Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/RVoVqvgGQLrhMMNAyBVpHDQC8nk.roa
File: RVoVqvgGQLrhMMNAyBVpHDQC8nk.roa (raw, json)
Hash identifier: qjWfWeH3qk4tb0vDv/NcZBSbzzWXHCwJLXiy1k9n1+c=
Subject key identifier: 45:5A:15:AA:F8:06:40:BA:E1:30:C3:40:C8:15:69:1C:34:02:F2:79
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 0194236A60CD441A76A4086F89283C0FC239
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/RVoVqvgGQLrhMMNAyBVpHDQC8nk.roa
Signing time: Wed 01 Jan 2025 19:49:21 +0000
ROA not before: Wed 01 Jan 2025 19:49:21 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 145.78.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:60:cd:44:1a:76:a4:08:6f:89:28:3c:0f:c2:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 19:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=455a15aaf80640bae130c340c815691c3402f279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b5:34:8c:6e:3d:bf:ee:e0:c5:f4:c6:8b:4a:
38:20:7a:ad:3f:61:ba:1a:f1:69:be:88:54:b7:b7:
0f:6d:a4:50:fa:67:5c:f0:c8:20:6e:b8:27:43:e6:
0a:dc:ca:3a:73:18:a6:cc:52:16:5c:ef:a2:ff:8b:
b2:79:8d:f9:7d:db:f7:6d:ea:0c:ac:b1:68:88:ad:
17:22:de:d1:d4:c9:1a:01:f5:31:fd:16:d4:a7:b3:
7d:82:2a:64:20:24:cf:17:53:f1:53:50:49:28:a7:
e7:88:bd:2a:1f:60:ad:34:fd:87:5e:bf:bb:9f:89:
7a:29:36:1f:4e:8f:90:67:38:8e:a2:72:7b:2a:ea:
b8:60:9d:62:8f:c8:72:0a:89:20:e1:3a:59:5c:20:
6b:1f:02:ed:b8:3e:eb:82:02:6f:61:5e:f9:5e:73:
1b:f5:a8:70:25:b1:ff:b3:74:b9:49:cd:2e:08:c9:
18:36:06:83:2b:ed:25:bd:65:68:64:f8:26:00:cb:
50:0e:0a:66:53:31:9f:b4:d7:a3:b1:e1:e6:d2:bd:
90:bb:4f:d5:37:4e:86:6d:45:c9:88:af:5e:ef:50:
21:aa:f5:3f:30:a3:cd:20:de:a7:ad:95:e6:40:33:
82:76:a3:95:1a:52:db:9d:23:8f:87:7d:dd:36:10:
7c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5A:15:AA:F8:06:40:BA:E1:30:C3:40:C8:15:69:1C:34:02:F2:79
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/RVoVqvgGQLrhMMNAyBVpHDQC8nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.78.20.0/22
Signature Algorithm: sha256WithRSAEncryption
01:de:e2:03:c4:a6:f5:e7:70:ea:fc:1c:78:ca:ee:10:a6:ae:
96:11:f9:d0:ef:55:b5:e0:f9:76:32:a5:84:90:af:e4:93:53:
ae:be:9d:38:4b:c6:a7:7a:35:59:2d:61:1f:8c:bf:17:fd:af:
ef:09:dd:7d:7d:e8:a8:a3:16:36:09:7d:33:16:0e:9f:b0:0c:
35:ab:65:21:29:5f:70:63:b6:c2:30:81:a1:6a:4d:e2:c5:9e:
22:5b:e6:6f:85:5e:13:6d:27:60:3a:1a:0d:14:df:82:5c:25:
22:2d:e7:a6:89:30:2a:dc:98:14:66:77:f6:cb:b6:8f:98:4c:
26:a3:5a:a3:8f:a6:bb:5f:54:f2:49:55:fb:ef:00:43:92:e1:
47:52:87:81:ca:16:65:2d:57:bd:29:62:d0:09:e0:7f:0f:f9:
66:c7:8c:9e:27:3d:b0:2b:dc:09:17:ed:30:47:c0:05:d5:c8:
f6:da:8d:3f:f8:5a:5c:81:05:58:bf:1c:91:34:09:11:4c:fc:
c3:21:44:ec:e8:88:14:ca:fa:26:33:91:72:aa:15:fa:0a:11:
1c:7c:04:74:6d:07:e6:4c:38:cb:24:93:b4:b7:db:b6:fe:82:
b1:2f:9b:29:f8:9a:24:f5:fa:7a:b8:f5:74:4c:46:40:1e:16:
34:0b:00:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:47:53 2025 by rpki-client