Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/hj80hnb2niBBNHp22xfNPpXEbQM.roa
File: hj80hnb2niBBNHp22xfNPpXEbQM.roa (raw, json)
Hash identifier: rD1+7098X87+oRFyY0knEf0O3QAd6XMqFszyW+lBKlM=
Subject key identifier: 86:3F:34:86:76:F6:9E:20:41:34:7A:76:DB:17:CD:3E:95:C4:6D:03
Certificate issuer: /CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Certificate serial: 019422FB45C8E106BEB0CBD2A1FF1951FBF9
Authority key identifier: 5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/hj80hnb2niBBNHp22xfNPpXEbQM.roa
Signing time: Wed 01 Jan 2025 17:48:00 +0000
ROA not before: Wed 01 Jan 2025 17:48:00 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 136744
IP address blocks: 45.89.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:45:c8:e1:06:be:b0:cb:d2:a1:ff:19:51:fb:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Validity
Not Before: Jan 1 17:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=863f348676f69e2041347a76db17cd3e95c46d03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f3:92:98:e0:0c:71:60:08:dc:b2:f6:84:16:
b5:ab:eb:9d:c0:bb:38:3c:02:53:78:ee:a0:fe:a7:
47:e5:05:36:8e:77:f1:fc:42:ad:01:70:c2:4b:89:
57:1e:50:ab:e9:ec:17:e5:79:32:6c:a6:6d:50:71:
9d:9b:fd:84:ab:74:06:a0:d6:51:07:3c:8e:a9:06:
59:7d:d8:f5:9c:2c:ba:a8:31:1d:c1:7b:3b:9b:17:
52:d7:e5:86:d2:a0:d3:2a:b0:b5:b0:83:84:ef:a2:
72:95:90:c4:da:d7:07:3b:fa:c1:b2:2c:c5:d9:5a:
29:3a:4e:6a:8e:5d:9a:30:af:9e:c5:ef:44:7d:a3:
16:c9:24:e1:ae:e7:92:6b:e1:84:06:09:77:27:b9:
0e:e0:22:d6:53:1f:8c:64:3f:1d:05:de:0b:e9:01:
52:ef:d2:ed:c8:72:72:9f:f3:46:57:8a:4a:ab:45:
fa:f5:a3:11:a6:83:8a:16:ef:e1:69:af:ea:2d:48:
46:d3:ed:9b:46:95:36:5d:56:60:4c:2f:8f:b3:7e:
86:4f:f2:dd:6d:1f:1b:30:b0:e3:02:65:7c:24:11:
34:91:60:08:5c:f5:cb:42:80:17:fb:64:6b:00:f7:
31:a9:d9:db:4f:59:03:d4:9b:1c:9c:ae:c1:a9:80:
a3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:3F:34:86:76:F6:9E:20:41:34:7A:76:DB:17:CD:3E:95:C4:6D:03
X509v3 Authority Key Identifier:
keyid:5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/hj80hnb2niBBNHp22xfNPpXEbQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/Xu4NfnMISkLkx_cRjyOD_P82m6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.31.0/24
Signature Algorithm: sha256WithRSAEncryption
76:49:2b:6b:6e:7d:a7:b9:62:39:7e:8c:e4:f6:d0:b3:cf:b5:
28:39:a9:47:3f:49:32:5e:02:d6:97:98:9a:39:ed:1b:1f:fc:
22:e5:e2:66:63:ac:f0:c8:da:a5:e8:48:4b:15:40:90:93:cf:
11:fe:0b:6b:19:01:4f:f2:07:89:86:e4:6f:86:7a:79:a1:51:
3b:92:7f:4b:84:36:23:45:b6:df:5a:29:09:1f:e1:1a:8a:df:
28:f5:90:2a:17:e1:90:02:f4:0f:61:e1:35:7e:61:b8:5b:91:
eb:97:cf:58:86:79:5f:fe:5c:f2:6a:56:6b:d1:ad:5b:e6:f5:
26:a7:68:2a:29:9e:49:78:fa:10:ca:d3:96:20:d3:aa:b8:54:
f2:fc:36:d3:9b:c8:ab:43:02:be:37:9f:79:28:b6:b1:4d:01:
8a:63:b4:95:d0:18:2a:17:4b:ca:2a:2e:42:54:75:9f:07:26:
8d:18:29:67:3e:61:dc:6e:07:a6:f5:9a:98:98:12:ba:f2:3e:
c4:9e:c6:e1:92:23:14:20:41:22:64:b7:5a:0b:69:38:41:d9:
0b:e3:17:fc:04:9c:eb:b6:72:00:81:6b:e1:8e:16:8f:5c:09:
5f:a3:40:b3:e8:72:6f:ea:ca:1a:fc:1b:c9:ee:4a:a1:8a:1c:
96:19:f3:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:39:49 2025 by rpki-client