Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/30eF8SISEtAfjn-BTPJ5vTzW5Ug.roa
File: 30eF8SISEtAfjn-BTPJ5vTzW5Ug.roa (raw, json)
Hash identifier: lOHMxqFybx+4TtydDQWhvEEGRJI3WuoFfIBD7clZDDc=
Subject key identifier: DF:47:85:F1:22:12:12:D0:1F:8E:7F:81:4C:F2:79:BD:3C:D6:E5:48
Certificate issuer: /CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Certificate serial: 018CC801F2103FAD0C37C2AF5593E8A86339
Authority key identifier: D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/30eF8SISEtAfjn-BTPJ5vTzW5Ug.roa
Signing time: Tue 02 Jan 2024 02:30:19 +0000
ROA not before: Tue 02 Jan 2024 02:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 45.145.176.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:f2:10:3f:ad:0c:37:c2:af:55:93:e8:a8:63:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Validity
Not Before: Jan 2 02:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df4785f1221212d01f8e7f814cf279bd3cd6e548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ee:d5:b6:2f:a3:70:09:5f:c8:60:da:c3:e7:
c8:7c:cf:bd:87:35:3c:02:41:b9:fe:2b:78:02:58:
4e:79:40:b3:90:44:ce:f3:9e:25:4e:97:c5:a1:30:
93:c9:02:9b:62:47:fd:f7:e1:a1:0b:0c:d2:dd:80:
90:70:86:82:8e:b5:73:bc:81:3b:2e:a3:7c:c5:fb:
9b:27:5a:cf:f9:c0:02:71:df:3a:3c:a8:7e:72:c5:
f8:c6:ad:7e:fc:42:0c:51:2d:9b:07:c7:fc:26:a5:
46:10:a4:ed:bc:58:82:72:b0:ea:f6:ca:ec:7b:71:
f5:d3:74:60:87:b4:cd:6d:55:1b:c6:df:c2:2a:cc:
1f:65:f7:a7:c0:34:52:0d:21:d9:6a:00:71:7e:fe:
7d:25:63:76:b9:48:b7:cc:15:2e:31:b0:eb:85:8f:
8d:57:d7:a2:de:b4:c8:71:1f:5d:9b:9c:5e:64:8c:
62:d8:76:97:9b:b3:a1:54:3a:0f:e9:74:7c:da:59:
8c:29:66:53:d0:f6:4a:87:ee:8f:cc:3d:2a:31:7a:
cf:9b:80:bd:fa:41:25:16:8f:f1:e3:48:06:46:bb:
53:0f:14:74:9b:92:85:d4:5a:ef:2d:b8:89:0a:fd:
3e:fe:c5:2b:2f:35:a3:2a:4a:46:92:f6:6a:c6:73:
98:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:47:85:F1:22:12:12:D0:1F:8E:7F:81:4C:F2:79:BD:3C:D6:E5:48
X509v3 Authority Key Identifier:
keyid:D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/30eF8SISEtAfjn-BTPJ5vTzW5Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/0romGKtLYELuJcRnngd15DBtccY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.176.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:f2:de:15:3d:5f:47:0c:fa:0e:c6:eb:d5:f6:52:93:28:3f:
6c:c9:59:e8:1a:a7:29:63:66:ba:c3:21:a0:20:35:cc:9d:58:
92:b1:f8:93:5d:cc:e5:b1:2e:5e:f0:18:8a:95:55:77:f9:b5:
35:3c:f1:ec:ad:e8:54:b6:20:cc:ac:c4:1e:f4:57:ff:a4:94:
9c:2d:fd:c5:89:17:f4:86:c1:25:2a:e0:cf:51:64:04:42:22:
25:f8:60:7a:c2:13:03:15:c7:aa:a7:24:b1:10:9b:47:cb:62:
85:42:d3:b0:36:d4:5b:e0:eb:2e:dd:b6:fd:8f:24:94:2d:a1:
68:dd:e6:a1:07:75:42:99:7b:37:1e:48:0f:6f:5b:47:44:33:
fe:f3:69:c3:83:01:8b:2e:a9:3d:03:29:17:4c:b1:aa:d7:4c:
d2:31:f3:42:09:6c:49:8c:5a:9a:51:47:7e:8c:4a:38:9f:89:
68:c7:f7:30:34:18:93:dc:27:98:4c:c1:74:32:af:57:ea:c3:
5c:03:f1:1b:60:57:ab:ce:be:ea:5c:af:9a:85:7b:82:f3:4a:
f2:28:80:cf:dc:8a:50:51:17:42:20:cd:9f:ae:29:e5:ff:43:
21:b2:a7:63:a9:b7:f7:ee:4b:c3:ac:bd:a9:64:19:be:ad:00:
64:71:5b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:07:34 2025 by rpki-client