Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/44bc9c-47ac-42f5-9744-c468c44fa589/1/vy2qjZiZHeKttDBzWszGHHolQ8U.roa
File: vy2qjZiZHeKttDBzWszGHHolQ8U.roa (raw, json)
Hash identifier: oLYJL9uF8Q1jPS9B4S9+ASG5boOxBxEURdxggjDDmx4=
Subject key identifier: BF:2D:AA:8D:98:99:1D:E2:AD:B4:30:73:5A:CC:C6:1C:7A:25:43:C5
Certificate issuer: /CN=b09d2f65d7228de6ee9784ed8b6ade655f5ee778
Certificate serial: 018CC56E19B488427EC9522610D5D7EA5BDC
Authority key identifier: B0:9D:2F:65:D7:22:8D:E6:EE:97:84:ED:8B:6A:DE:65:5F:5E:E7:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sJ0vZdcijebul4Tti2reZV9e53g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/44bc9c-47ac-42f5-9744-c468c44fa589/1/vy2qjZiZHeKttDBzWszGHHolQ8U.roa
Signing time: Mon 01 Jan 2024 14:29:36 +0000
ROA not before: Mon 01 Jan 2024 14:29:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41155
IP address blocks: 45.91.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:19:b4:88:42:7e:c9:52:26:10:d5:d7:ea:5b:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b09d2f65d7228de6ee9784ed8b6ade655f5ee778
Validity
Not Before: Jan 1 14:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf2daa8d98991de2adb430735accc61c7a2543c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:47:7e:60:5a:36:d8:5c:af:a5:a1:90:3d:15:
c4:68:b5:68:bb:dc:2b:c9:2c:f6:e1:c1:17:dd:63:
5a:e6:71:5c:37:8f:b2:86:96:b0:35:44:a2:e4:a6:
0b:8d:49:77:de:cd:61:3e:79:e2:a8:f2:bf:bb:7a:
e1:43:08:18:1f:49:08:c2:08:d5:aa:60:39:aa:d9:
5a:48:3c:a3:05:61:2e:b2:97:b4:90:85:68:d3:95:
1f:df:c1:0a:cc:e9:85:91:66:24:b8:ca:71:da:6b:
8c:76:7e:f4:3a:a7:b9:96:f7:7a:23:60:6c:df:9f:
27:c8:b6:cd:8a:d4:1b:ff:1e:8f:6e:d2:89:ee:39:
8c:3e:6e:f6:92:3c:1d:f1:fb:a8:f7:bc:71:c6:1f:
19:4b:0d:01:04:63:fe:45:b6:06:0f:bc:ff:0e:c1:
bb:07:af:0d:cd:f1:39:a9:d3:61:ed:92:52:2d:83:
7a:c5:a9:cb:3f:c0:8e:a9:30:6b:eb:4f:7a:1a:ff:
f0:38:5c:5f:a6:f7:c8:bf:b1:f5:4b:ca:30:64:b2:
95:a1:ef:7e:14:24:8c:25:6e:7d:37:81:59:4f:36:
39:51:14:c8:98:ea:61:89:e8:d7:ad:b4:e1:0e:bb:
61:1b:4a:b8:ad:b8:c7:b9:df:8f:c2:98:de:d4:83:
c5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:2D:AA:8D:98:99:1D:E2:AD:B4:30:73:5A:CC:C6:1C:7A:25:43:C5
X509v3 Authority Key Identifier:
keyid:B0:9D:2F:65:D7:22:8D:E6:EE:97:84:ED:8B:6A:DE:65:5F:5E:E7:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sJ0vZdcijebul4Tti2reZV9e53g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/44bc9c-47ac-42f5-9744-c468c44fa589/1/vy2qjZiZHeKttDBzWszGHHolQ8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/44bc9c-47ac-42f5-9744-c468c44fa589/1/sJ0vZdcijebul4Tti2reZV9e53g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:5c:32:cb:99:d0:a7:7d:b1:2e:23:c8:c3:e1:f2:4c:9e:a7:
25:3b:6a:21:34:d7:59:e9:68:98:c1:73:20:20:40:4a:15:9e:
9c:c3:00:d9:f2:f0:29:df:7b:0c:92:4c:ee:10:6e:69:70:24:
86:2b:2f:3b:3b:03:2f:0d:53:0b:2a:86:f6:f7:03:53:e9:72:
06:d8:a8:d3:bf:1f:55:43:5d:37:c6:b1:a5:0a:43:a8:0c:7e:
24:69:13:45:5d:19:2d:d7:b3:ef:05:df:6b:8b:25:fc:42:a9:
19:19:0a:e5:c3:82:e8:49:00:b9:f3:e8:ad:e2:82:35:de:79:
87:52:ce:9e:9a:e5:03:be:eb:4a:1f:c9:d9:5a:f6:a7:34:a2:
48:fd:c3:e0:87:05:b4:57:a3:63:b9:dd:56:e4:2b:e0:dc:08:
b9:75:e7:78:d5:5d:6c:15:7d:e4:05:ef:18:0b:42:70:fe:a4:
c3:bb:01:e0:f4:25:a5:8b:23:16:87:23:cc:34:25:1b:8e:7d:
35:7f:62:14:65:7c:ec:ed:b8:72:a3:c6:f1:6f:76:8f:df:47:
fe:a4:40:a1:76:f4:7c:35:a6:aa:56:7a:3f:ca:84:4a:8a:c0:
2e:c3:76:c5:49:33:6c:2d:bb:b4:0c:70:2e:5a:89:26:2c:8e:
9e:6b:c6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:37 2025 by rpki-client