Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/v__X-oKUPfPpQVjeMpL75yqUJtU.roa
File: v__X-oKUPfPpQVjeMpL75yqUJtU.roa (raw, json)
Hash identifier: e/rVpi5jIjpVu4k1MN5Swd9eKz2hAA948inAgA1yivk=
Subject key identifier: BF:FF:D7:FA:82:94:3D:F3:E9:41:58:DE:32:92:FB:E7:2A:94:26:D5
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01941FFA7686DEEC99A86D8296302A297FAE
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/v__X-oKUPfPpQVjeMpL75yqUJtU.roa
Signing time: Wed 01 Jan 2025 03:48:15 +0000
ROA not before: Wed 01 Jan 2025 03:48:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34854
IP address blocks: 45.13.118.0/24 maxlen: 24
2a0c:b642:fc0::/43 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:76:86:de:ec:99:a8:6d:82:96:30:2a:29:7f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 03:48:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bfffd7fa82943df3e94158de3292fbe72a9426d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:5d:80:7e:ca:2d:5b:61:57:03:24:f1:5d:
0c:d1:5d:cd:8a:d1:6c:33:ec:e9:ea:5e:e1:2f:91:
c0:cd:b2:5d:53:16:45:b6:07:b6:06:77:e0:27:95:
9d:bd:69:ce:1b:1b:94:4b:c9:97:4a:a0:c8:0e:6e:
9d:60:8a:99:68:64:ae:7c:90:e0:82:59:25:fb:e3:
fc:22:1a:3c:cd:8a:62:e2:2b:26:86:fd:ca:c9:7f:
01:3c:bd:6e:42:1a:7f:b0:3e:4e:34:7c:95:2b:ab:
77:83:92:71:3a:b5:ce:26:39:34:82:09:d8:ae:ea:
96:f4:87:c1:9a:10:80:75:0e:24:e1:ba:f2:ee:51:
c9:85:72:95:8c:8f:c8:69:e2:64:b1:8c:a2:15:06:
83:40:23:1e:22:e2:e4:62:fd:42:ab:56:04:cb:db:
00:53:e3:4d:99:15:07:d4:56:94:da:8a:64:3c:64:
6e:9b:2d:a6:a3:87:0d:a1:ad:41:cb:f4:f8:52:07:
12:2f:2e:da:90:52:fb:2f:56:7c:9e:25:1d:eb:fa:
55:8e:a0:f2:58:d1:55:ac:9a:17:27:c4:ae:6a:bd:
ea:92:ca:3e:5b:f0:41:36:e0:86:42:f6:3e:02:49:
df:03:d1:3d:b8:38:49:a0:d4:c5:3d:9b:26:23:2d:
a5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:FF:D7:FA:82:94:3D:F3:E9:41:58:DE:32:92:FB:E7:2A:94:26:D5
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/v__X-oKUPfPpQVjeMpL75yqUJtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.118.0/24
IPv6:
2a0c:b642:fc0::/43
Signature Algorithm: sha256WithRSAEncryption
1f:81:23:fe:ff:89:54:51:b2:22:06:78:0f:c5:d3:b7:b7:57:
67:a8:47:36:7d:2e:89:12:96:20:45:88:28:26:37:0a:48:23:
6b:f3:92:8e:65:e6:84:74:81:ba:37:a9:d0:ff:81:5a:23:b8:
7d:70:46:4b:8d:6d:10:f2:7e:92:86:03:88:29:29:84:3b:d5:
cc:bd:8b:8a:bf:1b:a7:3b:f6:21:d9:d4:c8:e3:90:83:53:19:
b8:76:5c:34:a0:4f:de:22:2b:a5:66:57:63:a3:47:3e:8a:e8:
bc:c3:c7:ee:9e:38:df:61:86:ad:65:01:fb:2c:0b:b5:3d:95:
88:35:e2:44:f7:2c:43:b2:a2:d5:4c:3a:58:79:3e:5f:fb:30:
17:99:c0:2c:b8:28:24:55:07:99:8c:5b:d4:42:2f:43:5e:92:
9e:c9:82:58:65:ec:ba:78:1a:56:df:80:a3:88:af:da:0b:4d:
ee:f8:d5:f8:dc:fb:fc:e9:11:95:cd:e6:1b:12:59:25:6a:f1:
50:3f:81:60:15:9e:5c:35:93:45:f9:c7:d9:46:2f:61:d2:39:
45:c4:c4:b5:5e:df:18:dc:44:61:03:18:4f:5b:19:b6:fa:84:
45:a0:ae:b6:9f:5a:4d:c4:11:8b:fd:7f:df:23:0b:b8:e4:73:
c6:d5:9b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:51:50 2025 by rpki-client