Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/jI6_drTo1PWnufC4oiNHSu223XA.roa
File: jI6_drTo1PWnufC4oiNHSu223XA.roa (raw, json)
Hash identifier: Ni1IeOuPqg+nIvkmnYu+vOs52S50BNNNPDhfXtty6xU=
Subject key identifier: 8C:8E:BF:76:B4:E8:D4:F5:A7:B9:F0:B8:A2:23:47:4A:ED:B6:DD:70
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 01941FFA6B57C16F0C8C3797A35C7A105BFB
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/jI6_drTo1PWnufC4oiNHSu223XA.roa
Signing time: Wed 01 Jan 2025 03:48:12 +0000
ROA not before: Wed 01 Jan 2025 03:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210636
IP address blocks: 45.134.21.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:6b:57:c1:6f:0c:8c:37:97:a3:5c:7a:10:5b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Jan 1 03:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8c8ebf76b4e8d4f5a7b9f0b8a223474aedb6dd70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9d:ae:3f:a6:4e:6f:b9:3e:70:89:2c:b7:d8:
d3:90:5d:f6:0b:69:44:9f:33:86:9c:fa:51:1b:36:
f2:0c:a5:a9:9c:bf:91:6b:4e:c4:07:da:89:00:d0:
23:f5:9a:70:10:59:5f:9f:c3:61:a8:fc:42:1c:5e:
9e:a5:6c:6a:84:2d:a2:5d:07:73:40:67:a1:73:ec:
b1:43:d0:ed:23:70:c9:ee:4b:50:3a:d9:a6:d0:9d:
7e:68:cb:ce:a9:7e:e2:54:b6:ec:71:99:f4:92:3e:
ee:5d:34:e4:5a:3f:fd:c1:92:dd:cc:59:bb:4d:9b:
ff:55:fa:7d:ab:2a:56:57:42:f3:88:6b:fa:22:88:
ed:b6:76:b6:ee:48:a9:7c:1a:4f:ad:87:84:be:8e:
7b:c2:8f:bb:da:81:dd:71:64:6a:36:cf:b7:11:a9:
c2:d0:e7:dd:7d:fc:da:fb:c3:83:ad:c6:db:2f:13:
32:2e:66:d5:a3:94:50:bf:2e:34:7d:93:7d:f8:fc:
a8:4d:1b:b6:74:10:9a:57:ee:84:c3:7c:9b:68:e7:
e4:26:dd:bb:aa:10:61:74:0b:c5:97:71:c6:03:7d:
63:06:a0:34:7e:05:ba:d4:ab:a8:3c:a7:c0:47:41:
56:98:15:92:4c:72:ac:8f:e2:5b:9f:b6:90:c1:f3:
3b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8E:BF:76:B4:E8:D4:F5:A7:B9:F0:B8:A2:23:47:4A:ED:B6:DD:70
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/jI6_drTo1PWnufC4oiNHSu223XA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.21.0/24
Signature Algorithm: sha256WithRSAEncryption
35:9d:43:8a:f9:0d:54:7d:46:d1:84:72:74:d2:70:64:d7:20:
ec:fc:1e:31:9f:93:27:d8:7d:b1:3c:c7:f5:db:94:e1:da:37:
32:26:13:60:54:9e:90:2a:86:fb:8c:00:2b:62:16:a9:89:a9:
74:a5:a1:74:45:65:2b:0d:74:f0:56:83:38:2d:d3:0f:aa:7e:
e6:e2:81:5a:df:38:1b:d6:56:93:bf:fd:2d:ef:d6:d2:ef:e6:
3b:c1:9c:61:84:88:ad:50:14:16:17:b9:ef:44:68:a3:43:06:
9c:3a:ef:db:e8:4d:ea:1e:df:7a:41:b1:46:a4:85:a4:d5:89:
42:2a:16:9e:45:eb:e1:bc:d1:41:0e:6f:76:60:0d:35:42:96:
65:79:24:1b:66:05:73:18:6e:ed:e4:14:1a:8b:b8:f5:5f:03:
12:3a:23:17:3b:f8:94:91:36:c8:57:4f:75:25:11:3e:03:26:
f9:5c:fb:30:ac:2f:b9:62:fe:c0:c9:e0:c7:d0:15:8c:7c:e9:
49:2e:27:51:96:47:61:02:63:a2:8f:1a:06:6a:a5:3e:9f:b0:
bb:b7:c6:76:93:a7:3f:1d:ca:b6:23:b9:c6:e6:f8:8f:9f:45:
0c:29:ca:07:58:73:ab:74:c0:7b:18:12:90:b7:3f:26:b3:65:
e2:af:5b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 17:35:29 2025 by rpki-client