Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/n_Up9lnfTJMz-js3Cbgk_K52fyw.roa
File: n_Up9lnfTJMz-js3Cbgk_K52fyw.roa (raw, json)
Hash identifier: ecIKB8OiEWMj8aNDIiv7lS/1mdAO1io7fStA2u1k86M=
Subject key identifier: 9F:F5:29:F6:59:DF:4C:93:33:FA:3B:37:09:B8:24:FC:AE:76:7F:2C
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 01956AFDEB6194BC79CBF799277EA6C591F5
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/n_Up9lnfTJMz-js3Cbgk_K52fyw.roa
Signing time: Thu 06 Mar 2025 10:26:20 +0000
ROA not before: Thu 06 Mar 2025 10:26:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202656
IP address blocks: 45.140.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:6a:fd:eb:61:94:bc:79:cb:f7:99:27:7e:a6:c5:91:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Mar 6 10:26:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9ff529f659df4c9333fa3b3709b824fcae767f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d5:c5:e2:ef:d9:f8:32:b1:00:ed:4b:98:40:
fa:d1:b0:9a:76:38:00:3a:35:66:7a:e2:1b:34:82:
78:04:95:ec:2a:30:b5:f6:49:ff:d7:dc:d5:56:fc:
93:6c:ce:9e:82:a8:60:10:80:a2:ad:65:52:ca:1e:
33:78:60:3f:1e:02:60:59:ab:63:29:97:da:61:45:
44:66:ef:ec:25:b4:f5:e4:26:84:8d:1b:58:57:4f:
56:fa:19:05:5e:63:67:c3:8f:55:e6:73:7a:0b:57:
24:99:1f:82:55:15:74:4f:e9:d8:96:5d:8e:ae:5d:
2a:4d:c4:cc:00:6f:8c:3e:f8:f5:01:9f:ed:db:a9:
da:75:8f:85:c4:be:53:b2:64:82:9d:cc:35:09:29:
f0:59:fb:9d:95:50:34:5a:e8:c7:07:1b:ec:3b:6d:
33:98:b8:43:e0:88:88:0f:5d:33:d3:a3:55:b5:79:
d2:f7:d5:60:7f:9c:2b:97:60:f2:e9:81:25:45:25:
dd:f6:43:68:ae:85:ce:e0:a2:4e:b7:c3:a1:ae:90:
ba:c3:3e:80:a8:d8:76:d5:74:25:f4:6c:2c:da:f7:
ad:5e:56:46:9d:81:50:90:d6:f7:23:16:4f:9b:0e:
4e:0c:2b:37:80:43:1a:10:e8:ac:b6:05:5b:26:fa:
75:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F5:29:F6:59:DF:4C:93:33:FA:3B:37:09:B8:24:FC:AE:76:7F:2C
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/n_Up9lnfTJMz-js3Cbgk_K52fyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.210.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:f1:1e:27:da:4f:18:b7:3b:8d:14:af:d0:9f:c0:0e:d8:43:
37:ce:fa:da:07:d6:c3:f4:2e:ef:8d:9d:1b:45:55:5c:4d:eb:
de:17:7b:c7:7f:38:c0:26:6b:a2:58:85:49:35:1b:1f:7d:e8:
7e:f7:f5:8f:5d:bb:db:c5:c4:c4:2b:52:3e:03:40:dd:c0:a5:
fe:fa:0e:64:f3:0f:b9:74:cb:f1:e2:bd:a6:2c:ff:16:91:e7:
03:6d:da:30:a2:3c:eb:bb:5a:4d:49:61:6f:4c:2e:92:9f:50:
97:2d:88:25:3b:1e:b5:28:a9:7d:00:ae:e8:1d:ce:bd:b3:55:
61:51:50:32:ad:89:7a:fb:e4:4a:4d:32:60:15:8f:99:a1:42:
f2:9c:90:e1:c3:d4:91:2f:2d:b7:8f:96:30:30:e1:69:09:92:
a9:eb:85:7d:a4:f7:00:3c:0d:c5:d8:fe:68:88:85:25:cd:cb:
01:a1:a4:1f:0d:62:bc:4c:c7:a7:5b:4e:ce:7a:0d:d1:ba:9c:
77:26:35:3c:64:28:bc:20:85:8d:0e:f5:8f:79:b4:87:6d:8e:
11:6a:ea:cf:17:bf:8b:82:fc:95:03:12:b3:47:6b:56:86:56:
65:5b:a4:27:2d:20:ad:e8:d2:8c:5f:a7:38:e2:1b:09:44:df:
e9:a7:53:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:45:48 2025 by rpki-client