Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/7OjUVrWvd7B0o85DaKLfYgEDYYg.roa
File: 7OjUVrWvd7B0o85DaKLfYgEDYYg.roa (raw, json)
Hash identifier: ElsP3+WGZy5wELbMJiGSwWwzyGB160S3FayAOyAR3A0=
Subject key identifier: EC:E8:D4:56:B5:AF:77:B0:74:A3:CE:43:68:A2:DF:62:01:03:61:88
Certificate issuer: /CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6
Certificate serial: 019424B28F6B74EE3BAF562824547CCFCD09
Authority key identifier: 9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/7OjUVrWvd7B0o85DaKLfYgEDYYg.roa
Signing time: Thu 02 Jan 2025 01:47:49 +0000
ROA not before: Thu 02 Jan 2025 01:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 45.158.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:8f:6b:74:ee:3b:af:56:28:24:54:7c:cf:cd:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6
Validity
Not Before: Jan 2 01:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ece8d456b5af77b074a3ce4368a2df6201036188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6d:52:12:5a:4f:fb:a3:18:80:38:da:42:a6:
00:fa:57:e8:9d:6c:e6:67:b8:18:aa:34:5c:3d:d9:
78:7b:5b:ea:af:74:a4:68:ac:c0:3d:65:57:58:54:
f7:29:ab:c3:c6:68:12:23:83:ab:dd:39:2a:43:4f:
73:97:1f:ea:11:3c:94:63:eb:d5:64:8e:96:d1:f0:
59:56:0c:fc:7d:75:ca:cb:4e:d9:0e:3b:11:4b:69:
00:15:5e:4f:4e:1e:4f:3a:91:ff:0a:b6:7f:90:b7:
99:24:a1:0c:b2:29:5e:8f:4f:8a:27:b2:d9:13:39:
c7:91:1f:13:a5:1f:44:1c:15:cc:83:9a:e1:b8:fa:
c9:a5:ca:1c:60:08:06:32:60:f8:42:b1:b1:f0:46:
63:bf:c6:f5:da:2a:32:37:a0:10:44:1c:26:55:28:
a6:69:9c:90:82:ae:15:62:0a:1f:eb:10:47:c1:f8:
8d:db:38:64:03:4f:cd:6d:fe:f7:15:b8:52:75:3c:
bf:c3:0c:61:09:cc:78:af:19:5f:af:80:c3:8b:6c:
d3:39:5b:33:a9:97:30:bd:1a:e6:bc:d3:6b:43:da:
11:39:20:1e:b2:f3:a2:fe:5b:dd:26:7b:14:87:2e:
18:3d:1d:53:7c:3b:7c:f7:5c:c3:11:eb:34:ed:f1:
12:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E8:D4:56:B5:AF:77:B0:74:A3:CE:43:68:A2:DF:62:01:03:61:88
X509v3 Authority Key Identifier:
keyid:9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/7OjUVrWvd7B0o85DaKLfYgEDYYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.39.0/24
Signature Algorithm: sha256WithRSAEncryption
31:a8:0a:de:4a:9e:62:d2:10:33:0f:99:ce:8b:fa:ef:ad:5f:
6f:ad:d7:8e:46:23:6d:cf:76:21:43:ac:5f:dd:50:ec:7a:ba:
ef:de:b2:a6:4b:ed:ef:63:c2:2e:d5:8e:fb:a4:cf:0c:5b:4e:
97:16:21:12:99:a8:65:c6:7b:07:7c:0e:ee:0f:48:e6:1d:5d:
18:b8:bb:b4:d6:df:7c:d9:d3:8e:70:03:12:3c:eb:b7:51:fb:
78:88:f9:9f:27:3f:a0:a0:13:2c:cb:08:5c:c0:5f:93:57:f2:
9b:6d:1f:0f:75:d8:89:dd:25:18:58:e7:21:1a:6f:05:9a:3d:
db:48:4c:72:a0:f0:65:df:a1:8c:f1:ff:8c:db:0e:c5:9f:13:
d2:90:0e:9c:4c:72:f9:6d:ed:92:c3:6d:22:fc:73:40:eb:8f:
af:6b:66:fd:74:b2:76:38:06:10:72:1f:e7:82:5d:e9:83:6c:
c6:d2:0c:90:79:af:cb:86:36:75:37:4e:0c:ed:2e:be:dc:25:
57:78:64:56:cc:b7:0d:80:7e:88:c6:42:b8:2e:f7:c4:96:42:
59:b3:e0:e5:a4:dd:92:5c:2b:18:16:60:bb:f3:7e:7b:5e:53:
e8:d0:30:88:c7:d3:4d:c3:28:44:97:f5:bf:ce:a5:d0:7f:d8:
e1:01:2a:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:46 2025 by rpki-client