Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/153E32Ynb4gjAA-mSlh2pZBFkrU.roa
File: 153E32Ynb4gjAA-mSlh2pZBFkrU.roa (raw, json)
Hash identifier: dF9VXbu8Nvbg1qQB3zeeW05PXETOHmwQSHANtbfRaGo=
Subject key identifier: D7:9D:C4:DF:66:27:6F:88:23:00:0F:A6:4A:58:76:A5:90:45:92:B5
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 01860DCEF459BEF6011111F5B8F6082D7909
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/153E32Ynb4gjAA-mSlh2pZBFkrU.roa
Signing time: Wed 01 Feb 2023 16:28:32 +0000
ROA not before: Wed 01 Feb 2023 16:28:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 45.91.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0d:ce:f4:59:be:f6:01:11:11:f5:b8:f6:08:2d:79:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Feb 1 16:28:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d79dc4df66276f8823000fa64a5876a5904592b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:26:18:b6:31:9d:9a:6d:03:f5:21:1d:c3:fb:
12:b6:6f:b7:ee:f3:c3:5a:31:bd:08:d3:2a:a3:cc:
1c:b6:55:0b:70:75:39:9e:d9:ac:2d:7d:91:aa:b4:
cc:c6:6d:98:65:a2:85:72:e3:ae:e4:2a:c2:42:e1:
ae:46:85:45:4e:af:67:54:a3:2a:0f:e5:c6:58:fd:
fe:ec:76:01:7e:f8:26:e4:2a:f2:d5:37:9d:b5:54:
fb:18:bd:5a:6a:0b:97:37:7f:3a:91:e5:5d:1d:be:
a3:02:d9:da:f4:3e:49:68:9d:07:95:3d:b0:65:a7:
9e:d0:d5:ba:b0:d6:9e:5b:32:e8:44:71:5f:63:ca:
09:41:37:89:fa:45:1f:e8:c8:07:1a:66:f3:2b:55:
ca:1b:ba:cc:b5:1c:9a:4e:1a:de:6d:50:7e:70:6c:
1e:9b:7c:c8:8c:e5:19:67:34:be:ac:f6:69:24:32:
9c:9b:f1:4c:30:89:36:01:47:7d:d2:b3:b3:df:44:
7b:ef:c1:3a:51:9c:dc:04:95:44:20:c7:48:d9:fb:
b6:03:8e:39:0f:ec:bf:ac:cf:5d:cf:80:a1:bd:cb:
60:2d:e7:98:54:07:73:69:0e:7b:f6:ec:ee:85:cd:
1b:26:77:c9:a5:84:ee:f6:00:4f:c8:15:85:67:76:
50:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:9D:C4:DF:66:27:6F:88:23:00:0F:A6:4A:58:76:A5:90:45:92:B5
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/153E32Ynb4gjAA-mSlh2pZBFkrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.138.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:84:e0:39:83:ef:6f:50:e5:48:d5:51:46:5f:08:2c:96:01:
9f:13:e3:a1:7f:8a:40:50:20:a2:10:85:24:7a:82:a6:cd:8d:
14:dc:62:90:a7:46:c4:62:70:16:74:63:db:1f:f6:a9:53:39:
33:41:90:ea:5a:09:c3:1f:2a:f8:49:20:d0:33:17:19:92:dd:
44:9a:34:57:8f:95:cf:1d:c9:5a:fb:68:30:51:83:6a:8d:d4:
5a:de:96:7a:09:99:81:06:c6:b9:02:97:56:eb:37:81:39:03:
61:29:17:7b:98:ea:03:53:95:04:d7:e0:27:80:ab:0f:9d:10:
a2:c9:5d:9f:f4:75:de:fa:55:90:60:2c:b7:7a:97:41:d3:b1:
7d:b8:49:c7:95:7c:10:3c:09:17:0f:1f:d0:9d:68:ab:1b:5b:
c8:b4:c0:7c:23:57:2c:58:b2:26:db:90:0d:10:16:fe:41:9b:
33:19:2b:13:d1:26:82:ba:f5:84:1f:5e:2c:da:ed:28:54:16:
ba:70:97:50:81:c2:b9:c8:a4:a4:41:01:28:da:c6:32:9e:24:
ff:82:12:c3:ed:3d:3c:e6:16:81:9f:bd:dd:51:9c:e5:15:f9:
87:8d:28:f3:5a:f9:7c:18:e1:a1:89:98:f4:6b:57:02:d6:70:
a8:30:5c:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:41 2025 by rpki-client