Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SFCVsiiXUthsKyNT60Z9u4mqoJE.roa
File: SFCVsiiXUthsKyNT60Z9u4mqoJE.roa (raw, json)
Hash identifier: pll2sPspksSZN8GfRpe6qLPDu8rCVZGVMItLWkdWWCg=
Subject key identifier: 48:50:95:B2:28:97:52:D8:6C:2B:23:53:EB:46:7D:BB:89:AA:A0:91
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 019424452493DA91A8862EE3642A9DD46518
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SFCVsiiXUthsKyNT60Z9u4mqoJE.roa
Signing time: Wed 01 Jan 2025 23:48:18 +0000
ROA not before: Wed 01 Jan 2025 23:48:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57529
IP address blocks: 45.132.36.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:24:93:da:91:a8:86:2e:e3:64:2a:9d:d4:65:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Jan 1 23:48:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=485095b2289752d86c2b2353eb467dbb89aaa091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:97:58:e5:5b:e5:16:95:73:24:fa:6d:bf:a7:
53:0e:c9:19:43:51:a4:d9:26:72:5a:a1:fb:f9:f6:
02:17:12:05:33:b7:20:be:d5:ce:39:67:34:27:a3:
7e:3a:a9:91:cc:fc:8c:b8:ff:7b:39:69:f3:70:cb:
94:7b:68:06:4f:32:d9:f5:8d:ff:21:0a:a1:d2:85:
8d:de:fe:92:2c:cc:61:6f:24:db:a3:b1:03:fc:8d:
3d:31:5f:b5:2e:89:d4:d5:4b:f3:ff:7b:a6:31:b6:
0d:50:57:dd:58:45:4b:81:68:af:ed:ac:4f:0a:d3:
38:39:1c:93:46:5b:69:53:dd:2f:b7:55:5f:0b:fe:
82:e5:49:e3:92:b2:ca:21:1e:11:71:95:7d:ac:39:
cf:51:af:df:4e:95:04:7b:3c:13:6e:dc:7d:98:2b:
d9:5d:9b:e5:04:f7:00:f3:e9:5e:9a:2c:75:af:09:
59:7d:ed:49:28:2c:d9:b7:13:6a:8b:c6:f4:84:8f:
78:ab:bb:36:4d:4e:4d:ef:85:f9:e7:0c:07:e0:79:
a9:04:f3:4a:e5:07:10:5c:26:0e:06:20:07:25:24:
8a:fe:3b:98:30:95:d9:e3:1b:9f:a2:40:ae:fc:bd:
4e:3e:c1:af:f2:92:83:fb:43:dc:d6:a7:c6:c3:a9:
67:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:50:95:B2:28:97:52:D8:6C:2B:23:53:EB:46:7D:BB:89:AA:A0:91
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SFCVsiiXUthsKyNT60Z9u4mqoJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.36.0/23
Signature Algorithm: sha256WithRSAEncryption
02:4a:8f:e6:16:d4:e1:4e:00:dd:8a:e0:98:7e:0f:33:33:f4:
e5:c6:74:7a:c0:e8:31:44:c7:83:75:d0:67:6e:24:10:3a:d9:
ec:c3:64:65:bb:8e:4b:f2:f9:71:76:10:af:9c:87:4e:b5:93:
f9:65:d3:e5:07:a5:74:3e:73:de:ce:3e:da:a0:89:2e:0f:35:
b8:5e:f3:7c:7e:64:85:2a:a1:b1:07:f2:4d:dc:ff:b5:a9:75:
81:be:5d:fa:d1:06:8f:23:8c:a3:9b:c7:b9:2d:4e:6c:af:8d:
37:fc:7e:79:3a:b7:04:b5:8d:fc:65:a2:43:4b:2c:c9:41:34:
21:ab:6f:be:13:a3:0e:13:23:7f:f0:fc:a3:ec:7d:d4:e5:a0:
cf:83:93:a2:14:a8:66:bb:72:ff:f2:7d:97:f3:23:2b:ef:fb:
cb:b5:b8:ab:4a:9c:21:94:c9:79:8b:0e:90:70:dd:39:a2:18:
e1:00:8b:8b:51:8c:ca:97:4a:06:8f:d4:17:e7:32:a3:2a:8b:
1a:da:a5:84:d6:0e:34:99:72:ea:91:e1:44:89:b7:0b:6d:c4:
5d:2f:12:13:b8:f9:d5:f0:44:41:42:9b:99:f0:2b:eb:0c:6e:
4d:bc:39:e2:55:65:c4:e3:60:09:7f:e5:fe:c5:f3:87:b1:17:
88:ad:48:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:37:56 2025 by rpki-client