Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/17a621-edae-4a9b-8455-fcc0091fe9e6/1/Akagd0l7QO9OvkucPctZVYCXA9M.roa
File: Akagd0l7QO9OvkucPctZVYCXA9M.roa (raw, json)
Hash identifier: IhMY55O2zxdfLlGwJcA2GKoYXI6fuVYr/yI0EHnUALg=
Subject key identifier: 02:46:A0:77:49:7B:40:EF:4E:BE:4B:9C:3D:CB:59:55:80:97:03:D3
Certificate issuer: /CN=747bb7c24505b6f58f94817d7c8d5376756d37fc
Certificate serial: 019425FCF8C1C0E2E0BC6B8FBD47C9B9CF1D
Authority key identifier: 74:7B:B7:C2:45:05:B6:F5:8F:94:81:7D:7C:8D:53:76:75:6D:37:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHu3wkUFtvWPlIF9fI1TdnVtN_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/17a621-edae-4a9b-8455-fcc0091fe9e6/1/Akagd0l7QO9OvkucPctZVYCXA9M.roa
Signing time: Thu 02 Jan 2025 07:48:43 +0000
ROA not before: Thu 02 Jan 2025 07:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215982
IP address blocks: 45.132.152.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:f8:c1:c0:e2:e0:bc:6b:8f:bd:47:c9:b9:cf:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747bb7c24505b6f58f94817d7c8d5376756d37fc
Validity
Not Before: Jan 2 07:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0246a077497b40ef4ebe4b9c3dcb5955809703d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f9:8a:ca:81:1c:9b:36:b4:a5:e9:f7:2c:ad:
e6:b4:5e:9a:ee:3a:64:70:5d:6d:5b:28:12:47:74:
e3:4f:7b:1c:d7:b2:eb:f7:77:e7:2b:bc:67:aa:b1:
4f:05:57:25:bb:0d:c6:3f:ed:d3:3d:0c:ee:36:41:
fd:4e:7b:0f:88:a1:1c:50:2b:8f:94:eb:79:19:1f:
e9:7c:a5:be:af:d5:fc:14:e5:41:4b:97:41:91:f1:
58:4c:04:c2:6c:c4:47:91:85:f7:f6:13:6c:f3:3b:
ac:da:95:91:e8:5a:a8:d3:91:f0:f8:10:f2:0a:ec:
50:56:41:76:bf:61:00:c9:f2:27:5d:96:f4:1e:4d:
e1:c4:bc:4c:13:42:0e:62:d0:61:cd:96:14:ce:c8:
9c:d9:ba:57:64:8e:12:eb:b4:e4:20:30:32:a9:6d:
12:84:20:82:64:79:52:2d:a8:e7:22:5b:bd:9e:dc:
28:9f:5a:00:7d:c0:ea:03:c8:97:e6:7e:37:1f:e4:
46:07:fb:89:3a:9d:5e:a6:74:52:13:f3:df:44:2c:
57:47:0f:8b:42:26:51:88:3a:c4:13:76:aa:6b:da:
20:38:ca:38:7e:c3:85:ec:3a:04:c9:79:07:79:32:
95:75:6e:c4:33:e1:c0:d7:46:fe:b8:d8:25:5c:69:
78:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:46:A0:77:49:7B:40:EF:4E:BE:4B:9C:3D:CB:59:55:80:97:03:D3
X509v3 Authority Key Identifier:
keyid:74:7B:B7:C2:45:05:B6:F5:8F:94:81:7D:7C:8D:53:76:75:6D:37:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHu3wkUFtvWPlIF9fI1TdnVtN_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/17a621-edae-4a9b-8455-fcc0091fe9e6/1/Akagd0l7QO9OvkucPctZVYCXA9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/17a621-edae-4a9b-8455-fcc0091fe9e6/1/dHu3wkUFtvWPlIF9fI1TdnVtN_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.152.0/22
Signature Algorithm: sha256WithRSAEncryption
93:7a:53:89:41:73:0a:e7:52:ec:45:75:81:51:ea:fb:29:04:
64:7b:29:ca:8f:77:36:74:b5:e3:43:d9:1d:f8:01:9a:cf:a0:
4e:56:4d:77:15:aa:0b:c5:02:0e:c4:6e:d8:c7:b7:38:bc:d4:
cc:a8:03:9d:66:ed:99:37:94:2e:fc:c0:31:16:59:0b:54:4e:
38:8c:1d:4b:a3:6b:20:34:0f:2a:4f:71:55:de:69:6c:e5:b6:
65:58:df:5a:ae:31:2e:98:af:22:76:59:ac:4a:c2:a1:2a:b1:
75:c4:3d:a8:1b:e8:ab:ec:98:27:fb:6d:6c:bd:56:00:17:2d:
c7:25:e7:91:8e:eb:fd:1d:42:37:da:de:36:c0:60:4f:43:df:
32:16:de:33:b8:6c:68:9a:15:d5:8a:ac:26:72:7a:ac:ca:89:
c2:a8:bf:aa:e2:a6:af:5d:7d:97:b0:2b:ea:f9:67:6f:0d:a5:
f2:29:3b:c3:0e:6e:e5:04:46:a5:3e:7f:40:ae:9d:e2:c5:bd:
79:98:9c:09:f8:e5:31:2d:23:06:a8:07:d8:ee:38:3b:5a:27:
9b:94:66:63:86:06:99:b5:e3:b5:6b:6c:6b:2f:90:b9:e6:bb:
61:b9:26:34:ad:a8:f3:33:fc:67:a8:50:6e:2c:d7:09:56:96:
bf:dc:94:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:58:33 2025 by rpki-client