Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/dMR-uBMDQrv9RYepSi1Tuzbh29o.roa
File: dMR-uBMDQrv9RYepSi1Tuzbh29o.roa (raw, json)
Hash identifier: ypInMC7YPWx1saLali+mHNsYgim5zRiHoGnlFRZfISM=
Subject key identifier: 74:C4:7E:B8:13:03:42:BB:FD:45:87:A9:4A:2D:53:BB:36:E1:DB:DA
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 019427487F5A2F9C369D497B8DF604494348
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/dMR-uBMDQrv9RYepSi1Tuzbh29o.roa
Signing time: Thu 02 Jan 2025 13:50:50 +0000
ROA not before: Thu 02 Jan 2025 13:50:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29670
IP address blocks: 45.11.230.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:7f:5a:2f:9c:36:9d:49:7b:8d:f6:04:49:43:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 13:50:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74c47eb8130342bbfd4587a94a2d53bb36e1dbda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:22:6a:dc:59:5a:fc:bf:e5:5d:a5:21:72:de:
e8:d6:71:5a:fe:ab:ec:53:0c:c0:65:f2:5d:19:8d:
ab:b5:bd:a9:bb:8b:fd:b3:d7:c5:a2:57:0c:27:dd:
04:31:2a:23:ed:c6:5d:c8:45:a9:cc:ff:b3:2a:91:
a9:86:fa:cd:c0:00:bd:be:dc:33:43:9f:91:9e:56:
c4:f5:9b:41:6a:f7:45:ab:88:47:2d:09:e4:92:6c:
30:e8:a3:b4:28:6b:89:85:72:d3:3f:0a:6b:6b:d9:
8d:1e:d6:25:ff:42:9e:30:6f:0a:81:78:76:e9:0c:
70:23:23:20:e6:52:f0:5b:64:f3:e5:07:9d:96:22:
a7:ff:06:9e:c9:e1:ea:85:8a:b3:58:23:ab:b4:d9:
5c:e5:85:73:ef:f6:32:ca:06:27:08:7b:43:0b:2c:
ff:9d:73:6b:16:ee:5b:f8:d7:ff:28:45:90:af:15:
29:eb:38:a7:79:bf:3d:36:69:49:29:d9:b7:f1:e3:
e9:7f:e9:a0:bc:6a:8c:96:46:97:24:6f:ef:8f:6b:
69:5d:f1:96:29:ec:99:22:92:98:5e:f1:4b:84:76:
72:7e:88:c3:d9:f6:ae:d5:db:50:96:11:4b:63:c6:
7d:51:a9:c7:c6:56:1b:c5:b9:10:0f:b0:2b:16:eb:
c9:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C4:7E:B8:13:03:42:BB:FD:45:87:A9:4A:2D:53:BB:36:E1:DB:DA
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/dMR-uBMDQrv9RYepSi1Tuzbh29o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.230.0/24
Signature Algorithm: sha256WithRSAEncryption
34:68:9d:d5:93:4d:4e:81:40:36:1a:79:63:5d:b8:38:86:66:
1f:50:b9:43:6c:d6:25:5d:03:fd:ab:a3:c7:b5:cc:fe:3f:94:
15:36:01:9b:5f:55:d6:2a:94:d1:c4:1c:a9:64:9b:b5:b5:be:
11:47:4a:eb:d4:68:d0:72:60:f1:e7:a6:84:70:59:55:51:28:
ec:34:c9:f7:4b:c0:58:f0:3e:b1:3f:07:80:07:ef:cf:c3:14:
63:d3:90:08:65:97:13:fc:fb:e3:78:64:c4:3e:38:0d:6a:9a:
c9:8f:f9:eb:26:9a:af:92:12:ba:54:f5:bd:fd:f6:95:5a:ab:
13:e2:01:25:67:1e:0d:ad:af:a2:7b:48:0d:ed:99:97:38:29:
27:35:ff:2b:7b:53:f1:43:9a:d2:33:af:36:d7:55:a3:de:99:
52:7b:39:14:43:50:f1:9b:a6:ca:48:ac:7d:23:d2:aa:6f:bb:
d4:29:ae:e2:3c:48:52:2e:a6:f4:9a:e9:d9:f5:1e:f4:59:cb:
b5:0d:89:cb:0c:07:c6:45:86:3d:40:b0:c3:c5:ad:93:00:bf:
8b:d0:6d:5d:53:9f:ae:20:50:fb:ac:6d:a3:3f:b3:86:ac:48:
16:df:08:6f:36:6b:91:09:4b:d1:ca:65:a7:77:ff:25:a0:c0:
26:55:2a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:16:24 2025 by rpki-client