Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/dL6QyTMH147RYvNbATR7wK8mAf8.roa
File: dL6QyTMH147RYvNbATR7wK8mAf8.roa (raw, json)
Hash identifier: lSk9mx0oL0nyVdSJ+hGB8xudUQAwa8IcLy2XJ8XP0tY=
Subject key identifier: 74:BE:90:C9:33:07:D7:8E:D1:62:F3:5B:01:34:7B:C0:AF:26:01:FF
Certificate issuer: /CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Certificate serial: 0194258F68162449D6D74889653344D6CE91
Authority key identifier: F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/dL6QyTMH147RYvNbATR7wK8mAf8.roa
Signing time: Thu 02 Jan 2025 05:49:02 +0000
ROA not before: Thu 02 Jan 2025 05:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 35197
IP address blocks: 45.159.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:68:16:24:49:d6:d7:48:89:65:33:44:d6:ce:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Validity
Not Before: Jan 2 05:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74be90c93307d78ed162f35b01347bc0af2601ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:38:5c:2d:27:c5:36:54:a5:1e:a3:92:ce:a0:
d5:5d:5f:06:36:25:5e:e1:ed:d5:80:27:ab:e2:37:
e7:d7:5f:59:41:bd:4f:c0:b3:06:b1:a3:e6:3c:30:
27:fc:62:56:55:aa:c3:6c:2d:88:09:14:5d:79:7f:
0b:1e:11:4d:21:77:54:8d:a7:09:68:95:65:c6:80:
ab:1f:d4:45:08:9e:26:e0:fd:12:aa:b2:4c:e9:a0:
34:62:65:76:a8:b6:58:31:66:f1:4c:1d:2b:28:14:
ae:30:5a:0e:95:de:c0:9a:7e:2e:09:9e:53:b4:38:
37:cb:90:11:05:46:97:b0:df:9b:20:7a:65:6b:ef:
5d:6b:30:1c:c1:c7:2e:12:be:f6:4e:c7:d7:78:9d:
ad:90:7c:ed:29:61:06:c6:57:63:99:45:ef:2d:93:
a7:d5:7c:e2:85:67:5f:ee:03:1d:b9:fc:a5:d7:18:
02:41:d8:51:c3:61:99:7c:ce:b7:e3:aa:39:19:28:
27:a3:d4:5e:51:1d:ed:76:70:45:b7:6c:b8:7e:cf:
19:09:32:61:0f:98:f4:cc:90:d0:47:ca:3b:70:73:
e1:7c:f0:3a:e2:10:4e:25:e8:0f:96:6f:a5:b8:32:
bb:f7:03:7b:7f:76:4a:f3:43:6d:7c:39:ee:d8:ea:
e7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BE:90:C9:33:07:D7:8E:D1:62:F3:5B:01:34:7B:C0:AF:26:01:FF
X509v3 Authority Key Identifier:
keyid:F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/dL6QyTMH147RYvNbATR7wK8mAf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/1-FVaeIP5K5-bpCKpa045e_X7j8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.187.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:bd:d6:cd:34:3f:e6:c3:32:b5:f8:8e:db:28:10:2e:31:d9:
a7:71:4e:7a:8b:36:b4:99:c9:4e:c8:a3:2c:f8:6a:3e:73:6c:
7f:12:5b:52:1b:f9:dc:c7:94:b6:28:b9:97:e9:0f:af:20:e7:
b7:4c:7c:59:fe:04:54:07:e2:fd:f2:81:8f:41:f3:8a:f2:21:
8c:70:72:02:ea:99:8f:af:6a:b9:db:2f:94:70:b9:49:94:45:
bc:c6:9a:bc:02:ae:b1:30:7d:3f:db:bb:b0:8c:8b:cf:36:76:
b5:9f:4d:7e:03:30:53:92:1e:44:d7:1e:b3:b9:b0:e3:75:19:
ca:f8:d6:6d:d4:08:e7:c9:3e:25:ca:e0:e8:95:e2:bf:55:18:
e5:ec:07:cd:5d:67:47:f0:1a:a7:cc:a1:8c:18:64:8c:30:dc:
b5:ae:b0:8a:0e:f2:aa:d8:09:e6:e0:85:f1:84:4a:bc:01:fd:
09:8f:96:81:3f:5a:c5:d0:e5:a2:9a:eb:33:1e:76:2b:cd:6a:
fc:ec:3b:9e:05:3b:fb:31:5f:e5:ec:3c:f5:5a:ce:54:fe:33:
7f:ea:70:06:83:58:31:e8:f2:3e:08:ef:9b:a2:0f:af:37:69:
b4:cc:37:0f:a7:49:16:5b:36:cf:46:6d:22:c7:0c:c7:af:8f:
d1:35:68:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 07:02:39 2025 by rpki-client