Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/99848b-c4f8-46ab-8923-1304454bf29d/1/wE4iXQHrpihOXjgvME7qpP1G1M8.roa
File: wE4iXQHrpihOXjgvME7qpP1G1M8.roa (raw, json)
Hash identifier: 5SJHRAX4MIESmj0+ywOG6OpEbcFrbWg8slbXKt2TqRg=
Subject key identifier: C0:4E:22:5D:01:EB:A6:28:4E:5E:38:2F:30:4E:EA:A4:FD:46:D4:CF
Certificate issuer: /CN=fa3c481607619c835d09f2471d976d7cf74a0439
Certificate serial: 0194228DD746D109E6E2E5DD7CA7032AE797
Authority key identifier: FA:3C:48:16:07:61:9C:83:5D:09:F2:47:1D:97:6D:7C:F7:4A:04:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-jxIFgdhnINdCfJHHZdtfPdKBDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/99848b-c4f8-46ab-8923-1304454bf29d/1/wE4iXQHrpihOXjgvME7qpP1G1M8.roa
Signing time: Wed 01 Jan 2025 15:48:28 +0000
ROA not before: Wed 01 Jan 2025 15:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34820
IP address blocks: 45.152.96.0/24 maxlen: 24
85.159.104.0/23 maxlen: 23
85.159.106.0/24 maxlen: 24
85.159.108.0/22 maxlen: 22
185.110.140.0/23 maxlen: 23
185.110.142.0/23 maxlen: 23
185.140.40.0/23 maxlen: 23
185.140.42.0/23 maxlen: 23
2a0c:2540::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:d7:46:d1:09:e6:e2:e5:dd:7c:a7:03:2a:e7:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa3c481607619c835d09f2471d976d7cf74a0439
Validity
Not Before: Jan 1 15:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c04e225d01eba6284e5e382f304eeaa4fd46d4cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:10:cb:d3:20:c7:b2:bf:4c:9a:d4:5e:40:2a:
3c:c4:32:fb:dd:cd:c8:93:04:0e:62:cc:d6:43:c2:
52:24:02:a1:a8:14:60:0f:79:dc:b7:51:2e:1f:e0:
98:e6:bb:78:fd:49:c5:2e:4f:03:cb:4e:c3:94:f9:
5b:74:8c:5b:e1:9b:12:42:c6:4f:67:00:63:9d:c3:
5c:a1:f4:f8:ae:a4:14:19:20:51:93:75:96:6a:18:
9d:99:a4:0a:04:91:eb:4b:6b:42:66:4a:71:0a:c2:
e6:6d:0d:a4:34:16:39:c0:63:ff:2b:d2:82:92:bc:
a9:be:a4:9b:2d:1f:c8:c9:34:0c:91:4d:9d:c3:f3:
11:8d:e3:c6:43:00:c5:e2:ad:e8:32:5e:e1:18:ee:
26:df:e0:ef:6c:f6:aa:b5:7b:7f:af:e5:31:9d:d8:
24:26:fb:ce:59:d5:09:a3:73:43:b7:c9:f8:c0:85:
45:79:6d:ce:3d:b6:00:44:65:67:c6:b0:81:31:71:
28:10:95:b1:8c:db:80:e0:ce:b1:02:61:f6:4b:f4:
fb:66:4b:b1:d7:d5:f1:7f:f6:d5:bf:70:92:85:dc:
41:81:d8:c4:ac:0c:bc:36:39:68:21:5c:ca:ed:14:
8a:c1:76:ba:d3:94:42:c2:44:43:da:71:86:17:7d:
af:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:4E:22:5D:01:EB:A6:28:4E:5E:38:2F:30:4E:EA:A4:FD:46:D4:CF
X509v3 Authority Key Identifier:
keyid:FA:3C:48:16:07:61:9C:83:5D:09:F2:47:1D:97:6D:7C:F7:4A:04:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-jxIFgdhnINdCfJHHZdtfPdKBDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/99848b-c4f8-46ab-8923-1304454bf29d/1/wE4iXQHrpihOXjgvME7qpP1G1M8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/99848b-c4f8-46ab-8923-1304454bf29d/1/1-jxIFgdhnINdCfJHHZdtfPdKBDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.96.0/24
85.159.104.0-85.159.106.255
85.159.108.0/22
185.110.140.0/22
185.140.40.0/22
IPv6:
2a0c:2540::/29
Signature Algorithm: sha256WithRSAEncryption
20:6a:31:fe:4c:9b:30:7d:d7:ff:c1:f6:0f:14:ff:e9:08:67:
75:47:d2:4f:e1:ff:4c:3b:7d:7f:e1:2b:e9:bf:94:df:29:bd:
62:96:4c:53:e9:05:6d:57:9f:49:b9:0b:39:80:cf:e4:70:fc:
b8:68:66:8b:d0:85:b0:93:81:d1:01:32:5f:1e:b2:02:ad:3e:
b7:91:99:46:e3:d7:e8:81:2d:ea:f6:b5:7f:49:38:9e:d4:07:
98:68:8a:af:eb:93:05:e9:66:08:a0:ae:73:67:20:e2:a5:4d:
e6:ea:fd:37:1f:d0:d9:16:6b:5d:0e:ee:8d:36:24:13:11:38:
3f:1c:2d:01:51:18:0d:08:c4:b5:01:44:57:f2:3e:a1:06:f1:
2d:f6:f6:1f:40:55:b2:d1:93:19:b3:a5:e9:c3:0e:1c:bf:9c:
47:74:44:5d:b1:6a:08:52:75:49:ce:64:7e:d5:6f:04:66:d0:
10:8c:39:30:20:68:89:cb:c7:ba:3f:f0:36:cd:47:fe:20:16:
ae:54:e0:1f:d0:52:12:a7:58:72:38:b2:f1:a0:ee:24:a4:95:
9d:90:bb:52:8a:e7:9b:d6:ad:7b:c1:cb:56:d4:76:26:28:e2:
70:02:81:2a:86:e7:32:91:2c:b4:4c:b5:50:bd:12:67:45:56:
df:a6:b6:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 00:40:32 2025 by rpki-client