91a2bca707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a7:bc:17:8e:36:be:16:a9:64:ed:b0:76:3e:
14:00:54:6f:4f:64:56:8e:0c:09:82:a0:25:0a:a6:
0a:15:b6:e1:0a:4a:16:0f:8e:7f:38:08:dd:38:63:
f6:c1:4c:66:d2:25:30:d6:89:45:da:49:cb:87:9a:
6e:16:6f:20:54:6f:83:92:f1:3f:27:ff:5d:c8:7e:
79:20:cb:20:d6:05:36:6b:92:1f:3d:a3:05:5d:cf:
96:7c:1e:df:4a:5e:4d:14:b9:75:8c:9b:94:b9:28:
85:5f:36:e2:dd:31:47:b2:68:cc:84:4d:08:0d:33:
95:6d:99:f1:ad:83:73:e1:71:a4:e7:8a:d8:36:09:
83:83:6e:9b:38:22:ed:8b:21:3a:37:94:34:dd:59:
80:d5:5c:f8:9b:d3:d6:f5:62:5f:9d:f9:a4:0d:2b:
12:6d:f0:e9:74:f6:10:f5:5b:b5:1c:a8:e4:52:d5:
de:6c:df:72:4f:f5:81:d3:69:18:21:15:30:2e:45:
a2:8e:f0:d3:d6:ff:bf:77:7e:39:9b:02:0c:b5:0c:
60:36:cd:14:60:df:a7:c8:72:e7:67:4e:6d:ea:c8:
1e:af:80:8d:7e:2a:03:8a:c0:5e:19:1d:c7:0a:d5:
91:95:ac:97:b4:9d:38:e7:22:fa:9b:11:8b:c7:51:
87:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:1A:9F:81:90:46:96:49:89:78:E0:3B:E5:EB:7F:91:A2:BC:A7:07
X509v3 Authority Key Identifier:
keyid:1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/vhqfgZBGlkmJeOA75et_kaK8pwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.45.150.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:d0:f3:b0:73:a0:43:4d:3b:36:93:cd:fb:08:a4:52:6d:74:
2d:e0:94:a8:e6:8b:d6:53:eb:de:24:91:8d:4d:cb:a2:9c:91:
13:7f:30:04:37:10:30:75:f2:d8:85:df:b3:bb:6f:2f:2a:63:
71:87:7b:38:bb:c4:b8:14:c8:41:ce:e6:9f:c5:12:ae:1c:b5:
1f:86:6f:cf:0d:31:2f:d3:57:91:e7:a7:e1:75:2d:57:e7:15:
e7:90:78:b8:43:41:43:86:45:d6:04:db:19:c1:b9:d7:25:c9:
c2:21:d5:0a:c3:65:12:8b:64:c8:c8:6c:98:23:23:13:7f:93:
42:e3:3c:d5:c4:a1:0b:4e:0e:27:63:a8:01:4b:f2:ca:89:e7:
21:c2:36:38:0e:a0:70:dc:9c:2b:ed:01:be:92:cb:70:08:e7:
66:ee:0a:7c:d9:2f:9e:e2:dd:58:b0:7f:56:f3:ec:47:0a:49:
55:e5:07:f9:db:81:ac:ac:fe:df:5c:a8:68:bb:db:36:b8:cf:
b9:77:1b:1f:eb:54:fb:7a:33:3e:22:78:72:ab:8a:bf:2d:5c:
d9:c4:df:7d:cb:90:8b:6a:d3:ca:05:73:6a:f0:d7:de:9b:2e:
f0:5e:14:8a:3b:d1:55:f9:97:7b:7b:c2:da:94:6e:27:e2:94:
15:5b:c4:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:47 2025 by rpki-client