Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/DT_0atHxqnjuzgE6g7wlOP6L2GQ.roa
File: DT_0atHxqnjuzgE6g7wlOP6L2GQ.roa (raw, json)
Hash identifier: EsJ/O7gakVSZy8LWGR6dZ71KNXggQxRofUJGbo8C8Pc=
Subject key identifier: 0D:3F:F4:6A:D1:F1:AA:78:EE:CE:01:3A:83:BC:25:38:FE:8B:D8:64
Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Certificate serial: 019345428E7052B4E03F3CF2E42714C64A95
Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/DT_0atHxqnjuzgE6g7wlOP6L2GQ.roa
Signing time: Tue 19 Nov 2024 16:30:09 +0000
ROA not before: Tue 19 Nov 2024 16:30:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24935
IP address blocks: 45.84.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:45:42:8e:70:52:b4:e0:3f:3c:f2:e4:27:14:c6:4a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Validity
Not Before: Nov 19 16:30:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d3ff46ad1f1aa78eece013a83bc2538fe8bd864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a5:a7:95:bf:e2:24:76:a2:ea:59:a9:3e:f2:
be:af:fb:e0:f5:6d:8a:9c:e2:10:df:de:1a:8d:23:
5c:36:a9:cc:fe:9a:45:22:1b:a9:28:95:59:e9:94:
fb:97:5c:ff:b4:4e:a9:63:12:ff:af:fd:57:e7:72:
b2:af:66:de:41:1d:c2:94:a6:91:d5:f8:7a:ee:9a:
5c:28:be:6f:b2:d0:e5:62:69:9b:8d:48:e0:6b:65:
16:1a:29:99:68:35:10:29:01:d3:84:91:2b:8d:8a:
39:ab:62:61:70:95:81:9a:38:70:d5:d6:d0:b8:78:
43:85:f9:b8:57:77:0f:c3:21:ea:d0:b0:49:e7:31:
a5:5a:2c:a9:9d:a3:fc:76:66:5b:1a:42:6f:1f:6d:
de:91:21:07:2c:f8:46:f8:a7:b4:df:a5:d5:f6:a8:
75:fc:4d:17:61:7d:90:5f:a6:38:e5:c0:74:bc:d6:
9c:b8:9a:59:79:c1:18:ca:04:26:88:06:2f:d7:c0:
f9:f8:c5:d4:c2:4a:06:63:ab:6e:39:5a:ba:3f:b9:
96:5d:63:50:6c:c1:f5:62:7b:91:e9:3e:ae:75:e7:
b6:c6:e1:4a:fc:f8:09:74:ea:67:c0:86:f1:1f:89:
e2:02:47:6f:08:16:4b:80:f8:fc:c0:43:ad:4c:01:
25:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:3F:F4:6A:D1:F1:AA:78:EE:CE:01:3A:83:BC:25:38:FE:8B:D8:64
X509v3 Authority Key Identifier:
keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/DT_0atHxqnjuzgE6g7wlOP6L2GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.148.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:71:d4:ae:9f:02:92:19:c9:fa:5f:a2:c0:8e:0d:1a:dd:8d:
d4:d5:e4:f5:cf:0d:28:30:5e:f1:72:87:2e:a1:db:b2:bb:bb:
00:2c:a8:50:fd:90:dc:cb:47:7b:fc:4b:aa:e4:5d:97:bf:65:
74:30:1e:0d:c0:b3:5e:45:50:ce:89:48:ab:81:fe:1a:f0:e9:
e9:f6:97:44:ed:1d:85:3c:7b:43:30:f1:f3:af:60:ce:2d:ef:
45:ef:6d:b5:0a:d8:27:0b:48:50:23:2d:3b:ae:63:95:8c:c4:
ec:32:0e:96:27:90:f7:d7:eb:fc:52:73:13:4e:aa:62:ba:81:
9f:50:48:1b:ed:b7:88:a6:ed:ef:b7:41:69:85:6b:c5:a0:f6:
6d:be:e8:44:68:c5:fd:29:75:e2:0b:eb:d3:f9:93:25:e5:f1:
ad:02:25:9d:86:4f:d8:0d:d3:3b:0d:2e:77:a4:b9:91:22:9c:
d4:1c:69:bd:5c:53:81:a4:76:aa:44:9e:9b:4a:e2:eb:51:f0:
3c:fe:3e:a9:88:65:0c:d6:6a:b7:5b:8b:d8:3b:2c:5a:13:d3:
27:65:65:69:4e:4e:97:d5:19:3a:00:c1:f6:73:c1:5e:8c:12:
49:35:4a:9c:ef:87:d0:b7:bd:91:a6:57:8f:9c:c8:29:24:3f:
be:74:5c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:40:33 2025 by rpki-client