Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/HVgAsSPAJtVeW47YxnAzUSRZ2XE.roa
File: HVgAsSPAJtVeW47YxnAzUSRZ2XE.roa (raw, json)
Hash identifier: ujzlkp7V44O0FlU9UIiFJL7+uhPl67nPKIBt3ipHwtM=
Subject key identifier: 1D:58:00:B1:23:C0:26:D5:5E:5B:8E:D8:C6:70:33:51:24:59:D9:71
Certificate issuer: /CN=814edbd19634cbb91a0d2dafd759d4c9a7e77b7a
Certificate serial: 019425FBF2ADD50F43F8DF3A7F7E5672DA96
Authority key identifier: 81:4E:DB:D1:96:34:CB:B9:1A:0D:2D:AF:D7:59:D4:C9:A7:E7:7B:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gU7b0ZY0y7kaDS2v11nUyafne3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/HVgAsSPAJtVeW47YxnAzUSRZ2XE.roa
Signing time: Thu 02 Jan 2025 07:47:36 +0000
ROA not before: Thu 02 Jan 2025 07:47:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215403
IP address blocks: 45.92.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fb:f2:ad:d5:0f:43:f8:df:3a:7f:7e:56:72:da:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=814edbd19634cbb91a0d2dafd759d4c9a7e77b7a
Validity
Not Before: Jan 2 07:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d5800b123c026d55e5b8ed8c67033512459d971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5d:39:18:ce:4d:0c:cf:67:ec:67:7b:54:91:
e0:3e:27:4d:5a:08:75:19:ca:e6:4f:23:9b:22:11:
f8:d5:ea:40:ba:73:0b:05:fe:f2:52:98:a0:8f:33:
41:2d:b8:1c:48:c1:d8:0e:32:92:22:ec:53:36:3d:
f8:11:5a:75:af:9b:ee:05:b0:20:ae:42:e8:44:20:
2a:0f:18:85:53:7f:fd:48:5a:43:36:07:17:19:f4:
5e:a8:f4:c3:eb:44:71:de:ed:2e:d8:76:c8:df:94:
9f:d9:bd:e9:ba:c0:2c:e6:de:eb:7f:7e:f2:23:a4:
51:52:5d:05:ff:86:be:9a:33:82:b1:2f:eb:97:08:
54:04:e4:8e:31:da:9d:7c:67:a3:83:14:1d:4d:5e:
3a:6d:a1:46:a1:36:a1:94:34:3c:c6:b9:2f:36:20:
5f:ce:b8:e4:24:13:ed:dd:47:dd:a4:48:5a:42:fb:
d7:37:e1:31:a7:28:72:19:07:b2:83:46:9e:25:1c:
2a:b5:0a:d1:ef:e4:c8:d9:7f:d9:35:db:52:eb:d1:
40:12:9d:1a:ad:9b:02:06:df:64:5e:af:cb:19:4f:
84:40:5c:9b:10:22:c6:02:82:2f:c4:5d:1c:53:ad:
c8:fb:11:66:f0:4d:f7:2e:a9:a4:bb:fc:93:86:98:
c9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:58:00:B1:23:C0:26:D5:5E:5B:8E:D8:C6:70:33:51:24:59:D9:71
X509v3 Authority Key Identifier:
keyid:81:4E:DB:D1:96:34:CB:B9:1A:0D:2D:AF:D7:59:D4:C9:A7:E7:7B:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gU7b0ZY0y7kaDS2v11nUyafne3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/HVgAsSPAJtVeW47YxnAzUSRZ2XE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e82de9-25f4-466e-9c0c-c08997a7a08f/1/gU7b0ZY0y7kaDS2v11nUyafne3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.13.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:73:48:5c:e4:f0:f9:3b:be:89:f0:99:be:39:5b:ba:b6:c3:
cf:7a:69:7f:f0:7a:1c:8c:0b:3d:f1:f3:dc:7f:15:fc:0f:b7:
d9:43:3c:1a:8f:e9:ab:20:74:d9:3b:a1:a5:ea:a1:c1:c5:31:
fc:66:d3:c9:9e:fc:3c:ec:f9:9c:33:ef:ac:78:a3:6c:25:d0:
1f:df:e6:af:74:b9:2e:bb:a7:78:bc:aa:3a:db:19:07:5c:ae:
38:d9:51:e4:a1:be:f8:22:bc:f0:da:55:ba:ab:ee:75:2a:4d:
a2:47:1d:95:7d:e2:0d:4c:ea:65:4b:98:12:a0:81:bb:2e:0f:
91:db:e2:d0:3f:06:0d:07:af:01:9f:17:a7:2c:4f:28:73:98:
da:ee:03:b8:1a:22:40:a8:89:d5:65:e2:3d:4d:2a:4f:a7:07:
d6:e7:ac:c9:e0:bf:30:b7:72:d6:04:d2:e1:83:97:5c:0e:0e:
b4:1e:bc:04:b2:55:20:9f:a7:91:bb:56:3d:bc:8f:69:a6:ba:
54:87:a2:97:a1:c5:d9:b5:e4:54:a8:23:d9:d7:7f:61:aa:76:
a4:f8:b5:6f:ba:ca:62:38:a8:b4:8a:9c:30:9b:b1:c5:3b:86:
29:1d:e5:ea:3a:7e:6a:bb:b4:44:fb:0f:48:12:50:09:fc:59:
9a:6e:79:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:30:48 2025 by rpki-client