Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/UX6z9WcTLr2rQ9BhVTXvL8ZCt1c.roa
File: UX6z9WcTLr2rQ9BhVTXvL8ZCt1c.roa (raw, json)
Hash identifier: hKFDThGgFzyOvxrw/VbkYGg0hd/KiWOYcdlCg7sfWMg=
Subject key identifier: 51:7E:B3:F5:67:13:2E:BD:AB:43:D0:61:55:35:EF:2F:C6:42:B7:57
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01942748802FC7C81CE813B86887EA704856
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/UX6z9WcTLr2rQ9BhVTXvL8ZCt1c.roa
Signing time: Thu 02 Jan 2025 13:50:50 +0000
ROA not before: Thu 02 Jan 2025 13:50:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34549
IP address blocks: 45.13.236.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:80:2f:c7:c8:1c:e8:13:b8:68:87:ea:70:48:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 13:50:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=517eb3f567132ebdab43d0615535ef2fc642b757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6a:b5:05:cf:fb:9a:71:6a:77:09:d5:3a:6c:
50:0f:36:0d:25:7d:eb:e7:01:72:09:d4:f5:c6:65:
83:e4:a9:ac:89:1b:55:23:56:16:cb:4f:7a:30:45:
89:89:92:a3:a2:02:2e:e6:fa:da:89:19:a5:fb:fe:
0f:30:fe:9f:ea:58:84:11:59:7b:36:c9:c4:67:a7:
f4:fe:6f:6b:21:63:e7:0d:98:ff:eb:2b:72:b2:77:
fd:45:09:27:54:0a:6d:c2:fe:22:b4:50:aa:2e:66:
57:7b:8c:8b:6d:1c:5f:9b:39:bb:c3:53:8c:65:a7:
02:98:77:f2:60:15:c2:70:eb:e5:87:c4:e7:64:85:
0c:69:a0:6b:20:cb:8d:de:b6:93:e8:30:31:ca:36:
64:7c:d7:e2:88:fb:56:b9:b6:91:74:c5:07:49:85:
cc:41:74:cf:96:ef:ea:83:bd:58:30:81:c5:f2:27:
c1:ac:d2:fc:da:d3:e5:41:b9:ca:e9:ec:4c:e4:fc:
7f:60:0c:0f:69:89:85:1c:5b:34:dc:70:0f:83:d6:
30:90:ce:22:b5:94:b9:13:fe:39:e2:f8:f3:11:b7:
ca:81:5a:3a:1e:03:4a:bf:af:74:88:61:57:5c:4c:
0a:6f:69:10:33:e2:fc:d7:32:8b:ec:5c:15:7e:f2:
e2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7E:B3:F5:67:13:2E:BD:AB:43:D0:61:55:35:EF:2F:C6:42:B7:57
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/UX6z9WcTLr2rQ9BhVTXvL8ZCt1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.236.0/22
Signature Algorithm: sha256WithRSAEncryption
77:95:a4:e8:7b:ce:04:a8:e2:28:ca:b1:7b:56:89:5e:bc:30:
f5:1a:8d:4d:1a:88:48:77:e5:2d:5e:41:c8:74:fe:57:9e:c8:
b4:78:2a:cd:77:20:a2:0a:f8:f2:e4:1a:48:83:6a:6b:66:74:
04:ca:34:d0:6d:bf:dd:b0:df:80:22:9b:d3:4d:dd:54:ab:6d:
e5:53:3c:cd:da:c4:99:1d:f7:f8:6b:02:6f:ce:b0:c0:bd:1a:
4f:dd:65:91:3d:bd:99:89:55:14:0c:47:5d:cd:04:06:a5:7d:
45:44:2b:1d:d2:91:f2:e5:4f:81:e9:31:16:7a:75:63:4b:9a:
76:dd:f0:3a:e7:65:f5:03:41:91:bb:03:f7:89:e1:de:8f:38:
00:4b:59:34:a3:a9:bd:41:1f:29:81:7b:26:52:7e:34:28:f2:
0b:67:ce:e2:8d:cc:df:9f:f6:3a:c9:0c:77:16:95:c0:ca:d5:
9f:58:20:5c:17:0d:fb:b2:5b:d1:2e:41:f2:d3:18:ae:3b:79:
e2:60:d4:75:96:80:35:30:53:f7:02:78:ab:2f:25:cc:a8:9f:
33:66:64:32:ad:02:d4:da:e5:52:fe:90:07:cc:62:75:42:d4:
91:2e:ac:21:9c:a0:13:be:91:cb:fe:ee:82:84:4b:7a:07:04:
cc:d6:9f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:28:39 2025 by rpki-client