Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6QdEqyf0CzUKZKhhnPKBKdOJvvc.roa
File: 6QdEqyf0CzUKZKhhnPKBKdOJvvc.roa (raw, json)
Hash identifier: XrIBoh9RAlPMzspdBfgOOUYyqRuK7O3/OoH4lDMx2Yg=
Subject key identifier: E9:07:44:AB:27:F4:0B:35:0A:64:A8:61:9C:F2:81:29:D3:89:BE:F7
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0194274898B50F595B4415FAAE29766C4D76
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6QdEqyf0CzUKZKhhnPKBKdOJvvc.roa
Signing time: Thu 02 Jan 2025 13:50:56 +0000
ROA not before: Thu 02 Jan 2025 13:50:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200950
IP address blocks: 45.86.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:98:b5:0f:59:5b:44:15:fa:ae:29:76:6c:4d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 13:50:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e90744ab27f40b350a64a8619cf28129d389bef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4c:9e:d8:15:a2:09:44:76:c7:73:3f:76:1f:
18:44:12:53:5b:20:c6:85:18:a0:53:e5:d1:10:88:
a0:65:6e:ec:b5:da:36:ff:b7:d8:be:b6:45:3e:83:
0b:33:48:4c:ec:ae:a7:8d:23:b8:a0:62:d9:62:fc:
36:0e:6f:49:d2:d9:d6:42:d3:b4:c5:60:4b:14:de:
01:75:cb:7d:6c:e4:0a:9f:5b:2b:48:75:41:4d:80:
00:47:f6:c3:a0:5d:e7:ce:a2:0f:1c:61:a4:88:27:
b0:bc:14:57:cf:d9:ea:97:3c:77:37:4a:53:83:ea:
bb:e5:00:dd:5c:6b:ed:60:81:84:bf:b3:e5:c1:76:
07:a7:b4:73:c6:b4:97:4b:38:5f:75:34:84:97:1f:
ab:e8:27:34:b4:87:4c:b3:73:7c:b2:c3:dc:46:3a:
47:1a:03:d1:a6:d3:b7:22:cb:2c:9e:8c:30:6d:22:
d2:dc:d9:66:74:fe:24:f3:24:a0:c4:0b:2e:51:aa:
4c:fb:da:14:97:62:eb:cf:dd:cd:fd:36:67:1d:44:
94:54:93:e3:84:9f:89:19:63:a8:a2:9e:e0:21:e0:
14:d7:51:90:8b:e5:37:a9:e1:18:ca:99:66:db:4d:
2f:e2:85:97:7a:69:42:b4:8f:23:c4:51:40:b2:af:
a9:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:07:44:AB:27:F4:0B:35:0A:64:A8:61:9C:F2:81:29:D3:89:BE:F7
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6QdEqyf0CzUKZKhhnPKBKdOJvvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.153.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d4:c5:f6:be:33:d5:a0:2a:b2:44:fc:f0:c5:35:1f:ad:3c:
98:f0:a3:cc:92:41:8c:38:ed:83:05:62:2f:44:f3:c4:3f:3e:
54:22:4c:a6:68:0b:ee:95:cf:60:6c:88:e0:8a:2e:8b:91:f8:
d0:8c:da:75:ae:17:9b:fd:a3:eb:d6:9e:3d:39:02:0b:7c:a7:
6c:02:b3:3a:51:90:1a:b7:a6:6d:6f:3d:01:0e:22:5a:b3:79:
ed:3f:77:bf:73:ed:57:30:e7:02:f9:85:6a:24:c4:17:06:c6:
ae:b4:91:57:15:14:bd:f4:cc:05:a2:e3:97:83:98:dd:21:d3:
99:69:1e:06:05:f6:67:5e:14:07:df:30:99:8d:0b:4d:fa:6c:
d3:c0:1f:16:4f:93:67:ef:05:01:52:21:6d:1a:08:ab:55:fa:
6d:26:8b:07:ca:07:d5:f6:dd:7d:9d:06:b0:aa:87:6c:b3:87:
bc:a9:a0:65:fd:4c:85:b0:b0:56:4a:71:b6:75:9d:1c:2f:89:
de:f5:99:90:0f:9b:2b:ba:7b:61:41:f8:06:a0:6c:e9:ad:0b:
67:53:d0:79:df:90:8e:cc:e3:65:f0:6c:68:06:d8:40:fe:c5:
77:f4:87:e4:29:15:8f:c6:d7:4c:f3:a3:1b:4b:e4:b2:05:93:
5a:1e:3a:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:59:43 2025 by rpki-client