Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/sTCjVSTmDshI0UQ4XJFDWyeTvEw.roa
File: sTCjVSTmDshI0UQ4XJFDWyeTvEw.roa (raw, json)
Hash identifier: kRON3o29OnRVzY/uFJzsoCpOZD9O1rSV9QBQnyCi9Nk=
Subject key identifier: B1:30:A3:55:24:E6:0E:C8:48:D1:44:38:5C:91:43:5B:27:93:BC:4C
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 01942521BC1EBEDB6119C847AC354AE0B930
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/sTCjVSTmDshI0UQ4XJFDWyeTvEw.roa
Signing time: Thu 02 Jan 2025 03:49:15 +0000
ROA not before: Thu 02 Jan 2025 03:49:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 134835
IP address blocks: 45.83.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:bc:1e:be:db:61:19:c8:47:ac:35:4a:e0:b9:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Jan 2 03:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b130a35524e60ec848d144385c91435b2793bc4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:f3:21:04:30:0d:57:15:f3:6a:ba:60:a9:ac:
10:1b:f2:da:39:24:f1:50:bf:c7:58:79:43:a7:db:
3d:da:07:6e:10:cd:b9:e4:fa:49:05:1a:37:83:1b:
6c:32:83:77:41:db:5b:36:d2:1a:8b:da:c5:1e:9c:
0b:bc:5e:24:a8:5a:81:dd:73:84:ee:e4:ed:fe:4c:
ef:34:ef:ab:52:a2:b4:5e:8c:3e:fa:27:d0:0d:28:
62:21:9e:fc:48:37:df:aa:08:8e:e8:71:3e:07:0d:
ea:cc:00:bb:e1:ec:75:fa:de:44:67:6a:7f:15:b6:
55:e7:d9:54:d7:b7:12:2b:c7:3b:71:ec:dc:05:1f:
e2:0d:16:f5:2a:62:75:c1:e4:13:b4:29:13:9a:65:
f2:47:e5:14:0f:a5:76:4d:3a:61:75:ac:be:d7:e1:
53:77:97:52:bb:dc:1b:d8:e1:4c:0d:b7:ee:d4:63:
81:eb:24:b0:e5:34:2c:ad:4e:e6:e8:62:57:74:83:
e9:5e:f4:72:e5:a3:c6:f0:5d:b2:93:d8:59:ad:89:
f1:ca:a7:ae:80:e9:fe:44:9e:b0:58:19:40:77:99:
73:26:7c:7f:2e:6a:bf:46:4b:27:ce:a6:5f:76:94:
fc:17:47:e7:c9:9e:e8:1c:3c:10:08:30:c3:17:bb:
22:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:30:A3:55:24:E6:0E:C8:48:D1:44:38:5C:91:43:5B:27:93:BC:4C
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/sTCjVSTmDshI0UQ4XJFDWyeTvEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.237.0/24
Signature Algorithm: sha256WithRSAEncryption
69:0a:dd:39:43:f1:e5:b6:d6:2f:ef:8f:15:80:1f:bd:a0:37:
7e:d7:09:60:94:22:f1:95:ec:ea:b3:0e:7a:d8:99:a7:fa:40:
17:2f:f6:aa:08:1d:27:b8:c1:08:0e:31:4a:51:90:ff:71:63:
13:7f:4c:b1:0e:1d:cc:3f:87:96:c4:67:72:bb:f7:61:26:80:
b0:60:b9:07:7b:3b:bd:b9:41:d7:be:0e:4d:1f:15:37:f5:6d:
fe:b0:ab:02:94:2b:e7:4a:3b:24:d1:24:b0:68:69:c0:ea:74:
25:e8:4e:51:45:1d:7f:3d:ce:5f:f8:5a:3b:34:15:75:ea:b3:
c5:0a:5e:d2:48:c5:fa:77:d2:9f:14:7e:22:b4:2b:8e:d6:40:
26:0e:0f:58:9e:8a:31:30:76:9d:a6:4d:b3:da:42:eb:68:ce:
79:86:d9:95:1b:e7:4c:3c:e1:3f:2c:f0:7e:dd:e8:9b:a5:72:
31:c8:e5:dc:de:09:ae:cd:99:6a:bd:56:0d:dc:9c:cb:8e:65:
30:bc:0a:f5:a5:7a:ec:67:33:ab:88:5f:91:e4:be:79:0a:37:
f2:e9:5e:f7:2f:b7:f8:82:a3:e4:13:32:34:be:19:01:9e:b0:
94:f7:2a:b5:27:85:50:95:53:0b:59:90:9d:3d:65:1f:b7:d6:
28:c3:b2:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:38:30 2025 by rpki-client